Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/QvKpgdJEnJHVOTQkMh1MBng0LdU.roa
File: QvKpgdJEnJHVOTQkMh1MBng0LdU.roa (raw, json)
Hash identifier: FyVUSp9QZGjBPIiGz3d1k2AtYqYOr0ASkFGXnKbFs08=
Subject key identifier: 42:F2:A9:81:D2:44:9C:91:D5:39:34:24:32:1D:4C:06:78:34:2D:D5
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 0435DC24
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/QvKpgdJEnJHVOTQkMh1MBng0LdU.roa
Signing time: Mon 28 Feb 2022 13:53:27 +0000
ROA not before: Mon 28 Feb 2022 13:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201490
IP address blocks: 85.91.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70638628 (0x435dc24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Feb 28 13:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42f2a981d2449c91d5393424321d4c0678342dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:0d:bc:c9:d9:f7:e1:92:d6:32:8e:5b:4a:b1:
eb:92:98:ee:bb:ad:0b:a9:ac:7f:b7:7e:64:83:71:
20:4f:91:93:df:74:f8:7c:e1:05:17:e5:38:e4:d7:
e0:d4:db:54:30:92:ec:2e:dc:d2:63:c7:43:17:30:
b2:e5:fd:2f:43:81:b8:4d:ef:af:03:5e:6b:8e:f9:
ab:e7:2b:3d:67:f5:af:cf:75:37:b2:58:40:0e:88:
75:6d:6e:70:f9:05:e1:2c:df:2b:6b:c6:43:bd:05:
75:c2:cc:0f:f5:69:37:3c:fe:b2:0f:b2:8a:2b:38:
91:4e:47:61:a0:8b:73:c8:d9:33:82:47:38:87:13:
8f:57:2d:82:af:17:78:3d:92:00:f1:32:54:1c:ff:
5c:87:1a:ff:aa:cc:3d:d7:91:7c:b8:b7:ff:3c:48:
ba:69:97:59:1c:97:ab:a6:72:41:3d:9a:94:63:2e:
44:80:93:2b:9f:f2:26:3e:bc:ee:db:76:7c:44:c4:
58:37:fd:2e:9c:32:34:10:cc:31:cd:00:eb:00:98:
f5:31:a3:ee:6e:70:20:dd:46:15:55:ca:88:74:44:
31:b5:c4:16:b0:5b:3b:20:d7:2f:42:b1:78:ea:e1:
89:9e:4d:fe:e1:28:06:87:4b:e9:90:5e:f5:25:32:
43:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F2:A9:81:D2:44:9C:91:D5:39:34:24:32:1D:4C:06:78:34:2D:D5
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/QvKpgdJEnJHVOTQkMh1MBng0LdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.91.127.0/24
Signature Algorithm: sha256WithRSAEncryption
21:a4:e2:78:a1:2a:2f:2e:cb:e9:d6:b5:41:f1:c5:a7:ce:c5:
67:32:33:4e:1b:04:fa:94:39:41:59:7d:ac:c7:c0:01:d2:b5:
cd:1a:94:17:25:96:24:5f:0f:ab:6e:fc:54:77:42:89:00:18:
eb:3e:cf:e3:f1:75:38:5b:e6:95:9b:54:79:18:b0:e5:65:1d:
ae:8b:81:3d:e0:6a:f0:8d:24:1c:2e:e4:e4:38:52:67:91:ab:
3e:f5:fc:0c:76:65:2f:cc:b1:25:3a:3a:ec:fe:71:fe:9a:95:
b3:a1:d5:ff:a7:a2:d0:66:48:08:d3:5f:50:08:da:29:da:7c:
71:fd:5a:04:08:4d:bf:ad:1c:06:0d:f9:4a:e1:b6:dd:8e:9e:
0c:1b:ea:3e:25:2c:74:f4:7b:a6:41:79:9b:c5:49:88:b5:fe:
b7:5d:9b:54:b8:a8:5d:03:33:df:d0:f6:e4:57:16:ed:90:70:
d2:a5:5c:66:f4:f3:3b:a7:91:d5:06:a9:e8:fe:31:ba:ab:cb:
cf:37:54:e0:c9:cc:8c:df:8d:63:ff:39:5d:2b:4a:dd:94:dc:
cb:d4:43:e4:86:63:c4:a4:7a:4a:be:23:fb:65:19:0c:75:fa:
4a:f7:b2:f7:c0:ab:7f:db:43:31:5a:b2:85:28:61:59:1e:39:
57:20:a2:32
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBDXcJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
OWRkNTQyNzgxODUxYzBiY2U1YTNlYTVjYzM4NzY1MGZmYzgyNzdlMB4XDTIyMDIy
ODEzNTMyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDJmMmE5ODFkMjQ0
OWM5MWQ1MzkzNDI0MzIxZDRjMDY3ODM0MmRkNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPANvMnZ9+GS1jKOW0qx65KY7rutC6msf7d+ZINxIE+Rk990
+HzhBRflOOTX4NTbVDCS7C7c0mPHQxcwsuX9L0OBuE3vrwNea475q+crPWf1r891
N7JYQA6IdW1ucPkF4SzfK2vGQ70FdcLMD/VpNzz+sg+yiis4kU5HYaCLc8jZM4JH
OIcTj1ctgq8XeD2SAPEyVBz/XIca/6rMPdeRfLi3/zxIummXWRyXq6ZyQT2alGMu
RICTK5/yJj687tt2fETEWDf9LpwyNBDMMc0A6wCY9TGj7m5wIN1GFVXKiHREMbXE
FrBbOyDXL0KxeOrhiZ5N/uEoBodL6ZBe9SUyQykCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRC8qmB0kSckdU5NCQyHUwGeDQt1TAfBgNVHSMEGDAWgBRZ3VQngYUcC85a
PqXMOHZQ/8gnfjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dkMVVKNEdGSEF2T1dqNmx6RGgyVVBfSUozNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvNzljNGJhLTM4ZTItNGY1YS05NTlmLTQ3ZTA5Mzc5ODlhOC8x
L1F2S3BnZEpFbkpIVk9UUWtNaDFNQm5nMExkVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
NzljNGJhLTM4ZTItNGY1YS05NTlmLTQ3ZTA5Mzc5ODlhOC8xL1dkMVVKNEdGSEF2
T1dqNmx6RGgyVVBfSUozNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFVbfzANBgkqhkiG9w0BAQsFAAOC
AQEAIaTieKEqLy7L6da1QfHFp87FZzIzThsE+pQ5QVl9rMfAAdK1zRqUFyWWJF8P
q278VHdCiQAY6z7P4/F1OFvmlZtUeRiw5WUdrouBPeBq8I0kHC7k5DhSZ5GrPvX8
DHZlL8yxJTo67P5x/pqVs6HV/6ei0GZICNNfUAjaKdp8cf1aBAhNv60cBg35SuG2
3Y6eDBvqPiUsdPR7pkF5m8VJiLX+t12bVLioXQMz39D25FcW7ZBw0qVcZvTzO6eR
1Qap6P4xuqvLzzdU4MnMjN+NY/85XStK3ZTcy9RD5IZjxKR6Sr4j+2UZDHX6Svey
98Crf9tDMVqyhShhWR45VyCiMg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:33 2024 by rpki-client on console-fra.rpki-client.org