Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/l6zkr-LLWA6nAwnr5n2VpF4eT9Y.roa
File: l6zkr-LLWA6nAwnr5n2VpF4eT9Y.roa (raw, json)
Hash identifier: uqkWDf7MFuoGWyi0YvGrflPabWhG50ZTyCCyZhWXRBI=
Subject key identifier: 97:AC:E4:AF:E2:CB:58:0E:A7:03:09:EB:E6:7D:95:A4:5E:1E:4F:D6
Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Certificate serial: 37D7DA7E
Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/l6zkr-LLWA6nAwnr5n2VpF4eT9Y.roa
Signing time: Sat 01 Jan 2022 15:57:12 +0000
ROA not before: Sat 01 Jan 2022 15:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12301
IP address blocks: 89.107.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 936893054 (0x37d7da7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82
Validity
Not Before: Jan 1 15:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97ace4afe2cb580ea70309ebe67d95a45e1e4fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dc:2b:ec:f0:b8:c6:ff:99:9e:09:5c:c6:24:
4a:1a:12:5a:ab:f7:23:7c:30:c8:36:a5:e7:e4:c3:
43:19:f7:4d:c8:13:11:3c:05:a4:05:b6:71:ec:9f:
c2:8a:7c:c2:49:d5:17:ac:8f:1f:20:ac:a8:99:9d:
9e:39:d3:78:ce:e8:7e:b5:80:35:63:db:01:3a:4a:
9c:97:48:30:94:ce:ec:37:81:6c:0e:2d:8f:cb:cc:
0c:0b:b6:dd:81:fd:7c:07:51:ee:62:3e:09:ce:3c:
f6:35:c6:d7:1c:5d:b3:fb:f4:5d:f9:69:32:3d:c3:
cd:4d:c0:e2:3e:7f:cb:e1:84:28:f6:d4:41:92:26:
0a:c5:4c:24:d2:56:a1:20:25:4f:4d:f0:d6:05:47:
b4:ca:6a:98:15:cb:b2:27:30:e7:66:22:e1:64:75:
2f:c5:ea:89:e4:22:46:03:61:ba:ba:fc:13:4a:db:
de:fd:5a:c3:0d:2a:e3:cf:fb:f9:f4:7b:11:30:57:
54:51:60:c4:95:67:75:33:38:fd:6e:2e:04:bf:ca:
54:f0:b3:5f:a8:43:fb:ae:e0:ac:fd:a2:4e:6e:4e:
46:9c:7a:09:bc:f5:8d:a2:5c:5a:c6:16:a9:d7:f4:
a0:8a:af:04:15:bd:eb:34:9b:d6:ac:81:21:7d:c3:
ee:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:AC:E4:AF:E2:CB:58:0E:A7:03:09:EB:E6:7D:95:A4:5E:1E:4F:D6
X509v3 Authority Key Identifier:
keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/l6zkr-LLWA6nAwnr5n2VpF4eT9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.253.0/24
Signature Algorithm: sha256WithRSAEncryption
09:43:98:ce:c0:d6:25:4f:b9:2f:8b:99:4c:2a:38:4a:a3:a4:
30:a3:80:8c:9f:ca:86:10:02:ba:01:97:e4:d5:33:46:59:47:
f0:74:62:0c:bd:5f:12:0e:a2:f6:5f:a6:b5:34:50:6c:07:d2:
6a:0c:6c:a3:a5:df:b1:0d:22:f0:be:e4:b9:29:26:59:60:fb:
4f:de:b6:57:35:1d:ef:9c:03:d2:07:fd:d2:3b:1c:fd:0b:d2:
50:41:6c:82:36:74:08:f7:14:f0:8b:01:ca:2c:53:51:2b:90:
42:30:df:1a:dc:ba:c8:92:24:0f:0c:24:a2:f0:d5:32:1b:ae:
b9:bf:34:49:e1:cb:6b:9e:a2:c4:44:58:b4:2a:72:a7:e0:b0:
34:f6:fe:7b:1f:29:05:0c:8e:f5:ed:6c:60:4b:35:10:73:56:
0f:b3:61:9e:fc:37:2d:3a:18:ab:46:a1:4f:ab:95:7b:83:c0:
42:2b:aa:36:43:12:f0:24:0f:54:2b:53:0c:5a:db:4b:31:da:
57:85:ff:21:a5:b6:4e:a9:9e:2d:df:90:db:b8:8c:d9:90:8c:
44:b1:b7:ec:c6:14:41:38:d0:16:f9:d5:bd:59:f0:a5:9c:3b:
12:0d:a4:0f:b7:b8:5f:44:11:55:ce:24:26:7b:36:d1:58:85:
c7:d2:e7:8e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN9fafjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
OWIzNTBhMGFlMzJlNzNlNjYwYzQxNmMzZjE0MDZlZGQzNjE1ZjgyMB4XDTIyMDEw
MTE1NTcxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTdhY2U0YWZlMmNi
NTgwZWE3MDMwOWViZTY3ZDk1YTQ1ZTFlNGZkNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKvcK+zwuMb/mZ4JXMYkShoSWqv3I3wwyDal5+TDQxn3TcgT
ETwFpAW2ceyfwop8wknVF6yPHyCsqJmdnjnTeM7ofrWANWPbATpKnJdIMJTO7DeB
bA4tj8vMDAu23YH9fAdR7mI+Cc489jXG1xxds/v0XflpMj3DzU3A4j5/y+GEKPbU
QZImCsVMJNJWoSAlT03w1gVHtMpqmBXLsicw52Yi4WR1L8XqieQiRgNhurr8E0rb
3v1aww0q48/7+fR7ETBXVFFgxJVndTM4/W4uBL/KVPCzX6hD+67grP2iTm5ORpx6
Cbz1jaJcWsYWqdf0oIqvBBW96zSb1qyBIX3D7scCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSXrOSv4stYDqcDCevmfZWkXh5P1jAfBgNVHSMEGDAWgBS5s1CgrjLnPmYM
QWw/FAbt02FfgjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ViTlFvSzR5NXo1bURFRnNQeFFHN2ROaFg0SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDEvNjI3ZTYwLTAwYTYtNGQyNi1iOTNhLWVmNzNiN2I0Y2EzYy8x
L2w2emtyLUxMV0E2bkF3bnI1bjJWcEY0ZVQ5WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEv
NjI3ZTYwLTAwYTYtNGQyNi1iOTNhLWVmNzNiN2I0Y2EzYy8xL3ViTlFvSzR5NXo1
bURFRnNQeFFHN2ROaFg0SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFlr/TANBgkqhkiG9w0BAQsFAAOC
AQEACUOYzsDWJU+5L4uZTCo4SqOkMKOAjJ/KhhACugGX5NUzRllH8HRiDL1fEg6i
9l+mtTRQbAfSagxso6XfsQ0i8L7kuSkmWWD7T962VzUd75wD0gf90jsc/QvSUEFs
gjZ0CPcU8IsByixTUSuQQjDfGty6yJIkDwwkovDVMhuuub80SeHLa56ixERYtCpy
p+CwNPb+ex8pBQyO9e1sYEs1EHNWD7Nhnvw3LToYq0ahT6uVe4PAQiuqNkMS8CQP
VCtTDFrbSzHaV4X/IaW2TqmeLd+Q27iM2ZCMRLG37MYUQTjQFvnVvVnwpZw7Eg2k
D7e4X0QRVc4kJns20ViFx9Lnjg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:57 2024 by rpki-client on console-ams.rpki-client.org