Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/hENUOcdPT5fz87PgybGYgRr82RA.roa
File: hENUOcdPT5fz87PgybGYgRr82RA.roa (raw, json)
Hash identifier: pThzVf7f2SxODMao8xyRuufvas4pKWD3Gp0ncib74n0=
Subject key identifier: 84:43:54:39:C7:4F:4F:97:F3:F3:B3:E0:C9:B1:98:81:1A:FC:D9:10
Certificate issuer: /CN=6689c3995e2461d5a52fd4f1000782f99a4d4822
Certificate serial: 0183D034AE25502681D0BE36B7E97B87E702
Authority key identifier: 66:89:C3:99:5E:24:61:D5:A5:2F:D4:F1:00:07:82:F9:9A:4D:48:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZonDmV4kYdWlL9TxAAeC-ZpNSCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/hENUOcdPT5fz87PgybGYgRr82RA.roa
Signing time: Thu 13 Oct 2022 07:17:36 +0000
ROA not before: Thu 13 Oct 2022 07:17:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200410
IP address blocks: 91.187.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d0:34:ae:25:50:26:81:d0:be:36:b7:e9:7b:87:e7:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6689c3995e2461d5a52fd4f1000782f99a4d4822
Validity
Not Before: Oct 13 07:17:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84435439c74f4f97f3f3b3e0c9b198811afcd910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:17:8b:31:b7:ae:89:fc:1d:d9:0a:33:19:62:
bc:34:13:b0:94:e6:cb:f2:84:e9:d1:0a:bd:e0:18:
76:b9:52:79:a9:49:6c:c9:05:98:00:14:6b:c9:e8:
91:67:f6:5e:47:e1:0b:8d:1f:a5:01:29:da:b1:ed:
17:01:be:e0:42:76:6f:65:bd:31:d8:03:3f:15:e0:
cb:96:e0:85:3c:a0:fa:4e:b2:da:94:44:5c:81:36:
0f:86:69:8d:64:8e:e3:de:b6:1d:b4:fd:ff:5d:2d:
54:6f:9d:4f:a4:b6:ca:0a:e2:0e:8c:00:93:b2:a7:
cc:07:23:4e:e2:9d:5d:0b:46:3f:c1:38:28:1c:a3:
17:22:af:1a:fc:43:b7:36:ae:a8:53:c5:52:fa:a6:
56:86:48:27:05:c1:3c:2d:a2:53:8c:d3:91:2c:ee:
df:0c:74:8e:78:56:82:c5:42:0d:93:01:1f:8c:37:
ee:c1:4a:af:43:ca:b8:e6:40:c0:8f:de:a7:75:d9:
8c:77:ac:67:3b:cb:17:13:14:6e:58:5f:1d:1c:ba:
71:86:5b:10:76:56:f7:ef:2d:46:25:df:cd:cd:35:
b0:db:8c:cf:79:be:d5:7f:d8:b8:dd:9a:ed:ee:09:
de:a3:de:28:07:47:40:4c:47:40:2b:53:46:98:0d:
da:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:43:54:39:C7:4F:4F:97:F3:F3:B3:E0:C9:B1:98:81:1A:FC:D9:10
X509v3 Authority Key Identifier:
keyid:66:89:C3:99:5E:24:61:D5:A5:2F:D4:F1:00:07:82:F9:9A:4D:48:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZonDmV4kYdWlL9TxAAeC-ZpNSCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/hENUOcdPT5fz87PgybGYgRr82RA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/ZonDmV4kYdWlL9TxAAeC-ZpNSCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.187.224.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d2:4a:32:22:62:65:26:8f:7c:e1:50:0b:25:91:b7:6d:bd:
b3:74:85:1d:15:db:5d:1e:c0:31:7c:58:0d:24:40:8a:5b:18:
05:e2:a9:74:9f:0f:37:7e:5e:c2:18:7d:fe:dc:0a:40:4d:4d:
cd:99:fb:94:a9:84:37:3e:91:65:3b:f9:47:37:b1:9c:c2:00:
e5:4f:b8:26:61:6d:0a:4e:cc:0c:c2:2e:9d:0a:e4:47:84:08:
b2:a2:73:dc:23:97:a2:e8:19:60:fc:0c:4d:8c:5b:39:48:1a:
71:14:e0:32:ea:91:ba:da:54:c7:f7:62:00:3b:db:50:ad:10:
d2:2a:df:3c:91:2e:fe:8d:89:61:e9:7c:8b:b6:c2:74:29:ec:
90:aa:e8:91:2a:44:65:d7:69:23:1b:56:6c:9e:d1:5f:1d:f6:
c0:f6:fe:af:15:5f:81:d2:8b:21:94:69:1e:de:67:30:bc:9c:
db:2b:de:70:4e:7d:22:33:1c:dc:e5:70:81:ca:18:c5:c9:1e:
9a:5a:9c:21:73:64:ed:44:6d:f2:eb:de:ee:b5:b2:58:33:e1:
69:c9:8c:58:04:c1:64:40:64:21:59:6e:a7:c3:09:0d:2d:bb:
98:b6:4a:ef:7f:21:1e:20:be:3e:d8:3c:4f:31:62:59:f0:48:
a4:17:c2:6e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPQNK4lUCaB0L42t+l7h+cCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ODljMzk5NWUyNDYxZDVhNTJmZDRmMTAwMDc4MmY5OWE0
ZDQ4MjIwHhcNMjIxMDEzMDcxNzM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDQzNTQzOWM3NGY0Zjk3ZjNmM2IzZTBjOWIxOTg4MTFhZmNkOTEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqheLMbeuifwd2QozGWK8NBOwlObL
8oTp0Qq94Bh2uVJ5qUlsyQWYABRryeiRZ/ZeR+ELjR+lASnase0XAb7gQnZvZb0x
2AM/FeDLluCFPKD6TrLalERcgTYPhmmNZI7j3rYdtP3/XS1Ub51PpLbKCuIOjACT
sqfMByNO4p1dC0Y/wTgoHKMXIq8a/EO3Nq6oU8VS+qZWhkgnBcE8LaJTjNORLO7f
DHSOeFaCxUINkwEfjDfuwUqvQ8q45kDAj96nddmMd6xnO8sXExRuWF8dHLpxhlsQ
dlb37y1GJd/NzTWw24zPeb7Vf9i43Zrt7gneo94oB0dATEdAK1NGmA3aVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIRDVDnHT0+X8/Oz4MmxmIEa/NkQMB8GA1UdIwQY
MBaAFGaJw5leJGHVpS/U8QAHgvmaTUgiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWm9uRG1WNGtZZFdsTDlUeEFBZUMtWnBOU0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zNDY5NjYtMDY5YS00MGIwLWIxNDMt
NDFlYWExZmRlMTFiLzEvaEVOVU9jZFBUNWZ6ODdQZ3liR1lnUnI4MlJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8zNDY5NjYtMDY5YS00MGIwLWIxNDMtNDFlYWExZmRlMTFi
LzEvWm9uRG1WNGtZZFdsTDlUeEFBZUMtWnBOU0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW7vgMA0G
CSqGSIb3DQEBCwUAA4IBAQA20koyImJlJo984VALJZG3bb2zdIUdFdtdHsAxfFgN
JECKWxgF4ql0nw83fl7CGH3+3ApATU3NmfuUqYQ3PpFlO/lHN7GcwgDlT7gmYW0K
TswMwi6dCuRHhAiyonPcI5ei6Blg/AxNjFs5SBpxFOAy6pG62lTH92IAO9tQrRDS
Kt88kS7+jYlh6XyLtsJ0KeyQquiRKkRl12kjG1ZsntFfHfbA9v6vFV+B0oshlGke
3mcwvJzbK95wTn0iMxzc5XCByhjFyR6aWpwhc2TtRG3y697utbJYM+FpyYxYBMFk
QGQhWW6nwwkNLbuYtkrvfyEeIL4+2DxPMWJZ8EikF8Ju
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:01 2024 by rpki-client on console-fra.rpki-client.org