Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/7468ff-2a6a-43cb-a67a-afbcd928b25b/1/K7TCPiZcmTPhxRGKeV74N9EDNDg.roa
File: K7TCPiZcmTPhxRGKeV74N9EDNDg.roa (raw, json)
Hash identifier: FnGtLttExgYIRPDjuav1/IbaERxgX5fSKHYvaQTJ44g=
Subject key identifier: 2B:B4:C2:3E:26:5C:99:33:E1:C5:11:8A:79:5E:F8:37:D1:03:34:38
Certificate issuer: /CN=496a77608f1f4472f6fc30273c5560e967caf273
Certificate serial: B2D82D
Authority key identifier: 49:6A:77:60:8F:1F:44:72:F6:FC:30:27:3C:55:60:E9:67:CA:F2:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SWp3YI8fRHL2_DAnPFVg6WfK8nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/7468ff-2a6a-43cb-a67a-afbcd928b25b/1/K7TCPiZcmTPhxRGKeV74N9EDNDg.roa
Signing time: Sat 01 Jan 2022 05:52:02 +0000
ROA not before: Sat 01 Jan 2022 05:52:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 91.246.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11720749 (0xb2d82d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=496a77608f1f4472f6fc30273c5560e967caf273
Validity
Not Before: Jan 1 05:52:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2bb4c23e265c9933e1c5118a795ef837d1033438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:80:73:af:77:51:49:4b:10:39:0e:0b:a7:63:
6b:86:cc:e2:42:7d:fe:d0:19:b5:54:ad:4c:95:86:
82:26:98:f2:02:61:bf:b9:90:77:6f:b2:12:05:cf:
ba:0e:12:2f:51:ca:8a:bd:4b:8d:39:86:17:d9:3b:
d0:7d:5a:d8:0e:4e:a6:6c:39:1b:b1:fc:04:4f:ca:
61:00:00:89:b0:df:3e:d0:31:ae:14:b5:d3:31:f6:
52:64:90:bd:39:f2:fd:13:be:40:04:62:8a:4b:1f:
1e:98:55:cc:6f:da:09:fd:6a:ca:0a:e5:e1:0d:ed:
89:69:56:f9:57:34:c7:4c:45:06:91:a0:be:b6:d5:
26:30:26:d4:7b:48:f1:13:d7:b6:0e:b0:4c:e3:7b:
8f:38:e7:e9:7e:a9:cc:08:72:0d:a1:69:20:a7:f6:
ad:31:27:62:25:4c:31:2c:06:06:58:4b:fc:50:8a:
7f:58:dd:01:a8:1b:dc:9a:2a:39:54:81:a4:c2:2c:
5a:77:5f:dd:50:7b:92:74:c4:1b:ba:0f:ce:6c:52:
81:fd:0f:c5:64:14:73:53:01:c9:1c:42:58:49:ae:
df:78:5d:c0:bf:04:65:17:89:0f:ff:35:26:f3:91:
50:24:76:92:dc:da:f6:a9:29:49:c7:6f:9c:0d:e5:
6a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B4:C2:3E:26:5C:99:33:E1:C5:11:8A:79:5E:F8:37:D1:03:34:38
X509v3 Authority Key Identifier:
keyid:49:6A:77:60:8F:1F:44:72:F6:FC:30:27:3C:55:60:E9:67:CA:F2:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SWp3YI8fRHL2_DAnPFVg6WfK8nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/7468ff-2a6a-43cb-a67a-afbcd928b25b/1/K7TCPiZcmTPhxRGKeV74N9EDNDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/7468ff-2a6a-43cb-a67a-afbcd928b25b/1/SWp3YI8fRHL2_DAnPFVg6WfK8nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.50.0/24
Signature Algorithm: sha256WithRSAEncryption
51:61:2c:67:41:c5:63:54:57:8c:cb:d0:1c:2e:98:28:33:cb:
81:5f:37:e9:e1:0f:9b:8d:4d:73:59:bd:ad:a4:48:1b:60:ec:
6a:30:9a:59:2c:68:59:69:b9:a9:aa:f5:e7:4d:a2:f8:62:41:
da:03:cd:9e:09:6d:7b:a1:4d:d8:68:d7:4e:ab:56:85:d7:68:
09:fa:d0:a4:7e:c0:33:1a:9e:fc:e2:49:09:93:2f:af:b7:76:
dd:aa:8c:bf:66:25:22:3b:58:6d:2d:aa:1b:57:be:04:ad:04:
82:07:c3:53:de:4b:da:20:77:1b:0a:c2:99:72:1f:7b:ae:d2:
27:83:75:d8:91:2f:60:5a:8d:7a:e1:d9:ba:5b:82:1f:74:e6:
93:3c:7e:a4:9f:eb:b6:e8:a6:06:90:42:05:0d:48:5c:92:f1:
59:e9:5d:ae:25:fe:21:cc:99:1d:75:fe:da:a7:94:8b:39:c5:
e4:22:75:31:5b:4d:92:47:4c:4b:b4:c4:8a:be:9c:ac:19:7d:
9a:5d:72:d1:b3:da:8e:62:f1:38:ba:53:e3:ca:07:c3:0c:ee:
81:81:9f:62:60:c4:c2:64:5e:b6:32:e1:68:6c:1d:4b:cf:49:
10:5b:aa:81:79:79:da:bb:ce:99:f2:de:4f:a1:eb:45:c0:1c:
ad:df:40:40
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEALLYLTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
OTZhNzc2MDhmMWY0NDcyZjZmYzMwMjczYzU1NjBlOTY3Y2FmMjczMB4XDTIyMDEw
MTA1NTIwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmJiNGMyM2UyNjVj
OTkzM2UxYzUxMThhNzk1ZWY4MzdkMTAzMzQzODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJWAc693UUlLEDkOC6dja4bM4kJ9/tAZtVStTJWGgiaY8gJh
v7mQd2+yEgXPug4SL1HKir1LjTmGF9k70H1a2A5Opmw5G7H8BE/KYQAAibDfPtAx
rhS10zH2UmSQvTny/RO+QARiiksfHphVzG/aCf1qygrl4Q3tiWlW+Vc0x0xFBpGg
vrbVJjAm1HtI8RPXtg6wTON7jzjn6X6pzAhyDaFpIKf2rTEnYiVMMSwGBlhL/FCK
f1jdAagb3JoqOVSBpMIsWndf3VB7knTEG7oPzmxSgf0PxWQUc1MByRxCWEmu33hd
wL8EZReJD/81JvORUCR2ktza9qkpScdvnA3latkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQrtMI+JlyZM+HFEYp5Xvg30QM0ODAfBgNVHSMEGDAWgBRJandgjx9Ecvb8
MCc8VWDpZ8ryczAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NXcDNZSThmUkhMMl9EQW5QRlZnNldmSzhuTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTEvNzQ2OGZmLTJhNmEtNDNjYi1hNjdhLWFmYmNkOTI4YjI1Yi8x
L0s3VENQaVpjbVRQaHhSR0tlVjc0TjlFRE5EZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEv
NzQ2OGZmLTJhNmEtNDNjYi1hNjdhLWFmYmNkOTI4YjI1Yi8xL1NXcDNZSThmUkhM
Ml9EQW5QRlZnNldmSzhuTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFv2MjANBgkqhkiG9w0BAQsFAAOC
AQEAUWEsZ0HFY1RXjMvQHC6YKDPLgV836eEPm41Nc1m9raRIG2DsajCaWSxoWWm5
qar1502i+GJB2gPNnglte6FN2GjXTqtWhddoCfrQpH7AMxqe/OJJCZMvr7d23aqM
v2YlIjtYbS2qG1e+BK0EggfDU95L2iB3GwrCmXIfe67SJ4N12JEvYFqNeuHZuluC
H3Tmkzx+pJ/rtuimBpBCBQ1IXJLxWeldriX+IcyZHXX+2qeUiznF5CJ1MVtNkkdM
S7TEir6crBl9ml1y0bPajmLxOLpT48oHwwzugYGfYmDEwmRetjLhaGwdS89JEFuq
gXl52rvOmfLeT6HrRcAcrd9AQA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:12 2023 by rpki-client on console-fra.rpki-client.org