Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/1bdda9-64ec-4fb6-8b40-f4b9da480ee2/1/SHi8WYoLsswb7Jn7WiAQwTq5RCo.roa
File: SHi8WYoLsswb7Jn7WiAQwTq5RCo.roa (raw, json)
Hash identifier: kMbA0+P7FoBAfZj9z06UMTJh3w0Gy0is41G4ZevnmF4=
Subject key identifier: 48:78:BC:59:8A:0B:B2:CC:1B:EC:99:FB:5A:20:10:C1:3A:B9:44:2A
Certificate issuer: /CN=378aa6ed4b6cac6b3a52961bcfa229cfda00080e
Certificate serial: 09FDAABE
Authority key identifier: 37:8A:A6:ED:4B:6C:AC:6B:3A:52:96:1B:CF:A2:29:CF:DA:00:08:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N4qm7UtsrGs6UpYbz6Ipz9oACA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/1bdda9-64ec-4fb6-8b40-f4b9da480ee2/1/SHi8WYoLsswb7Jn7WiAQwTq5RCo.roa
Signing time: Wed 16 Feb 2022 11:29:04 +0000
ROA not before: Wed 16 Feb 2022 11:29:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41887
IP address blocks: 91.227.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167619262 (0x9fdaabe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=378aa6ed4b6cac6b3a52961bcfa229cfda00080e
Validity
Not Before: Feb 16 11:29:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4878bc598a0bb2cc1bec99fb5a2010c13ab9442a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:78:66:67:66:2a:75:4a:c4:33:18:dd:b4:9a:
62:55:27:dd:04:2d:f8:b4:b0:a5:29:fe:b0:2d:2a:
52:05:7d:fa:8f:21:ce:71:b8:2e:af:8e:6f:0c:23:
79:c9:32:3d:60:57:1e:01:e7:5d:48:76:9c:0a:89:
40:27:19:e2:b3:63:ef:6b:bf:52:f3:17:0b:e2:eb:
73:af:8a:cc:78:2a:ae:0a:47:40:43:fb:98:06:ef:
b4:88:bc:1b:b1:c0:5c:e8:7e:3f:0f:a3:69:25:48:
0a:31:74:dc:59:91:2e:9a:c4:49:4c:84:56:80:f8:
84:f5:63:20:89:95:1e:ed:e4:9b:1e:40:74:fb:89:
d8:11:e2:33:dd:2d:4f:00:ff:fb:1a:be:30:20:f8:
46:f3:c3:ab:c4:f3:ca:98:c9:d0:cf:24:b5:85:8c:
3e:02:05:8a:e6:a7:0d:c8:2a:f2:54:4b:30:cc:60:
a0:7e:1c:eb:c2:11:95:f9:44:48:32:fa:75:e6:42:
a4:9f:06:e5:fb:0f:31:89:46:a8:01:57:c4:fa:a2:
53:01:35:89:c2:33:b8:ef:75:de:a7:57:af:71:f7:
01:e9:63:7f:10:ef:c5:fd:e5:46:9c:fe:be:4c:24:
1a:74:7f:a6:52:a8:6e:ab:ed:69:b0:e7:5e:1d:19:
9c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:78:BC:59:8A:0B:B2:CC:1B:EC:99:FB:5A:20:10:C1:3A:B9:44:2A
X509v3 Authority Key Identifier:
keyid:37:8A:A6:ED:4B:6C:AC:6B:3A:52:96:1B:CF:A2:29:CF:DA:00:08:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N4qm7UtsrGs6UpYbz6Ipz9oACA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/1bdda9-64ec-4fb6-8b40-f4b9da480ee2/1/SHi8WYoLsswb7Jn7WiAQwTq5RCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/1bdda9-64ec-4fb6-8b40-f4b9da480ee2/1/N4qm7UtsrGs6UpYbz6Ipz9oACA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.75.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:8f:4e:ed:42:22:a4:69:f6:ab:dd:b9:ca:25:88:b4:96:8d:
32:95:27:a4:77:55:eb:6d:68:d7:ac:37:b8:9d:6f:53:ca:f2:
2a:76:df:48:27:72:47:8b:13:49:b1:7b:00:38:57:9a:fb:ef:
bc:1c:01:f2:88:8a:4e:25:30:b7:79:f8:5d:af:4a:e2:b2:eb:
dd:c1:16:bc:bc:e8:87:26:a0:0f:e4:30:1a:7e:ae:bc:21:9c:
9a:5b:23:7d:26:65:45:3c:f6:aa:85:db:b5:98:06:8d:1d:13:
82:2a:62:59:1e:62:6d:de:0a:b0:34:0a:fd:08:3f:b8:a8:9c:
c1:ad:23:e4:dc:2e:55:cd:43:6c:65:c2:1a:d6:60:e8:9a:3d:
83:b1:62:68:2f:02:b4:a6:e0:7c:fa:b0:57:3c:74:02:f4:3b:
c0:27:69:71:e7:37:e0:92:2e:19:e2:2a:4d:79:24:79:09:02:
bf:1b:3d:29:5c:91:ac:56:26:20:ac:76:11:ec:6f:65:db:23:
d1:f4:84:d9:f2:50:ec:aa:9e:9d:6a:36:2e:00:46:c8:c7:ad:
54:06:c9:17:72:8b:61:ed:d3:3e:8d:a9:16:88:6b:2f:cb:29:
e2:db:04:ba:04:46:03:c1:d3:cc:86:c1:7b:0e:45:cb:05:53:
02:f4:de:b3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECf2qvjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzhhYTZlZDRiNmNhYzZiM2E1Mjk2MWJjZmEyMjljZmRhMDAwODBlMB4XDTIyMDIx
NjExMjkwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDg3OGJjNTk4YTBi
YjJjYzFiZWM5OWZiNWEyMDEwYzEzYWI5NDQyYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANN4ZmdmKnVKxDMY3bSaYlUn3QQt+LSwpSn+sC0qUgV9+o8h
znG4Lq+ObwwjeckyPWBXHgHnXUh2nAqJQCcZ4rNj72u/UvMXC+Lrc6+KzHgqrgpH
QEP7mAbvtIi8G7HAXOh+Pw+jaSVICjF03FmRLprESUyEVoD4hPVjIImVHu3kmx5A
dPuJ2BHiM90tTwD/+xq+MCD4RvPDq8TzypjJ0M8ktYWMPgIFiuanDcgq8lRLMMxg
oH4c68IRlflESDL6deZCpJ8G5fsPMYlGqAFXxPqiUwE1icIzuO913qdXr3H3Aelj
fxDvxf3lRpz+vkwkGnR/plKobqvtabDnXh0ZnAsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRIeLxZiguyzBvsmftaIBDBOrlEKjAfBgNVHSMEGDAWgBQ3iqbtS2ysazpS
lhvPoinP2gAIDjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L040cW03VXRzckdzNlVwWWJ6NklwejlvQUNBNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvMWJkZGE5LTY0ZWMtNGZiNi04YjQwLWY0YjlkYTQ4MGVlMi8x
L1NIaThXWW9Mc3N3YjdKbjdXaUFRd1RxNVJDby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
MWJkZGE5LTY0ZWMtNGZiNi04YjQwLWY0YjlkYTQ4MGVlMi8xL040cW03VXRzckdz
NlVwWWJ6NklwejlvQUNBNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvjSzANBgkqhkiG9w0BAQsFAAOC
AQEAS49O7UIipGn2q925yiWItJaNMpUnpHdV621o16w3uJ1vU8ryKnbfSCdyR4sT
SbF7ADhXmvvvvBwB8oiKTiUwt3n4Xa9K4rLr3cEWvLzohyagD+QwGn6uvCGcmlsj
fSZlRTz2qoXbtZgGjR0TgipiWR5ibd4KsDQK/Qg/uKicwa0j5NwuVc1DbGXCGtZg
6Jo9g7FiaC8CtKbgfPqwVzx0AvQ7wCdpcec34JIuGeIqTXkkeQkCvxs9KVyRrFYm
IKx2EexvZdsj0fSE2fJQ7KqenWo2LgBGyMetVAbJF3KLYe3TPo2pFohrL8sp4tsE
ugRGA8HTzIbBew5FywVTAvTesw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:49 2024 by rpki-client on console-ams.rpki-client.org