Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/8c4e3c-340c-4551-9f5e-decdd88d0e2e/1/xkMJsyKSzt4q76Nomj1Vh9YXgGs.roa
File: xkMJsyKSzt4q76Nomj1Vh9YXgGs.roa (raw, json)
Hash identifier: AAW6AQUrIXCzRg+kouZ4Rn1Z+e8FGVli3oDmRXsxp9Y=
Subject key identifier: C6:43:09:B3:22:92:CE:DE:2A:EF:A3:68:9A:3D:55:87:D6:17:80:6B
Certificate issuer: /CN=715fc32ac75b8bf5c6142fa5f3fb56cb0fa853eb
Certificate serial: B9AAA9
Authority key identifier: 71:5F:C3:2A:C7:5B:8B:F5:C6:14:2F:A5:F3:FB:56:CB:0F:A8:53:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cV_DKsdbi_XGFC-l8_tWyw-oU-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/8c4e3c-340c-4551-9f5e-decdd88d0e2e/1/xkMJsyKSzt4q76Nomj1Vh9YXgGs.roa
Signing time: Fri 28 Jan 2022 21:53:55 +0000
ROA not before: Fri 28 Jan 2022 21:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210542
IP address blocks: 91.229.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12167849 (0xb9aaa9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=715fc32ac75b8bf5c6142fa5f3fb56cb0fa853eb
Validity
Not Before: Jan 28 21:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c64309b32292cede2aefa3689a3d5587d617806b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:e5:cc:70:1a:df:59:c5:ef:46:3a:81:82:69:
80:c8:01:09:95:1e:77:66:f5:d7:bf:f7:81:15:b8:
c2:7e:02:a4:01:36:36:9e:2b:bf:dd:fe:ca:cf:e9:
96:37:d4:b0:5a:30:4d:ff:bb:da:4b:4d:ab:a3:3f:
5c:26:a6:2e:d7:c2:4d:c4:af:cb:00:f6:bc:bf:f9:
9f:cf:d5:ea:ed:8d:9a:95:48:e7:83:d1:24:17:07:
4e:08:24:ae:3b:d4:f7:5c:79:c2:39:a1:f7:b5:7c:
70:89:63:72:2f:70:31:11:5e:49:dc:88:d0:5d:e6:
2a:08:eb:ae:27:5e:ca:14:ba:eb:a4:64:11:c1:3e:
46:1a:19:84:7f:c4:17:09:0d:c4:80:fa:a5:e2:34:
ba:e8:74:c4:c2:6f:15:58:a7:b9:b9:1e:72:b9:bc:
8b:6b:81:48:56:e8:ae:89:18:fd:3d:e8:15:5e:62:
af:35:b1:f7:c6:f8:b2:56:52:ee:c5:0c:b4:4e:ee:
bf:61:88:ee:87:f1:75:38:e5:b6:07:78:34:f5:21:
a7:df:f9:c6:1a:ea:82:44:03:39:fb:8a:26:8a:71:
d1:44:fa:60:77:e2:ca:ff:a3:0e:eb:72:13:0b:f0:
46:29:c2:53:19:a7:d9:16:ed:3f:d0:b7:21:30:fb:
0e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:43:09:B3:22:92:CE:DE:2A:EF:A3:68:9A:3D:55:87:D6:17:80:6B
X509v3 Authority Key Identifier:
keyid:71:5F:C3:2A:C7:5B:8B:F5:C6:14:2F:A5:F3:FB:56:CB:0F:A8:53:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cV_DKsdbi_XGFC-l8_tWyw-oU-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/8c4e3c-340c-4551-9f5e-decdd88d0e2e/1/xkMJsyKSzt4q76Nomj1Vh9YXgGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/8c4e3c-340c-4551-9f5e-decdd88d0e2e/1/cV_DKsdbi_XGFC-l8_tWyw-oU-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.114.0/24
Signature Algorithm: sha256WithRSAEncryption
87:28:0a:ed:72:2c:c6:c2:98:f3:41:43:d8:b3:5f:78:fb:51:
21:6d:bf:e8:14:00:c6:36:a7:f8:58:7c:a7:42:a6:0b:d5:b0:
fd:fd:26:72:c3:24:94:ab:aa:1f:df:a3:66:49:0f:f0:7c:1f:
cb:6c:7f:e5:e5:7d:53:7b:10:bb:54:43:2e:c1:11:f7:95:d7:
64:b3:d4:54:5f:f5:6a:45:cf:7a:a9:cc:81:51:12:96:84:dd:
b4:fe:4e:db:99:7c:f9:24:a5:97:72:1c:a8:60:27:93:9e:a4:
6d:a3:fd:31:e3:01:a9:dd:a4:51:11:bb:3c:bb:35:98:fc:ee:
3d:ee:a9:19:6a:e0:08:95:db:89:41:cc:c3:87:38:88:21:24:
2e:bf:8f:38:7a:5f:b0:82:3e:dc:22:12:d0:db:e8:71:69:83:
58:d0:e8:d0:ff:70:c8:cb:cf:13:ee:de:22:1e:c4:70:9c:c2:
3f:ef:ff:44:4a:65:0c:ab:05:a5:0d:fb:1a:6b:80:5a:36:ae:
a2:18:a7:63:d3:c8:57:3b:da:2a:74:fe:51:cd:06:1e:d8:d2:
2f:88:33:63:8e:35:e6:eb:a8:08:f9:f7:91:39:6c:ef:12:c5:
90:d7:5c:8a:f1:a2:14:32:a3:0d:4d:65:63:90:24:30:8f:cd:
bc:f0:dd:b0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEALmqqTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
MTVmYzMyYWM3NWI4YmY1YzYxNDJmYTVmM2ZiNTZjYjBmYTg1M2ViMB4XDTIyMDEy
ODIxNTM1NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzY0MzA5YjMyMjky
Y2VkZTJhZWZhMzY4OWEzZDU1ODdkNjE3ODA2YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANflzHAa31nF70Y6gYJpgMgBCZUed2b117/3gRW4wn4CpAE2
Np4rv93+ys/pljfUsFowTf+72ktNq6M/XCamLtfCTcSvywD2vL/5n8/V6u2NmpVI
54PRJBcHTggkrjvU91x5wjmh97V8cIljci9wMRFeSdyI0F3mKgjrrideyhS666Rk
EcE+RhoZhH/EFwkNxID6peI0uuh0xMJvFVinubkecrm8i2uBSFborokY/T3oFV5i
rzWx98b4slZS7sUMtE7uv2GI7ofxdTjltgd4NPUhp9/5xhrqgkQDOfuKJopx0UT6
YHfiyv+jDutyEwvwRinCUxmn2RbtP9C3ITD7Dr0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTGQwmzIpLO3irvo2iaPVWH1heAazAfBgNVHSMEGDAWgBRxX8Mqx1uL9cYU
L6Xz+1bLD6hT6zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NWX0RLc2RiaV9YR0ZDLWw4X3RXeXctb1Utcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGMvOGM0ZTNjLTM0MGMtNDU1MS05ZjVlLWRlY2RkODhkMGUyZS8x
L3hrTUpzeUtTenQ0cTc2Tm9tajFWaDlZWGdHcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGMv
OGM0ZTNjLTM0MGMtNDU1MS05ZjVlLWRlY2RkODhkMGUyZS8xL2NWX0RLc2RiaV9Y
R0ZDLWw4X3RXeXctb1Utcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvlcjANBgkqhkiG9w0BAQsFAAOC
AQEAhygK7XIsxsKY80FD2LNfePtRIW2/6BQAxjan+Fh8p0KmC9Ww/f0mcsMklKuq
H9+jZkkP8Hwfy2x/5eV9U3sQu1RDLsER95XXZLPUVF/1akXPeqnMgVESloTdtP5O
25l8+SSll3IcqGAnk56kbaP9MeMBqd2kURG7PLs1mPzuPe6pGWrgCJXbiUHMw4c4
iCEkLr+POHpfsII+3CIS0NvocWmDWNDo0P9wyMvPE+7eIh7EcJzCP+//REplDKsF
pQ37GmuAWjauohinY9PIVzvaKnT+Uc0GHtjSL4gzY4415uuoCPn3kTls7xLFkNdc
ivGiFDKjDU1lY5AkMI/NvPDdsA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:29 2023 by rpki-client on console-ams.rpki-client.org