Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/9xwdQuysEUI_HaZuADh7qEUJ20c.roa
File: 9xwdQuysEUI_HaZuADh7qEUJ20c.roa (raw, json)
Hash identifier: h9JOebuAOe0k8C9tOtdC+BFtVc1QgOB12Y8QTIkiZkU=
Subject key identifier: F7:1C:1D:42:EC:AC:11:42:3F:1D:A6:6E:00:38:7B:A8:45:09:DB:47
Certificate issuer: /CN=aae89bc3097768acd67c2dd747d3be1adb72e997
Certificate serial: 08661139
Authority key identifier: AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/quibwwl3aKzWfC3XR9O-Gtty6Zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/9xwdQuysEUI_HaZuADh7qEUJ20c.roa
Signing time: Sat 01 Jan 2022 06:58:15 +0000
ROA not before: Sat 01 Jan 2022 06:58:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41656
IP address blocks: 91.200.73.0/24 maxlen: 24
194.145.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140906809 (0x8661139)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aae89bc3097768acd67c2dd747d3be1adb72e997
Validity
Not Before: Jan 1 06:58:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f71c1d42ecac11423f1da66e00387ba84509db47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ee:90:94:0d:e2:6e:24:be:23:ae:5c:44:96:
64:1a:e0:42:44:ba:8b:1a:8b:5d:31:21:1c:dd:eb:
5b:e6:29:bf:7f:48:fd:59:93:51:19:27:e7:d5:7b:
50:c6:d7:c2:4b:9f:bd:7e:e1:16:02:ab:de:45:49:
ad:67:32:01:f0:00:b9:ef:3f:56:6d:74:1d:69:8b:
ed:88:68:d2:1b:89:d6:e8:35:7d:50:e9:58:e0:78:
41:3f:fc:5a:b8:e2:8c:05:20:6c:a1:1b:de:03:be:
ec:f7:50:9d:6d:72:a9:65:6f:a0:8c:0b:53:1f:ae:
fd:cc:bc:aa:52:cb:9c:e4:21:7d:00:0d:56:8b:51:
db:df:a4:86:89:27:da:7c:6a:d5:28:5e:2a:c8:af:
a9:5f:7d:e4:1b:f8:a7:63:69:51:6b:5f:7a:8b:fc:
86:09:f9:10:ea:cb:61:4f:94:91:19:1a:1c:36:2c:
d8:be:51:cc:99:0f:f7:f2:2e:57:17:4c:a8:28:93:
29:0b:fa:fd:c2:9d:c5:fb:c6:32:41:9f:b7:e0:fa:
e4:8b:bc:f3:c0:7a:fa:98:f0:25:f3:bf:3d:9d:de:
d0:5b:92:4b:4e:77:fc:51:56:af:7e:e8:2e:56:4f:
94:d2:95:2b:73:7f:7b:26:4d:1b:c9:dc:37:a4:62:
5d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:1C:1D:42:EC:AC:11:42:3F:1D:A6:6E:00:38:7B:A8:45:09:DB:47
X509v3 Authority Key Identifier:
keyid:AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/quibwwl3aKzWfC3XR9O-Gtty6Zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/9xwdQuysEUI_HaZuADh7qEUJ20c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/quibwwl3aKzWfC3XR9O-Gtty6Zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.73.0/24
194.145.203.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:9e:d4:8d:d8:89:4f:58:3d:67:60:d0:a8:77:72:ff:25:49:
8d:3f:74:af:4c:68:cb:b8:c1:ef:90:fd:88:c1:2b:11:6a:aa:
e8:7b:95:d7:07:32:36:80:f2:b9:32:b5:0b:b2:66:92:00:50:
3b:15:8d:0e:b9:3e:0e:f8:3c:2d:4a:c2:8f:1f:5c:63:b7:77:
22:cb:56:b2:f6:b4:2c:a2:84:2d:fc:6a:08:e0:86:ba:2c:17:
56:0a:5e:bb:d5:78:b4:4c:c3:6d:53:97:fa:84:a7:f3:75:ac:
76:42:25:db:5d:07:c7:31:d3:67:e5:34:fb:26:20:28:5e:99:
ed:39:c3:b3:06:69:5d:92:a7:0b:b0:23:19:1d:50:7b:72:7f:
79:75:d7:b2:a7:a2:cc:50:0b:a1:80:00:b9:fe:2e:1a:26:bf:
f8:71:22:ab:db:c1:7d:22:e1:2e:09:2a:57:88:6b:38:cd:9c:
4c:dd:46:60:53:be:60:43:c1:01:8a:52:29:54:fc:55:25:aa:
ad:42:cb:ea:12:28:65:9c:3e:b6:ac:c1:61:ef:51:e2:b9:37:
88:a3:d3:7d:0a:dc:61:91:e7:ca:ac:fa:e1:ba:ab:a8:7d:bb:
dc:54:7d:83:2d:2d:2a:95:c2:88:fe:42:50:cf:dd:43:36:f2:
99:8d:99:ca
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECGYROTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YWU4OWJjMzA5Nzc2OGFjZDY3YzJkZDc0N2QzYmUxYWRiNzJlOTk3MB4XDTIyMDEw
MTA2NTgxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjcxYzFkNDJlY2Fj
MTE0MjNmMWRhNjZlMDAzODdiYTg0NTA5ZGI0NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMPukJQN4m4kviOuXESWZBrgQkS6ixqLXTEhHN3rW+Ypv39I
/VmTURkn59V7UMbXwkufvX7hFgKr3kVJrWcyAfAAue8/Vm10HWmL7Yho0huJ1ug1
fVDpWOB4QT/8WrjijAUgbKEb3gO+7PdQnW1yqWVvoIwLUx+u/cy8qlLLnOQhfQAN
VotR29+khokn2nxq1SheKsivqV995Bv4p2NpUWtfeov8hgn5EOrLYU+UkRkaHDYs
2L5RzJkP9/IuVxdMqCiTKQv6/cKdxfvGMkGft+D65Iu888B6+pjwJfO/PZ3e0FuS
S053/FFWr37oLlZPlNKVK3N/eyZNG8ncN6RiXRECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBT3HB1C7KwRQj8dpm4AOHuoRQnbRzAfBgNVHSMEGDAWgBSq6JvDCXdorNZ8
LddH074a23LplzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3F1aWJ3d2wzYUt6V2ZDM1hSOU8tR3R0eTZaYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGUvMzJlNjUwLTBjZWMtNDI2Mi1iYzkzLWUzZGQ3NzY0ODlhMS8x
Lzl4d2RRdXlzRVVJX0hhWnVBRGg3cUVVSjIwYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGUv
MzJlNjUwLTBjZWMtNDI2Mi1iYzkzLWUzZGQ3NzY0ODlhMS8xL3F1aWJ3d2wzYUt6
V2ZDM1hSOU8tR3R0eTZaYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvISQMEAMKRyzANBgkqhkiG9w0B
AQsFAAOCAQEAs57UjdiJT1g9Z2DQqHdy/yVJjT90r0xoy7jB75D9iMErEWqq6HuV
1wcyNoDyuTK1C7JmkgBQOxWNDrk+Dvg8LUrCjx9cY7d3IstWsva0LKKELfxqCOCG
uiwXVgpeu9V4tEzDbVOX+oSn83WsdkIl210HxzHTZ+U0+yYgKF6Z7TnDswZpXZKn
C7AjGR1Qe3J/eXXXsqeizFALoYAAuf4uGia/+HEiq9vBfSLhLgkqV4hrOM2cTN1G
YFO+YEPBAYpSKVT8VSWqrULL6hIoZZw+tqzBYe9R4rk3iKPTfQrcYZHnyqz64bqr
qH273FR9gy0tKpXCiP5CUM/dQzbymY2Zyg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:27 2025 by rpki-client