Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/f6qXgFpngAV5BVPbRP_l-AC-3zE.roa
File: f6qXgFpngAV5BVPbRP_l-AC-3zE.roa (raw, json)
Hash identifier: nUw63D1sU0CUHSGS51fmmZfPt2+hfebSBO/5I2K9I+E=
Subject key identifier: 7F:AA:97:80:5A:67:80:05:79:05:53:DB:44:FF:E5:F8:00:BE:DF:31
Certificate issuer: /CN=5f92bff7a89a8590e6abbaec0282b0f24e0afeb2
Certificate serial: 0185719E6C1C779725ACC9767C75A47EBDF0
Authority key identifier: 5F:92:BF:F7:A8:9A:85:90:E6:AB:BA:EC:02:82:B0:F2:4E:0A:FE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5K_96iahZDmq7rsAoKw8k4K_rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/f6qXgFpngAV5BVPbRP_l-AC-3zE.roa
Signing time: Mon 02 Jan 2023 08:34:45 +0000
ROA not before: Mon 02 Jan 2023 08:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57920
IP address blocks: 91.236.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:6c:1c:77:97:25:ac:c9:76:7c:75:a4:7e:bd:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f92bff7a89a8590e6abbaec0282b0f24e0afeb2
Validity
Not Before: Jan 2 08:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7faa97805a678005790553db44ffe5f800bedf31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:08:a3:bf:5e:ce:05:55:c5:4e:0e:49:cf:42:
54:41:98:26:70:0c:66:32:85:73:5f:4a:53:04:2a:
3a:a8:26:dc:7f:d0:7c:ad:70:90:2b:df:26:6b:3e:
67:c1:f7:7a:d6:94:07:09:1e:cc:77:aa:40:83:be:
aa:53:56:82:2a:c6:33:a4:94:88:c7:68:66:d9:91:
9b:1b:3a:ff:38:96:19:f5:d1:4f:0c:53:32:81:d0:
ae:d9:5d:45:df:06:17:94:95:61:c8:a8:1e:01:e2:
73:9f:e5:f8:79:a8:64:a5:29:e9:b6:51:39:a7:40:
fa:7b:86:96:f9:97:75:b0:c2:d5:4f:ee:fc:06:76:
79:9e:55:10:3e:56:29:92:97:7a:58:51:3c:55:8b:
93:71:8e:70:80:23:79:1b:c1:f5:96:f4:76:1e:0f:
2d:55:eb:ee:86:e9:27:dc:ac:32:aa:86:48:c2:e2:
36:57:1e:a9:40:fd:c3:88:11:23:a0:c5:43:d0:16:
44:f2:e4:94:34:86:2c:6a:bf:88:28:94:cb:55:14:
09:88:87:82:09:70:e0:bd:62:a0:07:39:c5:5e:0f:
68:d4:77:6b:6c:1e:24:b4:0b:da:b3:23:03:21:2c:
8d:1f:56:21:ed:d9:5f:44:45:24:33:4a:31:a6:14:
47:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:AA:97:80:5A:67:80:05:79:05:53:DB:44:FF:E5:F8:00:BE:DF:31
X509v3 Authority Key Identifier:
keyid:5F:92:BF:F7:A8:9A:85:90:E6:AB:BA:EC:02:82:B0:F2:4E:0A:FE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5K_96iahZDmq7rsAoKw8k4K_rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/f6qXgFpngAV5BVPbRP_l-AC-3zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/X5K_96iahZDmq7rsAoKw8k4K_rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.182.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:48:8f:7b:f2:e3:bb:c8:8d:6b:b4:a3:fb:ee:b5:6d:d2:f6:
47:9a:be:2c:a1:97:42:52:b6:25:0e:c8:01:68:75:20:62:11:
0a:a5:cd:a7:0b:91:ab:46:19:55:56:b5:25:31:cc:56:71:82:
00:f1:02:bc:4a:46:07:c7:06:0a:d0:bd:08:c3:e7:07:83:fd:
24:16:1b:45:7a:c1:93:8c:6b:33:eb:0a:4c:65:d5:89:79:86:
ce:b5:0a:4b:ee:e1:5f:ab:78:cb:87:a9:e2:2c:b4:6c:5a:52:
b2:c6:cb:80:48:37:2a:e3:57:65:25:dc:99:b7:32:ac:32:e5:
0d:7b:a4:2d:56:7d:f3:60:4e:29:94:bb:42:db:62:fe:58:aa:
44:11:aa:a2:5f:c6:90:5c:fb:fd:05:b5:d9:01:95:e1:b2:52:
b8:b4:70:ab:fc:93:00:c2:84:df:1a:38:36:54:3d:45:ed:67:
2d:05:88:bf:09:4e:7e:f0:1c:31:1e:e0:e5:4a:ca:e8:12:3c:
d3:1a:8c:9c:b9:64:f3:2b:22:c6:48:34:8d:9f:0a:93:36:a6:
9d:14:37:a3:5d:83:4c:b1:25:2c:b8:4a:71:57:3e:87:7d:bb:
1b:8b:ba:a1:6b:f2:ac:61:7a:f8:5a:2b:eb:a6:54:72:35:93:
5a:8e:5a:56
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxnmwcd5clrMl2fHWkfr3wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmOTJiZmY3YTg5YTg1OTBlNmFiYmFlYzAyODJiMGYyNGUw
YWZlYjIwHhcNMjMwMTAyMDgzNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmFhOTc4MDVhNjc4MDA1NzkwNTUzZGI0NGZmZTVmODAwYmVkZjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAugijv17OBVXFTg5Jz0JUQZgmcAxm
MoVzX0pTBCo6qCbcf9B8rXCQK98maz5nwfd61pQHCR7Md6pAg76qU1aCKsYzpJSI
x2hm2ZGbGzr/OJYZ9dFPDFMygdCu2V1F3wYXlJVhyKgeAeJzn+X4eahkpSnptlE5
p0D6e4aW+Zd1sMLVT+78BnZ5nlUQPlYpkpd6WFE8VYuTcY5wgCN5G8H1lvR2Hg8t
Vevuhukn3KwyqoZIwuI2Vx6pQP3DiBEjoMVD0BZE8uSUNIYsar+IKJTLVRQJiIeC
CXDgvWKgBznFXg9o1HdrbB4ktAvasyMDISyNH1Yh7dlfREUkM0oxphRHzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH+ql4BaZ4AFeQVT20T/5fgAvt8xMB8GA1UdIwQY
MBaAFF+Sv/eomoWQ5qu67AKCsPJOCv6yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDVLXzk2aWFoWkRtcTdyc0FvS3c4azRLX3JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9hNzhlZjEtYzNjOS00M2EwLTliMWMt
MWQ5ZDhkMDA0MTExLzEvZjZxWGdGcG5nQVY1QlZQYlJQX2wtQUMtM3pFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS9hNzhlZjEtYzNjOS00M2EwLTliMWMtMWQ5ZDhkMDA0MTEx
LzEvWDVLXzk2aWFoWkRtcTdyc0FvS3c4azRLX3JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+y2MA0G
CSqGSIb3DQEBCwUAA4IBAQCaSI978uO7yI1rtKP77rVt0vZHmr4soZdCUrYlDsgB
aHUgYhEKpc2nC5GrRhlVVrUlMcxWcYIA8QK8SkYHxwYK0L0Iw+cHg/0kFhtFesGT
jGsz6wpMZdWJeYbOtQpL7uFfq3jLh6niLLRsWlKyxsuASDcq41dlJdyZtzKsMuUN
e6QtVn3zYE4plLtC22L+WKpEEaqiX8aQXPv9BbXZAZXhslK4tHCr/JMAwoTfGjg2
VD1F7WctBYi/CU5+8BwxHuDlSsroEjzTGoycuWTzKyLGSDSNnwqTNqadFDejXYNM
sSUsuEpxVz6Hfbsbi7qha/KsYXr4WivrplRyNZNajlpW
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:40:46 2025 by rpki-client