Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Y4ma7OXKuPTyTZhifSYPycN_7wY.roa
File: Y4ma7OXKuPTyTZhifSYPycN_7wY.roa (raw, json)
Hash identifier: Az3sL7RFjmNzqz9dUuxRiTXCijWepR9NVbzClByx/CA=
Subject key identifier: 63:89:9A:EC:E5:CA:B8:F4:F2:4D:98:62:7D:26:0F:C9:C3:7F:EF:06
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 37F20BB8
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Y4ma7OXKuPTyTZhifSYPycN_7wY.roa
Signing time: Thu 28 Apr 2022 12:09:58 +0000
ROA not before: Thu 28 Apr 2022 12:09:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197050
IP address blocks: 85.118.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938609592 (0x37f20bb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Apr 28 12:09:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63899aece5cab8f4f24d98627d260fc9c37fef06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d8:02:da:0c:1e:88:2f:3c:cd:06:c1:c7:67:
c9:d2:45:bc:80:fe:d2:e1:8d:ec:f0:8c:ef:1c:fe:
f5:0f:be:05:34:dc:a5:33:ea:e8:5b:0b:51:5e:b9:
43:2a:f5:05:5a:96:58:a5:52:32:7d:4a:03:d9:14:
73:7e:bf:d2:0d:f7:29:f9:f8:37:ba:a6:bd:9e:bf:
99:9b:d7:49:3a:58:3c:1b:20:1c:ec:fe:44:78:d7:
d9:c6:fd:4f:87:8a:b0:7f:74:e6:5d:26:f9:ef:20:
fb:a8:ef:1e:5b:4e:ea:96:84:b3:e3:8f:8f:99:00:
6c:3a:3b:d9:1e:65:ba:d9:1e:c3:92:26:31:44:84:
93:f7:bf:73:62:50:d1:e5:c8:3e:c9:a3:4e:d2:f9:
8b:8c:88:6c:72:a9:49:76:d6:7b:07:a9:21:d2:63:
eb:89:c1:ed:ee:22:19:60:82:07:6e:85:b7:b1:f9:
7d:58:9d:02:22:17:ee:70:c9:81:fb:4c:dd:d1:83:
4e:04:7a:a5:a6:11:aa:4c:5c:bc:07:29:c7:7d:65:
13:80:e7:6b:01:d1:2e:f0:56:11:1c:0b:4e:74:5a:
60:bb:40:19:f4:cc:74:26:a4:d0:6e:e1:d4:2c:34:
6e:da:18:54:69:95:c0:72:4a:95:69:fd:a0:5d:49:
20:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:89:9A:EC:E5:CA:B8:F4:F2:4D:98:62:7D:26:0F:C9:C3:7F:EF:06
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/Y4ma7OXKuPTyTZhifSYPycN_7wY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.118.91.0/24
Signature Algorithm: sha256WithRSAEncryption
24:66:3f:ca:b9:9e:e6:2f:1d:ad:54:b3:69:35:9d:4d:2a:36:
b8:90:4c:4a:16:c0:c5:8e:68:6f:2f:ef:c0:42:05:23:0e:d2:
4c:f0:c3:d3:ef:dd:f6:a6:1d:b6:8e:90:e3:01:d7:25:ee:c8:
a5:8d:89:37:9d:37:47:e0:80:db:f5:c6:8d:16:60:85:ae:17:
65:74:42:ad:b0:9e:33:ac:07:bc:9e:2a:b8:6b:a3:70:46:47:
e3:3b:64:de:5d:af:13:4c:4c:3e:f3:6d:13:57:d5:ce:f5:b8:
2e:d8:a4:77:4d:5e:c0:0a:73:21:2e:60:31:e2:2c:66:7f:a9:
d4:71:3f:05:65:8c:ef:e7:c8:c7:51:a0:7f:49:13:d3:0c:19:
5e:46:dd:d5:aa:90:03:21:42:23:24:0f:1c:27:f1:8a:d7:f9:
31:39:e7:a9:66:a7:9f:36:e5:5d:f6:06:49:cd:8b:00:65:48:
67:1b:0c:5a:28:bc:52:31:83:da:a2:aa:e3:e8:fc:de:ac:0f:
dd:fc:ad:43:c5:01:61:f2:0c:ab:8f:c3:05:7c:10:cf:d1:23:
c1:af:6c:6d:9f:b1:b5:c2:a2:a6:a2:6a:fa:b4:c1:8a:cd:76:
ad:5c:17:7b:d3:ca:ea:20:3a:06:b5:20:6e:17:6d:60:19:b9:
e6:50:0e:f0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEN/ILuDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTQ4Y2VkZjE3MDI5ZWQ5OGExMDgxMTNjNmMxMDllY2FjY2Q4MmVjMB4XDTIyMDQy
ODEyMDk1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjM4OTlhZWNlNWNh
YjhmNGYyNGQ5ODYyN2QyNjBmYzljMzdmZWYwNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJPYAtoMHogvPM0GwcdnydJFvID+0uGN7PCM7xz+9Q++BTTc
pTPq6FsLUV65Qyr1BVqWWKVSMn1KA9kUc36/0g33Kfn4N7qmvZ6/mZvXSTpYPBsg
HOz+RHjX2cb9T4eKsH905l0m+e8g+6jvHltO6paEs+OPj5kAbDo72R5lutkew5Im
MUSEk/e/c2JQ0eXIPsmjTtL5i4yIbHKpSXbWewepIdJj64nB7e4iGWCCB26Ft7H5
fVidAiIX7nDJgftM3dGDTgR6paYRqkxcvAcpx31lE4DnawHRLvBWERwLTnRaYLtA
GfTMdCak0G7h1Cw0btoYVGmVwHJKlWn9oF1JIHsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRjiZrs5cq49PJNmGJ9Jg/Jw3/vBjAfBgNVHSMEGDAWgBQFSM7fFwKe2YoQ
gRPGwQnsrM2C7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JVak8zeGNDbnRtS0VJRVR4c0VKN0t6Tmd1dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvNTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8x
L1k0bWE3T1hLdVBUeVRaaGlmU1lQeWNOXzd3WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
NTQxYzA1LThkN2QtNDJiOC1hYjAwLTdmYmJhZTZmOTQzNy8xL0JVak8zeGNDbnRt
S0VJRVR4c0VKN0t6Tmd1dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFV2WzANBgkqhkiG9w0BAQsFAAOC
AQEAJGY/yrme5i8drVSzaTWdTSo2uJBMShbAxY5oby/vwEIFIw7STPDD0+/d9qYd
to6Q4wHXJe7IpY2JN503R+CA2/XGjRZgha4XZXRCrbCeM6wHvJ4quGujcEZH4ztk
3l2vE0xMPvNtE1fVzvW4Ltikd01ewApzIS5gMeIsZn+p1HE/BWWM7+fIx1Ggf0kT
0wwZXkbd1aqQAyFCIyQPHCfxitf5MTnnqWannzblXfYGSc2LAGVIZxsMWii8UjGD
2qKq4+j83qwP3fytQ8UBYfIMq4/DBXwQz9Ejwa9sbZ+xtcKipqJq+rTBis12rVwX
e9PK6iA6BrUgbhdtYBm55lAO8A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:19 2023 by rpki-client on console-fra.rpki-client.org