Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/a_TpV4rh70aTjbAuNFFGo93pWmQ.roa
File: a_TpV4rh70aTjbAuNFFGo93pWmQ.roa (raw, json)
Hash identifier: yJp3mi7ZXHv9VLPjX4mDraCurrAZfH9uPjsSwsGok/A=
Subject key identifier: 6B:F4:E9:57:8A:E1:EF:46:93:8D:B0:2E:34:51:46:A3:DD:E9:5A:64
Certificate issuer: /CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Certificate serial: 05140734
Authority key identifier: 5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/a_TpV4rh70aTjbAuNFFGo93pWmQ.roa
Signing time: Sat 01 Jan 2022 12:03:28 +0000
ROA not before: Sat 01 Jan 2022 12:03:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201313
IP address blocks: 89.30.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85198644 (0x5140734)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e400ac2396ae228d2b2e56f4b06739969379e44
Validity
Not Before: Jan 1 12:03:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bf4e9578ae1ef46938db02e345146a3dde95a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:38:6e:ed:5b:b7:39:cf:97:ae:cf:b6:c0:b7:
ba:73:20:f8:ef:b9:a7:34:ea:35:ff:26:d6:23:30:
70:75:a2:03:6e:b8:a9:bb:6c:48:1c:18:7e:cd:dd:
35:d3:a6:7b:ce:a8:2c:38:1b:01:cb:f3:24:70:d1:
9e:54:c1:cb:21:be:b5:c2:57:02:16:c0:9b:57:01:
92:c2:cd:a3:30:31:0b:02:8a:2e:53:3a:c3:9c:71:
08:0e:bd:ff:52:a6:a7:64:29:2c:18:f2:4f:4c:5e:
c1:27:a9:b4:e4:a3:fc:34:9b:6a:fd:8c:ab:e5:72:
e8:d2:46:b8:47:2f:62:86:64:a9:25:30:65:12:eb:
30:1c:44:9b:e8:a4:77:7a:f3:c8:b5:64:07:26:16:
1b:73:2a:3d:31:1b:9d:06:9d:e1:8d:bb:c5:5d:a8:
09:d6:7b:68:c6:e1:c7:72:fc:3d:98:6f:e2:8d:0e:
37:59:70:97:99:65:a5:b4:05:82:81:a6:1a:ba:ae:
c9:0d:c2:7b:f1:6f:ef:df:2e:83:17:17:dd:12:1a:
e4:5b:24:8b:d0:b2:13:07:f0:73:b1:16:60:e5:ff:
86:53:9f:b6:74:5b:af:e9:7e:01:8d:57:2a:9e:1f:
15:81:01:36:f8:e1:57:24:5a:ad:f4:93:2c:4b:a7:
53:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F4:E9:57:8A:E1:EF:46:93:8D:B0:2E:34:51:46:A3:DD:E9:5A:64
X509v3 Authority Key Identifier:
keyid:5E:40:0A:C2:39:6A:E2:28:D2:B2:E5:6F:4B:06:73:99:69:37:9E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/a_TpV4rh70aTjbAuNFFGo93pWmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/d67a95-cb36-4937-9226-dfed12f1a01e/1/XkAKwjlq4ijSsuVvSwZzmWk3nkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.30.109.0/24
Signature Algorithm: sha256WithRSAEncryption
88:65:33:af:86:2a:9b:4a:6f:fa:78:eb:92:e6:91:b1:24:30:
41:53:95:ec:7b:a8:72:c3:42:1d:c2:b9:a1:20:f5:94:13:10:
19:c8:92:7c:d0:f4:8b:53:77:0e:a4:23:47:97:de:22:9b:20:
22:17:bd:7b:77:89:62:3b:c9:66:d3:b7:3b:40:22:76:eb:50:
54:bc:18:50:8c:1b:e3:96:25:38:78:43:aa:93:33:6c:4f:3b:
bf:8b:46:9e:0c:71:43:38:cb:2c:69:0a:94:28:23:2b:86:49:
fd:80:d3:92:f4:be:01:9a:8c:ba:c4:49:c2:6b:b1:13:fc:c4:
38:dc:80:4a:dc:31:78:b4:ce:9c:ed:7d:fb:b9:3e:07:66:1a:
1d:2b:2d:dc:ac:97:07:6e:70:b6:29:0b:1a:b9:a7:36:4c:9a:
a1:ff:45:97:59:20:9b:d4:3e:d8:ca:b1:72:39:da:49:13:fc:
40:ab:f5:36:b7:5c:b1:7e:1b:65:eb:da:06:ef:82:4f:c4:4b:
7e:0d:71:a6:25:0b:0f:29:d3:a6:84:8b:7f:e3:9a:8c:0d:cd:
02:a7:ec:d4:97:c6:63:01:77:59:96:39:44:1c:83:b7:90:7f:
7e:15:58:c9:6f:6b:c3:2d:54:5d:80:64:55:42:99:00:eb:f0:
d9:28:f0:50
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBRQHNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZTQwMGFjMjM5NmFlMjI4ZDJiMmU1NmY0YjA2NzM5OTY5Mzc5ZTQ0MB4XDTIyMDEw
MTEyMDMyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmJmNGU5NTc4YWUx
ZWY0NjkzOGRiMDJlMzQ1MTQ2YTNkZGU5NWE2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOk4bu1btznPl67PtsC3unMg+O+5pzTqNf8m1iMwcHWiA264
qbtsSBwYfs3dNdOme86oLDgbAcvzJHDRnlTByyG+tcJXAhbAm1cBksLNozAxCwKK
LlM6w5xxCA69/1Kmp2QpLBjyT0xewSeptOSj/DSbav2Mq+Vy6NJGuEcvYoZkqSUw
ZRLrMBxEm+ikd3rzyLVkByYWG3MqPTEbnQad4Y27xV2oCdZ7aMbhx3L8PZhv4o0O
N1lwl5llpbQFgoGmGrquyQ3Ce/Fv798ugxcX3RIa5Fski9CyEwfwc7EWYOX/hlOf
tnRbr+l+AY1XKp4fFYEBNvjhVyRarfSTLEunU9ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRr9OlXiuHvRpONsC40UUaj3elaZDAfBgNVHSMEGDAWgBReQArCOWriKNKy
5W9LBnOZaTeeRDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hrQUt3amxxNGlqU3N1VnZTd1p6bVdrM25rUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvZDY3YTk1LWNiMzYtNDkzNy05MjI2LWRmZWQxMmYxYTAxZS8x
L2FfVHBWNHJoNzBhVGpiQXVORkZHbzkzcFdtUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
ZDY3YTk1LWNiMzYtNDkzNy05MjI2LWRmZWQxMmYxYTAxZS8xL1hrQUt3amxxNGlq
U3N1VnZTd1p6bVdrM25rUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFkebTANBgkqhkiG9w0BAQsFAAOC
AQEAiGUzr4Yqm0pv+njrkuaRsSQwQVOV7HuocsNCHcK5oSD1lBMQGciSfND0i1N3
DqQjR5feIpsgIhe9e3eJYjvJZtO3O0AidutQVLwYUIwb45YlOHhDqpMzbE87v4tG
ngxxQzjLLGkKlCgjK4ZJ/YDTkvS+AZqMusRJwmuxE/zEONyAStwxeLTOnO19+7k+
B2YaHSst3KyXB25wtikLGrmnNkyaof9Fl1kgm9Q+2MqxcjnaSRP8QKv1NrdcsX4b
ZevaBu+CT8RLfg1xpiULDynTpoSLf+OajA3NAqfs1JfGYwF3WZY5RByDt5B/fhVY
yW9rwy1UXYBkVUKZAOvw2SjwUA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:02 2024 by rpki-client on console-fra.rpki-client.org