Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/acac1e-e690-41b0-83be-9ed35d5b3735/1/niBtAWWE0VLDtI4rlOmAj_ubxJk.roa
File: niBtAWWE0VLDtI4rlOmAj_ubxJk.roa (raw, json)
Hash identifier: UYKydyTzrzsrqwXL4Yg1kEGQc0rXqKzlpLDQ3J+14Mc=
Subject key identifier: 9E:20:6D:01:65:84:D1:52:C3:B4:8E:2B:94:E9:80:8F:FB:9B:C4:99
Certificate issuer: /CN=585d968f5be1ce671e20d5831c170001f372d3dd
Certificate serial: 05BFEE3C
Authority key identifier: 58:5D:96:8F:5B:E1:CE:67:1E:20:D5:83:1C:17:00:01:F3:72:D3:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WF2Wj1vhzmceINWDHBcAAfNy090.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/acac1e-e690-41b0-83be-9ed35d5b3735/1/niBtAWWE0VLDtI4rlOmAj_ubxJk.roa
Signing time: Sat 01 Jan 2022 05:03:02 +0000
ROA not before: Sat 01 Jan 2022 05:03:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20845
IP address blocks: 91.135.112.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96464444 (0x5bfee3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=585d968f5be1ce671e20d5831c170001f372d3dd
Validity
Not Before: Jan 1 05:03:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e206d016584d152c3b48e2b94e9808ffb9bc499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:09:13:14:2d:e9:05:59:88:b1:ec:1e:d2:27:
09:5e:30:c9:5f:d1:53:32:fb:33:85:46:52:58:4f:
a7:59:ea:e6:7e:99:5f:05:cb:fe:d9:98:48:f0:20:
bd:97:d2:fb:43:b4:47:d4:5f:57:4a:8c:d8:d6:ca:
96:47:2a:e1:02:51:f5:11:b3:85:6a:1a:d5:ff:5c:
ed:f8:e0:43:09:c3:55:fe:d3:39:02:fd:47:00:99:
d3:1c:de:af:ab:95:40:db:41:1a:b3:58:df:5a:c1:
25:ff:aa:3d:7a:3c:1e:ab:e5:ed:9d:dd:23:54:b1:
30:9b:4d:7c:26:ee:bd:bf:47:58:88:25:d4:84:e4:
33:1b:0e:bf:c5:e7:eb:73:5c:d6:0d:76:ad:f9:d3:
46:93:e6:9d:b9:4b:40:11:d8:4d:c5:d4:47:0c:91:
d2:30:52:23:a4:47:10:53:fe:ae:2d:e8:a4:f7:d1:
8a:56:59:27:1b:bc:fe:e7:4f:2d:94:fd:4d:26:71:
4a:79:2c:39:46:bb:6f:27:93:53:0c:08:59:75:9c:
ad:92:86:30:2d:0e:e7:80:d5:76:34:5b:95:c2:6b:
7c:de:9d:39:e6:0d:f9:4e:ca:1d:20:d5:79:6c:c7:
4f:f0:39:43:60:7c:9f:72:c9:cb:11:8c:72:51:7e:
59:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:20:6D:01:65:84:D1:52:C3:B4:8E:2B:94:E9:80:8F:FB:9B:C4:99
X509v3 Authority Key Identifier:
keyid:58:5D:96:8F:5B:E1:CE:67:1E:20:D5:83:1C:17:00:01:F3:72:D3:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WF2Wj1vhzmceINWDHBcAAfNy090.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/acac1e-e690-41b0-83be-9ed35d5b3735/1/niBtAWWE0VLDtI4rlOmAj_ubxJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/acac1e-e690-41b0-83be-9ed35d5b3735/1/WF2Wj1vhzmceINWDHBcAAfNy090.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.135.112.0/20
Signature Algorithm: sha256WithRSAEncryption
44:92:88:4e:64:b8:6f:96:3b:1a:2a:bc:2a:06:a7:66:1e:99:
1a:81:5c:03:c3:6d:17:d1:86:ce:dc:94:a2:f7:77:ee:03:9a:
ef:7c:60:5a:4f:af:b1:a8:cb:6c:84:85:75:97:08:e6:06:8c:
ae:36:f5:07:2b:7b:90:22:2f:09:5f:cc:3b:eb:98:b4:8e:3c:
80:8d:c6:eb:9e:8b:32:b4:f7:8c:e9:f6:44:d0:da:84:31:53:
31:51:b9:e2:f9:6c:49:6c:f5:76:c1:3d:d6:6a:d7:82:a6:b3:
0c:8d:2b:3f:55:8a:04:b8:00:d5:ef:ca:31:4b:20:e7:7a:0b:
98:a3:42:5c:00:67:3a:e5:dd:12:74:7a:43:ac:9b:34:19:8c:
1e:1a:64:98:7c:d3:56:a2:af:3f:ae:52:fb:6a:a3:ce:34:09:
ed:ce:59:d4:5c:60:4b:09:a0:c8:fc:4a:67:4b:b0:90:a9:4e:
f4:4d:1b:c0:40:fe:23:21:d9:fb:05:fe:39:27:60:96:94:a2:
31:31:3c:c0:47:05:76:80:ea:ed:59:85:0b:61:0d:fb:3f:92:
fd:fd:fe:9a:71:71:78:3b:28:69:a4:2f:d5:de:60:e6:35:8a:
e5:c5:32:cd:58:d0:fc:a9:b7:d0:fa:12:73:aa:25:68:98:7c:
3b:86:71:02
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBb/uPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ODVkOTY4ZjViZTFjZTY3MWUyMGQ1ODMxYzE3MDAwMWYzNzJkM2RkMB4XDTIyMDEw
MTA1MDMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWUyMDZkMDE2NTg0
ZDE1MmMzYjQ4ZTJiOTRlOTgwOGZmYjliYzQ5OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJkJExQt6QVZiLHsHtInCV4wyV/RUzL7M4VGUlhPp1nq5n6Z
XwXL/tmYSPAgvZfS+0O0R9RfV0qM2NbKlkcq4QJR9RGzhWoa1f9c7fjgQwnDVf7T
OQL9RwCZ0xzer6uVQNtBGrNY31rBJf+qPXo8Hqvl7Z3dI1SxMJtNfCbuvb9HWIgl
1ITkMxsOv8Xn63Nc1g12rfnTRpPmnblLQBHYTcXURwyR0jBSI6RHEFP+ri3opPfR
ilZZJxu8/udPLZT9TSZxSnksOUa7byeTUwwIWXWcrZKGMC0O54DVdjRblcJrfN6d
OeYN+U7KHSDVeWzHT/A5Q2B8n3LJyxGMclF+WdMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSeIG0BZYTRUsO0jiuU6YCP+5vEmTAfBgNVHSMEGDAWgBRYXZaPW+HOZx4g
1YMcFwAB83LT3TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1dGMldqMXZoem1jZUlOV0RIQmNBQWZOeTA5MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvYWNhYzFlLWU2OTAtNDFiMC04M2JlLTllZDM1ZDViMzczNS8x
L25pQnRBV1dFMFZMRHRJNHJsT21Bal91YnhKay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
YWNhYzFlLWU2OTAtNDFiMC04M2JlLTllZDM1ZDViMzczNS8xL1dGMldqMXZoem1j
ZUlOV0RIQmNBQWZOeTA5MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBFuHcDANBgkqhkiG9w0BAQsFAAOC
AQEARJKITmS4b5Y7Giq8KganZh6ZGoFcA8NtF9GGztyUovd37gOa73xgWk+vsajL
bISFdZcI5gaMrjb1Byt7kCIvCV/MO+uYtI48gI3G656LMrT3jOn2RNDahDFTMVG5
4vlsSWz1dsE91mrXgqazDI0rP1WKBLgA1e/KMUsg53oLmKNCXABnOuXdEnR6Q6yb
NBmMHhpkmHzTVqKvP65S+2qjzjQJ7c5Z1FxgSwmgyPxKZ0uwkKlO9E0bwED+IyHZ
+wX+OSdglpSiMTE8wEcFdoDq7VmFC2EN+z+S/f3+mnFxeDsoaaQv1d5g5jWK5cUy
zVjQ/Km30PoSc6olaJh8O4ZxAg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:04 2024 by rpki-client on console-fra.rpki-client.org