Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/0d3f51-af73-4045-a0f1-eab828eca45b/1/P_JvfKsYI-gr4HZRQ6kCdxuhSyU.roa
File: P_JvfKsYI-gr4HZRQ6kCdxuhSyU.roa (raw, json)
Hash identifier: s0m6IzWOesm+i2uz37a92lfwOYDOXzGgLcewmRVw87c=
Subject key identifier: 3F:F2:6F:7C:AB:18:23:E8:2B:E0:76:51:43:A9:02:77:1B:A1:4B:25
Certificate issuer: /CN=03ebb001528281734bf5c94bc4bef6f6e99a377e
Certificate serial: BA8F
Authority key identifier: 03:EB:B0:01:52:82:81:73:4B:F5:C9:4B:C4:BE:F6:F6:E9:9A:37:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-uwAVKCgXNL9clLxL729umaN34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/0d3f51-af73-4045-a0f1-eab828eca45b/1/P_JvfKsYI-gr4HZRQ6kCdxuhSyU.roa
Signing time: Fri 04 Mar 2022 18:05:28 +0000
ROA not before: Fri 04 Mar 2022 18:05:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42878
IP address blocks: 91.193.202.0/24 maxlen: 24
91.193.200.0/22 maxlen: 22
91.193.201.0/24 maxlen: 24
91.193.203.0/24 maxlen: 24
91.193.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47759 (0xba8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03ebb001528281734bf5c94bc4bef6f6e99a377e
Validity
Not Before: Mar 4 18:05:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ff26f7cab1823e82be0765143a902771ba14b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0d:2f:cb:23:18:ee:83:ed:0b:d1:d6:d5:42:
ec:cc:68:b5:ab:9c:17:4b:6e:51:86:0b:69:f4:c3:
9c:47:1b:52:8c:9e:17:97:83:b5:28:df:12:86:7e:
12:8f:53:fc:4a:9c:54:8e:de:18:b1:eb:49:e9:94:
98:99:03:d8:85:e4:66:23:fa:b7:81:8b:b3:b6:07:
d9:79:b1:0f:a2:7c:02:47:fc:1f:14:82:da:ef:32:
6c:fd:21:48:b1:cd:37:e3:1a:b7:d6:a5:8b:0b:9c:
d6:0b:08:a4:b1:ed:f9:cd:08:3c:ef:d6:a6:e6:c1:
30:ba:58:ff:69:6e:f5:a5:ee:dd:3a:83:36:4e:80:
94:cf:be:16:9d:78:36:49:5a:9d:a6:ee:4b:a4:42:
2d:17:73:a8:4b:ab:3b:68:19:db:c3:fa:4d:69:1e:
db:eb:c2:2a:6f:d4:91:2f:57:91:6d:f0:5a:65:0c:
f7:a0:7d:17:9f:e8:3f:c2:41:1e:24:1c:22:b9:35:
62:27:1e:f5:99:72:3c:e4:24:86:46:f7:7b:94:2b:
a2:3a:0a:f8:6c:f1:8f:32:be:c0:be:5b:23:cc:2b:
28:92:f5:ca:f6:89:32:bb:dc:7e:f1:e6:e3:91:25:
e2:fb:a0:1d:f7:8c:b9:09:75:d5:4e:14:65:61:f7:
5a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F2:6F:7C:AB:18:23:E8:2B:E0:76:51:43:A9:02:77:1B:A1:4B:25
X509v3 Authority Key Identifier:
keyid:03:EB:B0:01:52:82:81:73:4B:F5:C9:4B:C4:BE:F6:F6:E9:9A:37:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-uwAVKCgXNL9clLxL729umaN34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0d3f51-af73-4045-a0f1-eab828eca45b/1/P_JvfKsYI-gr4HZRQ6kCdxuhSyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0d3f51-af73-4045-a0f1-eab828eca45b/1/A-uwAVKCgXNL9clLxL729umaN34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.200.0/22
Signature Algorithm: sha256WithRSAEncryption
71:4e:68:95:73:ab:bd:6d:1f:51:8f:16:8c:9e:80:c3:20:4f:
ba:09:3a:b7:72:d7:36:2f:c8:38:68:89:19:ab:34:25:90:f8:
d8:3e:c9:95:fb:07:55:7e:cb:b5:de:80:c9:3a:b9:28:03:de:
54:f9:27:4d:2c:09:60:1a:47:b0:4e:c1:0e:e3:6a:60:b2:d8:
5b:48:31:c6:fd:0f:ce:69:26:d1:97:ba:cb:35:82:f0:31:6e:
4c:54:d2:44:4b:19:8b:65:60:79:59:84:e3:ed:7d:7b:26:fa:
a3:c3:25:4c:99:f9:28:23:90:ba:6b:b4:f5:f6:d7:12:cc:e1:
d5:52:36:f1:f9:8f:6f:5e:35:f7:f8:8c:77:d7:90:df:77:19:
95:63:16:22:56:b2:c5:71:dc:26:ac:33:e6:4e:3b:b0:bb:bd:
bf:bf:5f:af:45:d3:f1:6c:df:ef:ef:1e:84:9f:b1:d5:a2:d3:
a7:82:bf:b0:46:3e:5c:79:06:02:a0:a5:4b:d2:66:18:ac:4e:
63:08:de:a9:63:3b:5a:18:1b:15:b4:0a:a7:cb:57:74:08:60:
7c:5b:ca:25:4d:a0:1d:23:17:2a:29:54:83:ad:91:88:1d:3f:
00:63:00:6b:fe:7d:75:7f:0a:6f:db:e2:37:bc:dd:22:c1:3c:
e3:ae:22:e9
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDALqPMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDAz
ZWJiMDAxNTI4MjgxNzM0YmY1Yzk0YmM0YmVmNmY2ZTk5YTM3N2UwHhcNMjIwMzA0
MTgwNTI4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygzZmYyNmY3Y2FiMTgy
M2U4MmJlMDc2NTE0M2E5MDI3NzFiYTE0YjI1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAyw0vyyMY7oPtC9HW1ULszGi1q5wXS25Rhgtp9MOcRxtSjJ4X
l4O1KN8Shn4Sj1P8SpxUjt4YsetJ6ZSYmQPYheRmI/q3gYuztgfZebEPonwCR/wf
FILa7zJs/SFIsc034xq31qWLC5zWCwikse35zQg879am5sEwulj/aW71pe7dOoM2
ToCUz74WnXg2SVqdpu5LpEItF3OoS6s7aBnbw/pNaR7b68Iqb9SRL1eRbfBaZQz3
oH0Xn+g/wkEeJBwiuTViJx71mXI85CSGRvd7lCuiOgr4bPGPMr7AvlsjzCsokvXK
9okyu9x+8ebjkSXi+6Ad94y5CXXVThRlYfdafwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFD/yb3yrGCPoK+B2UUOpAncboUslMB8GA1UdIwQYMBaAFAPrsAFSgoFzS/XJ
S8S+9vbpmjd+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
QS11d0FWS0NnWE5MOWNsTHhMNzI5dW1hTjM0LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xOC8wZDNmNTEtYWY3My00MDQ1LWEwZjEtZWFiODI4ZWNhNDViLzEv
UF9KdmZLc1lJLWdyNEhaUlE2a0NkeHVoU3lVLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8w
ZDNmNTEtYWY3My00MDQ1LWEwZjEtZWFiODI4ZWNhNDViLzEvQS11d0FWS0NnWE5M
OWNsTHhMNzI5dW1hTjM0LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW8HIMA0GCSqGSIb3DQEBCwUAA4IB
AQBxTmiVc6u9bR9RjxaMnoDDIE+6CTq3ctc2L8g4aIkZqzQlkPjYPsmV+wdVfsu1
3oDJOrkoA95U+SdNLAlgGkewTsEO42pgsthbSDHG/Q/OaSbRl7rLNYLwMW5MVNJE
SxmLZWB5WYTj7X17JvqjwyVMmfkoI5C6a7T19tcSzOHVUjbx+Y9vXjX3+Ix315Df
dxmVYxYiVrLFcdwmrDPmTjuwu72/v1+vRdPxbN/v7x6En7HVotOngr+wRj5ceQYC
oKVL0mYYrE5jCN6pYztaGBsVtAqny1d0CGB8W8olTaAdIxcqKVSDrZGIHT8AYwBr
/n11fwpv2+I3vN0iwTzjriLp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org