Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/RtNyYiT5NCJP-IVi6S6-1IZ13j4.roa
File: RtNyYiT5NCJP-IVi6S6-1IZ13j4.roa (raw, json)
Hash identifier: JhLoIPA8VlTRU0Pj9CjeOuQROyeevLsO6PlQywU+MrE=
Subject key identifier: 46:D3:72:62:24:F9:34:22:4F:F8:85:62:E9:2E:BE:D4:86:75:DE:3E
Certificate issuer: /CN=5c4fc1e4defc471c9fdb7fdadb9895563daf999c
Certificate serial: 038520B1
Authority key identifier: 5C:4F:C1:E4:DE:FC:47:1C:9F:DB:7F:DA:DB:98:95:56:3D:AF:99:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XE_B5N78Rxyf23_a25iVVj2vmZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/RtNyYiT5NCJP-IVi6S6-1IZ13j4.roa
Signing time: Thu 10 Mar 2022 10:28:15 +0000
ROA not before: Thu 10 Mar 2022 10:28:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44352
IP address blocks: 91.199.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59056305 (0x38520b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4fc1e4defc471c9fdb7fdadb9895563daf999c
Validity
Not Before: Mar 10 10:28:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46d3726224f934224ff88562e92ebed48675de3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:18:bc:a5:af:0f:c4:79:81:51:51:26:4b:f7:
69:ff:37:d1:16:5f:72:48:66:f7:9d:7a:ed:8d:9e:
0c:94:c6:ce:55:69:c4:af:86:f9:9f:64:19:12:76:
56:5d:bc:35:9c:be:6b:c7:81:5c:15:0e:97:53:ed:
fb:5e:6a:00:88:64:dc:39:7f:04:0d:c9:c8:15:80:
82:77:b9:c3:f0:55:3c:b8:16:fc:19:e6:01:e7:5b:
b7:a7:2a:6f:6f:58:7f:cf:de:ac:3f:40:dc:46:7e:
87:56:72:ed:ba:66:25:7f:01:8f:d0:43:a5:83:d1:
2a:49:29:69:e8:0d:37:2d:b9:3f:7e:f6:0e:27:71:
69:0b:72:98:be:c6:a3:9a:6e:9b:3e:13:78:05:65:
ef:62:c1:30:ab:d6:7e:88:d5:7b:d5:ae:a7:5c:5b:
76:84:ed:39:f9:a3:26:7c:a4:fe:01:c6:1b:d5:4a:
af:bd:f4:21:3b:e9:aa:66:b5:96:7f:b5:de:97:de:
4b:01:f3:f2:b2:89:07:fa:15:f5:e6:a3:46:a9:51:
d8:e2:94:f3:b7:23:28:3a:1d:39:e1:7b:8e:f8:b8:
50:22:d5:1d:6a:71:04:99:ad:44:4c:d1:88:8f:0c:
03:0a:70:a8:ce:8b:f0:1d:7a:92:23:45:e7:dd:86:
3d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D3:72:62:24:F9:34:22:4F:F8:85:62:E9:2E:BE:D4:86:75:DE:3E
X509v3 Authority Key Identifier:
keyid:5C:4F:C1:E4:DE:FC:47:1C:9F:DB:7F:DA:DB:98:95:56:3D:AF:99:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XE_B5N78Rxyf23_a25iVVj2vmZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/RtNyYiT5NCJP-IVi6S6-1IZ13j4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9cfa5f-5d2d-4be4-a80d-7d0ee2e990f5/1/XE_B5N78Rxyf23_a25iVVj2vmZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.93.0/24
Signature Algorithm: sha256WithRSAEncryption
14:1d:72:e3:ba:9a:19:6f:85:c4:34:4e:94:2d:ba:96:2c:36:
4b:e6:bc:65:0a:b4:54:53:0e:e8:09:8d:1a:95:fc:33:66:25:
b1:ac:d8:c1:20:b0:a5:1f:9b:87:e9:c5:5a:6b:41:79:2c:a4:
60:01:5b:cf:95:64:0f:31:3b:6d:2a:ed:ad:7f:8e:63:24:2f:
a8:fe:06:b7:62:68:39:17:20:79:1a:c9:41:d3:9f:2e:95:ee:
b0:41:2f:17:5d:b2:68:fd:a7:26:cd:15:e0:e0:60:9d:73:63:
09:22:80:b8:fb:70:fc:06:58:67:97:0b:02:24:f0:d8:50:62:
b3:3a:63:cb:21:9d:ef:d1:5e:56:a8:c9:e1:c5:d2:34:45:ab:
3c:41:0a:59:0b:9a:85:d6:5e:a7:b4:07:df:d1:fc:c9:7d:10:
db:01:99:2d:83:b7:a7:e2:ac:2a:4b:9b:de:c2:22:1a:63:46:
0b:89:fa:9e:da:97:d9:6e:8a:32:a7:04:00:3e:b6:df:89:26:
2b:cb:f3:0f:f4:80:b2:f6:1e:cd:4e:a6:68:e1:43:b2:6a:c8:
80:9a:7b:b5:9c:db:97:5f:2e:b7:da:1a:4a:86:39:8d:74:2d:
e8:f2:ed:a0:81:fe:9d:fb:54:f3:2f:47:ff:ca:5b:f6:33:04:
bc:25:07:06
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA4UgsTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YzRmYzFlNGRlZmM0NzFjOWZkYjdmZGFkYjk4OTU1NjNkYWY5OTljMB4XDTIyMDMx
MDEwMjgxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDZkMzcyNjIyNGY5
MzQyMjRmZjg4NTYyZTkyZWJlZDQ4Njc1ZGUzZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKIYvKWvD8R5gVFRJkv3af830RZfckhm95167Y2eDJTGzlVp
xK+G+Z9kGRJ2Vl28NZy+a8eBXBUOl1Pt+15qAIhk3Dl/BA3JyBWAgne5w/BVPLgW
/BnmAedbt6cqb29Yf8/erD9A3EZ+h1Zy7bpmJX8Bj9BDpYPRKkkpaegNNy25P372
DidxaQtymL7Go5pumz4TeAVl72LBMKvWfojVe9Wup1xbdoTtOfmjJnyk/gHGG9VK
r730ITvpqma1ln+13pfeSwHz8rKJB/oV9eajRqlR2OKU87cjKDodOeF7jvi4UCLV
HWpxBJmtREzRiI8MAwpwqM6L8B16kiNF592GPSsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRG03JiJPk0Ik/4hWLpLr7UhnXePjAfBgNVHSMEGDAWgBRcT8Hk3vxHHJ/b
f9rbmJVWPa+ZnDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hFX0I1Tjc4Unh5ZjIzX2EyNWlWVmoydm1ady5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvOWNmYTVmLTVkMmQtNGJlNC1hODBkLTdkMGVlMmU5OTBmNS8x
L1J0TnlZaVQ1TkNKUC1JVmk2UzYtMUlaMTNqNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
OWNmYTVmLTVkMmQtNGJlNC1hODBkLTdkMGVlMmU5OTBmNS8xL1hFX0I1Tjc4Unh5
ZjIzX2EyNWlWVmoydm1ady5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvHXTANBgkqhkiG9w0BAQsFAAOC
AQEAFB1y47qaGW+FxDROlC26liw2S+a8ZQq0VFMO6AmNGpX8M2YlsazYwSCwpR+b
h+nFWmtBeSykYAFbz5VkDzE7bSrtrX+OYyQvqP4Gt2JoORcgeRrJQdOfLpXusEEv
F12yaP2nJs0V4OBgnXNjCSKAuPtw/AZYZ5cLAiTw2FBiszpjyyGd79FeVqjJ4cXS
NEWrPEEKWQuahdZep7QH39H8yX0Q2wGZLYO3p+KsKkub3sIiGmNGC4n6ntqX2W6K
MqcEAD6234kmK8vzD/SAsvYezU6maOFDsmrIgJp7tZzbl18ut9oaSoY5jXQt6PLt
oIH+nftU8y9H/8pb9jMEvCUHBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:43 2024 by rpki-client on console-fra.rpki-client.org