Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a33f9a-9bc3-430d-bb7c-5ec794b0e69c/1/spzWY90tdvd-ZHuqertyB6OLzAs.roa
File: spzWY90tdvd-ZHuqertyB6OLzAs.roa (raw, json)
Hash identifier: 31h6oWX3oHdjcMzJGaKaZd+DlYmuEnnkbuIRkq6MfVg=
Subject key identifier: B2:9C:D6:63:DD:2D:76:F7:7E:64:7B:AA:7A:BB:72:07:A3:8B:CC:0B
Certificate issuer: /CN=2f102815d27e6511746d4a3e9fd1359cd982a866
Certificate serial: 01851096F36610956B11947D6B835CDF2BD6
Authority key identifier: 2F:10:28:15:D2:7E:65:11:74:6D:4A:3E:9F:D1:35:9C:D9:82:A8:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LxAoFdJ-ZRF0bUo-n9E1nNmCqGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a33f9a-9bc3-430d-bb7c-5ec794b0e69c/1/spzWY90tdvd-ZHuqertyB6OLzAs.roa
Signing time: Wed 14 Dec 2022 12:23:26 +0000
ROA not before: Wed 14 Dec 2022 12:23:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208842
IP address blocks: 91.209.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:96:f3:66:10:95:6b:11:94:7d:6b:83:5c:df:2b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f102815d27e6511746d4a3e9fd1359cd982a866
Validity
Not Before: Dec 14 12:23:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b29cd663dd2d76f77e647baa7abb7207a38bcc0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3b:42:6d:75:9c:b3:48:2d:27:16:f9:aa:a3:
3b:b2:19:b6:4c:68:78:a9:b7:cb:cb:0b:e5:bf:76:
9b:c9:dd:e2:4f:53:95:82:e3:77:a0:4d:50:03:33:
e8:86:60:d0:6e:b2:79:a4:6d:e5:92:b2:e3:f3:e0:
41:cc:2b:5b:27:b1:10:70:b3:61:bf:d9:f6:e9:e5:
33:b9:b3:38:38:5a:2a:7b:ac:1b:4d:01:fe:18:e5:
6f:5f:ab:98:7d:bc:8c:b0:c1:15:e0:a4:12:da:da:
8d:5f:e9:2c:ed:09:4a:0d:af:88:16:5a:4b:de:91:
08:94:f8:3f:02:32:63:03:59:1f:19:f5:48:5d:25:
03:1a:0d:e9:d2:17:82:57:64:03:97:b1:fd:90:e7:
d9:65:01:93:39:1a:6c:95:8c:55:75:90:3e:88:0f:
7f:a1:51:50:a8:55:84:7d:0d:ee:08:ac:0d:fd:5d:
01:78:0a:01:5f:90:d9:2b:2a:85:95:51:df:cd:99:
84:7a:4e:ee:8e:6c:5f:3c:11:60:72:eb:cc:36:59:
88:36:a6:48:5f:66:03:d9:dc:93:53:bd:3d:3b:8a:
a0:48:14:82:58:04:29:3e:80:db:51:28:bb:5c:c6:
63:45:2e:9f:e9:90:5e:94:48:d7:e0:b0:90:fb:0b:
db:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:9C:D6:63:DD:2D:76:F7:7E:64:7B:AA:7A:BB:72:07:A3:8B:CC:0B
X509v3 Authority Key Identifier:
keyid:2F:10:28:15:D2:7E:65:11:74:6D:4A:3E:9F:D1:35:9C:D9:82:A8:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LxAoFdJ-ZRF0bUo-n9E1nNmCqGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a33f9a-9bc3-430d-bb7c-5ec794b0e69c/1/spzWY90tdvd-ZHuqertyB6OLzAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a33f9a-9bc3-430d-bb7c-5ec794b0e69c/1/LxAoFdJ-ZRF0bUo-n9E1nNmCqGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.4.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:b1:aa:3d:e5:27:bf:c8:3a:bc:64:f4:74:a8:72:85:a1:7c:
3b:6b:3d:5d:f2:01:8a:8d:66:1b:c7:53:04:8b:44:ed:ab:41:
51:d1:e6:11:60:6f:19:2b:3e:d3:62:71:84:01:46:9d:cc:9a:
51:a8:7c:b9:d4:5d:e2:f8:1b:92:97:36:25:34:1d:59:4b:00:
7b:1c:98:1d:ef:20:ed:99:3b:d0:7d:e1:af:f1:bd:3c:6a:8f:
f4:47:5a:80:b0:92:ab:ba:27:30:d0:bd:3a:54:f9:61:65:f3:
9a:b1:69:9f:9a:39:e1:60:eb:59:c0:f7:b9:67:4d:43:1a:a1:
17:48:76:01:33:5c:97:84:5d:83:a2:65:a8:7b:ef:66:91:b5:
28:59:d5:a9:7e:75:ee:9b:74:c3:59:94:2f:20:8c:d9:ab:ca:
ae:be:75:61:a7:e2:8c:37:ff:ee:33:97:b2:b8:e9:c4:6f:3c:
be:3b:2e:f3:3a:d5:34:61:b8:57:f1:05:d9:11:d2:e1:c8:9f:
c4:05:f8:fb:45:f5:29:49:d7:b1:f0:8b:e5:cc:b5:1e:e6:61:
16:e7:13:19:a2:c2:90:d4:9b:4d:3c:87:38:9f:47:fb:f4:d7:
0c:d9:3d:61:22:24:c2:93:d7:41:23:88:8b:cd:1a:e4:23:77:
5d:2e:8b:f5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUQlvNmEJVrEZR9a4Nc3yvWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmMTAyODE1ZDI3ZTY1MTE3NDZkNGEzZTlmZDEzNTljZDk4
MmE4NjYwHhcNMjIxMjE0MTIyMzI2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjljZDY2M2RkMmQ3NmY3N2U2NDdiYWE3YWJiNzIwN2EzOGJjYzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtztCbXWcs0gtJxb5qqM7shm2TGh4
qbfLywvlv3abyd3iT1OVguN3oE1QAzPohmDQbrJ5pG3lkrLj8+BBzCtbJ7EQcLNh
v9n26eUzubM4OFoqe6wbTQH+GOVvX6uYfbyMsMEV4KQS2tqNX+ks7QlKDa+IFlpL
3pEIlPg/AjJjA1kfGfVIXSUDGg3p0heCV2QDl7H9kOfZZQGTORpslYxVdZA+iA9/
oVFQqFWEfQ3uCKwN/V0BeAoBX5DZKyqFlVHfzZmEek7ujmxfPBFgcuvMNlmINqZI
X2YD2dyTU709O4qgSBSCWAQpPoDbUSi7XMZjRS6f6ZBelEjX4LCQ+wvb2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLKc1mPdLXb3fmR7qnq7cgeji8wLMB8GA1UdIwQY
MBaAFC8QKBXSfmURdG1KPp/RNZzZgqhmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHhBb0ZkSi1aUkYwYlVvLW45RTFuTm1DcUdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hMzNmOWEtOWJjMy00MzBkLWJiN2Mt
NWVjNzk0YjBlNjljLzEvc3B6V1k5MHRkdmQtWkh1cWVydHlCNk9MekFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi9hMzNmOWEtOWJjMy00MzBkLWJiN2MtNWVjNzk0YjBlNjlj
LzEvTHhBb0ZkSi1aUkYwYlVvLW45RTFuTm1DcUdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9EEMA0G
CSqGSIb3DQEBCwUAA4IBAQCjsao95Se/yDq8ZPR0qHKFoXw7az1d8gGKjWYbx1ME
i0Ttq0FR0eYRYG8ZKz7TYnGEAUadzJpRqHy51F3i+BuSlzYlNB1ZSwB7HJgd7yDt
mTvQfeGv8b08ao/0R1qAsJKruicw0L06VPlhZfOasWmfmjnhYOtZwPe5Z01DGqEX
SHYBM1yXhF2DomWoe+9mkbUoWdWpfnXum3TDWZQvIIzZq8quvnVhp+KMN//uM5ey
uOnEbzy+Oy7zOtU0YbhX8QXZEdLhyJ/EBfj7RfUpSdex8IvlzLUe5mEW5xMZosKQ
1JtNPIc4n0f79NcM2T1hIiTCk9dBI4iLzRrkI3ddLov1
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:23 2024 by rpki-client on console-ams.rpki-client.org