Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/atNKN99WVQ7eTbTuU1kJRJRV-f4.roa
File: atNKN99WVQ7eTbTuU1kJRJRV-f4.roa (raw, json)
Hash identifier: EHmxc9NPxc1I7PgZUdzb3uyPI0WUh7xuJ1LsLthYjek=
Subject key identifier: 6A:D3:4A:37:DF:56:55:0E:DE:4D:B4:EE:53:59:09:44:94:55:F9:FE
Certificate issuer: /CN=2ca6137749599c03c7b472f142c719680006b6e6
Certificate serial: 0352FA6C
Authority key identifier: 2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/atNKN99WVQ7eTbTuU1kJRJRV-f4.roa
Signing time: Sat 01 Jan 2022 14:58:01 +0000
ROA not before: Sat 01 Jan 2022 14:58:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47700
IP address blocks: 91.208.107.0/24 maxlen: 24
2001:678:478::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55769708 (0x352fa6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ca6137749599c03c7b472f142c719680006b6e6
Validity
Not Before: Jan 1 14:58:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ad34a37df56550ede4db4ee535909449455f9fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5e:6c:bc:15:83:33:17:a6:d8:08:9d:87:ae:
00:e9:ef:dd:e6:2e:be:28:70:eb:c4:83:1e:1b:a2:
36:00:5a:f0:46:93:d7:bd:ff:7e:0a:6d:58:99:5a:
5e:b2:07:ac:72:6b:9c:3b:ed:1f:75:9c:9e:61:33:
80:54:c3:51:bd:7e:3d:cd:0d:d5:4c:b5:06:bb:84:
76:b7:0e:6e:a0:b1:8e:cc:e5:9d:68:56:b4:6a:0f:
86:90:3a:5c:87:e7:a3:d0:ce:d7:62:aa:08:89:cf:
5d:04:f8:39:29:a8:6a:bd:06:82:fd:8e:7c:62:1e:
ea:f1:fd:97:e9:9f:ee:70:66:b7:02:cd:9a:1d:53:
55:5c:a3:bc:8a:38:73:0b:2f:b8:0c:2b:79:08:b6:
fb:3d:1b:b5:ed:02:ee:ed:06:9f:78:c5:89:88:2a:
c8:a6:a6:d7:e3:88:e7:be:0b:42:65:b9:56:3d:67:
6c:3c:2c:b5:58:e3:e2:bf:f3:b8:20:2e:e4:75:bd:
73:df:7f:a8:d9:87:0d:30:c5:1b:7e:ac:e1:61:15:
05:15:8e:1b:f5:12:0c:87:06:58:07:89:be:22:bb:
0c:70:19:e9:0a:b9:e7:23:ff:62:8f:38:85:60:90:
81:f2:f7:e5:51:30:9c:02:68:e1:f6:93:bb:13:03:
f7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D3:4A:37:DF:56:55:0E:DE:4D:B4:EE:53:59:09:44:94:55:F9:FE
X509v3 Authority Key Identifier:
keyid:2C:A6:13:77:49:59:9C:03:C7:B4:72:F1:42:C7:19:68:00:06:B6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKYTd0lZnAPHtHLxQscZaAAGtuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/atNKN99WVQ7eTbTuU1kJRJRV-f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6fcf66-8e8c-4dbb-8cf0-5019d2c388db/1/LKYTd0lZnAPHtHLxQscZaAAGtuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.107.0/24
IPv6:
2001:678:478::/48
Signature Algorithm: sha256WithRSAEncryption
70:8d:35:12:a1:12:89:05:e8:be:1b:3a:69:15:e5:9d:36:5d:
18:20:90:ba:02:4b:18:bb:fe:05:13:0c:42:6c:ca:63:49:6b:
01:38:50:5d:5b:d3:50:8f:86:c3:fa:27:c4:00:80:62:86:b0:
9b:27:1c:d1:f7:fb:7b:fb:22:01:a9:79:3b:6f:df:73:34:90:
64:73:9d:95:b2:e0:8a:26:bb:6f:32:90:32:fd:14:fb:ac:f9:
c3:b1:00:45:ff:1c:23:03:35:12:70:05:4f:c3:9a:33:1f:50:
4d:67:06:b1:fe:a6:3e:2e:55:75:b9:09:60:37:6c:6f:a7:e0:
3d:ce:02:7b:f7:2a:de:38:26:a5:e9:32:cd:40:01:75:f1:fb:
71:fb:42:4d:7c:9a:15:6e:7f:40:92:6e:e6:de:70:62:2b:8b:
6c:4e:62:12:7f:75:5c:87:17:55:43:9b:49:3f:69:a7:2d:3d:
a9:2a:d9:e7:0a:10:52:26:d2:b6:68:e5:63:ce:59:eb:f1:8b:
35:4a:03:81:19:9a:d6:39:15:82:a0:5d:32:99:7a:80:42:b3:
55:05:b2:1a:12:5b:cd:f4:69:ff:f2:6e:da:52:a9:ec:a9:c9:
b2:43:67:fe:26:46:f3:e3:9e:cc:a0:f3:3e:54:22:fa:40:b0:
fa:1a:4d:3c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEA1L6bDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
Y2E2MTM3NzQ5NTk5YzAzYzdiNDcyZjE0MmM3MTk2ODAwMDZiNmU2MB4XDTIyMDEw
MTE0NTgwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmFkMzRhMzdkZjU2
NTUwZWRlNGRiNGVlNTM1OTA5NDQ5NDU1ZjlmZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK5ebLwVgzMXptgInYeuAOnv3eYuvihw68SDHhuiNgBa8EaT
173/fgptWJlaXrIHrHJrnDvtH3WcnmEzgFTDUb1+Pc0N1Uy1BruEdrcObqCxjszl
nWhWtGoPhpA6XIfno9DO12KqCInPXQT4OSmoar0Ggv2OfGIe6vH9l+mf7nBmtwLN
mh1TVVyjvIo4cwsvuAwreQi2+z0bte0C7u0Gn3jFiYgqyKam1+OI574LQmW5Vj1n
bDwstVjj4r/zuCAu5HW9c99/qNmHDTDFG36s4WEVBRWOG/USDIcGWAeJviK7DHAZ
6Qq55yP/Yo84hWCQgfL35VEwnAJo4faTuxMD9/kCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRq00o331ZVDt5NtO5TWQlElFX5/jAfBgNVHSMEGDAWgBQsphN3SVmcA8e0
cvFCxxloAAa25jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xLWVRkMGxabkFQSHRITHhRc2NaYUFBR3R1WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDkvNmZjZjY2LThlOGMtNGRiYi04Y2YwLTUwMTlkMmMzODhkYi8x
L2F0TktOOTlXVlE3ZVRiVHVVMWtKUkpSVi1mNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkv
NmZjZjY2LThlOGMtNGRiYi04Y2YwLTUwMTlkMmMzODhkYi8xL0xLWVRkMGxabkFQ
SHRITHhRc2NaYUFBR3R1WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAFvQazAPBAIAAjAJAwcAIAEGeAR4
MA0GCSqGSIb3DQEBCwUAA4IBAQBwjTUSoRKJBei+GzppFeWdNl0YIJC6AksYu/4F
EwxCbMpjSWsBOFBdW9NQj4bD+ifEAIBihrCbJxzR9/t7+yIBqXk7b99zNJBkc52V
suCKJrtvMpAy/RT7rPnDsQBF/xwjAzUScAVPw5ozH1BNZwax/qY+LlV1uQlgN2xv
p+A9zgJ79yreOCal6TLNQAF18ftx+0JNfJoVbn9Akm7m3nBiK4tsTmISf3VchxdV
Q5tJP2mnLT2pKtnnChBSJtK2aOVjzlnr8Ys1SgOBGZrWORWCoF0ymXqAQrNVBbIa
ElvN9Gn/8m7aUqnsqcmyQ2f+Jkbz457MoPM+VCL6QLD6Gk08
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:53 2024 by rpki-client on console-ams.rpki-client.org