Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/quTbSkWLza7OoYmbDd1Iocj6Kg8.roa
File: quTbSkWLza7OoYmbDd1Iocj6Kg8.roa (raw, json)
Hash identifier: 9fmPztmtUIlINdQ2p3j3GLOPK8tJGPBtQ3I+mkPLt6w=
Subject key identifier: AA:E4:DB:4A:45:8B:CD:AE:CE:A1:89:9B:0D:DD:48:A1:C8:FA:2A:0F
Certificate issuer: /CN=8c3bad6ae491643d075e21cba859ef28e26e3c79
Certificate serial: 036CFCFF
Authority key identifier: 8C:3B:AD:6A:E4:91:64:3D:07:5E:21:CB:A8:59:EF:28:E2:6E:3C:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDutauSRZD0HXiHLqFnvKOJuPHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/quTbSkWLza7OoYmbDd1Iocj6Kg8.roa
Signing time: Sat 01 Jan 2022 15:03:14 +0000
ROA not before: Sat 01 Jan 2022 15:03:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58174
IP address blocks: 91.239.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57474303 (0x36cfcff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c3bad6ae491643d075e21cba859ef28e26e3c79
Validity
Not Before: Jan 1 15:03:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aae4db4a458bcdaecea1899b0ddd48a1c8fa2a0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c0:d2:cf:99:bd:96:26:6a:6c:0f:c8:57:30:
95:c0:fa:93:f2:f4:a7:57:45:4a:db:fa:1c:14:e5:
14:f7:eb:3d:75:f8:35:82:d2:cb:a8:7a:e6:0e:57:
f9:fa:34:48:df:2c:cb:23:e4:29:2c:1d:4e:0d:d6:
72:9e:97:6c:4f:53:1f:5b:33:f5:29:25:3c:8c:2a:
d8:9a:0d:df:f5:c8:3e:ad:7e:36:e1:e9:8a:e9:3c:
72:fc:82:0d:6b:f7:3a:7c:51:e3:e4:2a:e7:5f:a8:
f1:23:92:51:24:88:9c:01:c1:a2:5a:eb:46:a2:9a:
a9:c6:fa:5d:97:b4:c6:7f:f6:5c:26:e5:4b:6e:f8:
06:02:16:9a:d4:ce:76:a7:ea:d7:9f:b2:4e:8d:1a:
9e:83:2d:18:64:9f:35:0d:3d:04:bd:c8:ac:6f:13:
9c:26:a2:f3:61:a2:fd:9b:14:f1:3c:e6:ff:b1:33:
00:1a:0d:73:4b:12:3b:73:8a:0f:d5:ab:46:96:04:
9e:87:00:17:5a:93:7a:2d:6c:9a:93:59:66:c4:cb:
c2:70:87:d3:c0:2f:d5:92:bd:ca:f7:a5:7f:dd:a4:
85:87:b4:63:e7:1c:0b:7d:a8:15:13:30:d5:a5:76:
95:21:7e:2d:c8:25:20:07:03:98:ee:f5:d8:e1:7c:
c1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E4:DB:4A:45:8B:CD:AE:CE:A1:89:9B:0D:DD:48:A1:C8:FA:2A:0F
X509v3 Authority Key Identifier:
keyid:8C:3B:AD:6A:E4:91:64:3D:07:5E:21:CB:A8:59:EF:28:E2:6E:3C:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDutauSRZD0HXiHLqFnvKOJuPHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/quTbSkWLza7OoYmbDd1Iocj6Kg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aef8a4-28c8-4a96-9ecc-50d895d4ae23/1/jDutauSRZD0HXiHLqFnvKOJuPHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.123.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:e8:ba:ca:86:88:c8:5c:91:34:87:04:ad:d1:2b:47:3b:8b:
87:2f:31:73:37:e8:5e:16:3c:d8:eb:5d:73:b1:8d:0d:a2:b5:
40:33:d4:3b:b5:de:10:49:3d:30:88:1c:43:d7:5e:00:0b:33:
b7:90:6d:9e:38:9d:f4:fe:90:bc:fc:59:9a:9f:69:8a:9f:ee:
80:c6:63:a9:e8:8a:a6:be:92:c0:c8:64:50:e9:ae:33:5d:a6:
c4:05:85:dd:fa:4f:c9:60:5e:80:df:33:b6:45:23:41:00:8d:
24:d5:47:04:51:41:d2:c7:3a:67:61:ef:30:c1:9b:92:83:ba:
02:ad:6b:18:26:84:8e:61:b6:1e:d0:3e:d1:5a:6f:31:72:94:
a3:96:0e:fa:bd:59:a1:2a:9e:be:3c:eb:e8:74:d3:a7:fc:a7:
67:fd:9f:43:24:91:1f:28:19:33:c5:78:d2:48:18:e7:a2:50:
8b:cc:1a:11:9f:ea:1e:bd:56:02:46:b3:6d:2a:b5:fb:e1:34:
03:47:8c:d9:26:a7:0e:28:af:13:24:95:a8:50:d6:98:8c:9b:
aa:0d:40:2d:c0:ae:36:18:4d:01:e2:58:af:89:0e:7b:a0:f4:
14:8d:0a:93:b8:54:35:b0:7e:7f:0a:04:33:b5:83:eb:56:04:
04:b4:54:86
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA2z8/zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YzNiYWQ2YWU0OTE2NDNkMDc1ZTIxY2JhODU5ZWYyOGUyNmUzYzc5MB4XDTIyMDEw
MTE1MDMxNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWFlNGRiNGE0NThi
Y2RhZWNlYTE4OTliMGRkZDQ4YTFjOGZhMmEwZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALjA0s+ZvZYmamwPyFcwlcD6k/L0p1dFStv6HBTlFPfrPXX4
NYLSy6h65g5X+fo0SN8syyPkKSwdTg3Wcp6XbE9TH1sz9SklPIwq2JoN3/XIPq1+
NuHpiuk8cvyCDWv3OnxR4+Qq51+o8SOSUSSInAHBolrrRqKaqcb6XZe0xn/2XCbl
S274BgIWmtTOdqfq15+yTo0anoMtGGSfNQ09BL3IrG8TnCai82Gi/ZsU8Tzm/7Ez
ABoNc0sSO3OKD9WrRpYEnocAF1qTei1smpNZZsTLwnCH08Av1ZK9yvelf92khYe0
Y+ccC32oFRMw1aV2lSF+LcglIAcDmO712OF8wUsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSq5NtKRYvNrs6hiZsN3UihyPoqDzAfBgNVHSMEGDAWgBSMO61q5JFkPQde
IcuoWe8o4m48eTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pEdXRhdVNSWkQwSFhpSExxRm52S09KdVBIay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTgvYWVmOGE0LTI4YzgtNGE5Ni05ZWNjLTUwZDg5NWQ0YWUyMy8x
L3F1VGJTa1dMemE3T29ZbWJEZDFJb2NqNktnOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgv
YWVmOGE0LTI4YzgtNGE5Ni05ZWNjLTUwZDg5NWQ0YWUyMy8xL2pEdXRhdVNSWkQw
SFhpSExxRm52S09KdVBIay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvvezANBgkqhkiG9w0BAQsFAAOC
AQEAK+i6yoaIyFyRNIcErdErRzuLhy8xczfoXhY82Otdc7GNDaK1QDPUO7XeEEk9
MIgcQ9deAAszt5Btnjid9P6QvPxZmp9pip/ugMZjqeiKpr6SwMhkUOmuM12mxAWF
3fpPyWBegN8ztkUjQQCNJNVHBFFB0sc6Z2HvMMGbkoO6Aq1rGCaEjmG2HtA+0Vpv
MXKUo5YO+r1ZoSqevjzr6HTTp/ynZ/2fQySRHygZM8V40kgY56JQi8waEZ/qHr1W
AkazbSq1++E0A0eM2SanDiivEySVqFDWmIybqg1ALcCuNhhNAeJYr4kOe6D0FI0K
k7hUNbB+fwoEM7WD61YEBLRUhg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:13 2025 by rpki-client