Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d1da6a-4919-499a-9a41-2bbb48efb0ed/1/o5RU4dAPSF3nFL1URDK520UHHlo.roa
File: o5RU4dAPSF3nFL1URDK520UHHlo.roa (raw, json)
Hash identifier: +IYAMMg1Gpi93EEgJgmWmFOu8V3NhnWyGv4P26KX8EA=
Subject key identifier: A3:94:54:E1:D0:0F:48:5D:E7:14:BD:54:44:32:B9:DB:45:07:1E:5A
Certificate issuer: /CN=79a295c80b54c2dbe77ba47de7daec6b986021b4
Certificate serial: 01583C40
Authority key identifier: 79:A2:95:C8:0B:54:C2:DB:E7:7B:A4:7D:E7:DA:EC:6B:98:60:21:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eaKVyAtUwtvne6R959rsa5hgIbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d1da6a-4919-499a-9a41-2bbb48efb0ed/1/o5RU4dAPSF3nFL1URDK520UHHlo.roa
Signing time: Sat 01 Jan 2022 07:59:20 +0000
ROA not before: Sat 01 Jan 2022 07:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44407
IP address blocks: 91.234.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22559808 (0x1583c40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a295c80b54c2dbe77ba47de7daec6b986021b4
Validity
Not Before: Jan 1 07:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a39454e1d00f485de714bd544432b9db45071e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7e:66:e8:9b:7b:34:5b:7b:03:da:62:cf:58:
fa:e4:6e:d7:03:ad:20:24:ba:fd:0c:b8:b1:34:90:
5d:47:6e:ce:b1:ac:77:a8:32:c0:b3:cc:5c:c1:ed:
0a:48:38:7c:c7:7c:47:e4:37:06:2d:01:ba:f9:c5:
29:39:c9:f0:71:36:5f:d1:e4:af:24:4c:53:99:50:
a3:c0:49:4b:93:16:a1:7f:23:a6:39:90:23:5a:5a:
00:25:e0:3f:f6:65:77:bc:ca:ba:d0:37:e4:ff:e5:
06:a2:b4:4c:ea:99:bc:16:2d:8c:57:51:18:dc:a2:
37:b8:19:c1:5c:2d:4f:25:d0:de:fd:fd:1c:c0:28:
1c:81:ca:25:cd:50:56:85:cc:59:24:3a:65:51:96:
75:f2:8b:24:65:3a:22:10:90:a2:9f:20:dd:77:62:
c4:25:40:0a:82:40:bc:39:e8:22:a9:60:33:c3:6f:
ec:d5:cc:0d:aa:6e:ce:24:81:5d:12:1e:58:4f:43:
4f:5b:f2:11:6d:69:d9:c1:63:50:b9:6e:d1:32:0e:
a8:95:47:be:fc:3e:07:08:01:7e:fb:4a:a1:5b:d3:
90:63:97:5c:af:bf:4c:f0:77:bb:f8:5d:9a:a3:49:
3e:e8:e8:34:7d:1c:44:f2:51:30:0a:0c:39:60:5b:
3b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:94:54:E1:D0:0F:48:5D:E7:14:BD:54:44:32:B9:DB:45:07:1E:5A
X509v3 Authority Key Identifier:
keyid:79:A2:95:C8:0B:54:C2:DB:E7:7B:A4:7D:E7:DA:EC:6B:98:60:21:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eaKVyAtUwtvne6R959rsa5hgIbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d1da6a-4919-499a-9a41-2bbb48efb0ed/1/o5RU4dAPSF3nFL1URDK520UHHlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d1da6a-4919-499a-9a41-2bbb48efb0ed/1/eaKVyAtUwtvne6R959rsa5hgIbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.236.0/24
Signature Algorithm: sha256WithRSAEncryption
92:d1:35:9c:49:20:45:8c:85:eb:e3:08:57:7f:3c:89:62:54:
bc:24:52:61:53:de:84:80:b4:29:02:f3:25:99:f2:d3:cf:c5:
55:24:23:58:fd:76:6a:de:ea:1b:ea:9c:66:5e:fc:2f:65:8c:
2e:1f:ac:84:77:19:5a:91:b9:61:17:85:89:b5:1c:f4:22:58:
09:26:50:56:bc:43:76:19:b0:1f:84:87:02:9f:b1:54:e1:6d:
18:84:cb:a5:94:c7:0f:66:5f:b4:79:38:a9:71:52:b1:c6:e9:
cf:e7:73:da:ae:52:df:f5:17:f8:0c:d2:cc:50:43:d1:e6:ef:
e5:d6:15:4a:85:24:fa:b3:c2:22:14:02:e8:fe:08:ed:22:f7:
2c:21:1b:26:b4:f8:3c:aa:51:97:ae:98:2c:80:af:0b:d9:ae:
48:ab:c5:0d:b1:ca:c6:d2:26:53:38:62:7d:25:96:3f:07:89:
51:d3:72:ca:59:85:4f:b8:32:2a:7b:a2:f8:4f:41:f0:52:86:
1b:11:b7:b2:48:ab:bd:c0:6d:34:93:50:9a:5d:2b:ad:2e:8c:
fd:70:16:02:90:20:65:80:ad:3c:0e:15:11:97:89:c8:03:1c:
c0:94:e0:a4:d7:e8:71:59:2e:b0:9d:20:0a:b2:83:a3:01:46:
02:9d:86:34
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAVg8QDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
OWEyOTVjODBiNTRjMmRiZTc3YmE0N2RlN2RhZWM2Yjk4NjAyMWI0MB4XDTIyMDEw
MTA3NTkyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTM5NDU0ZTFkMDBm
NDg1ZGU3MTRiZDU0NDQzMmI5ZGI0NTA3MWU1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMB+ZuibezRbewPaYs9Y+uRu1wOtICS6/Qy4sTSQXUduzrGs
d6gywLPMXMHtCkg4fMd8R+Q3Bi0BuvnFKTnJ8HE2X9HkryRMU5lQo8BJS5MWoX8j
pjmQI1paACXgP/Zld7zKutA35P/lBqK0TOqZvBYtjFdRGNyiN7gZwVwtTyXQ3v39
HMAoHIHKJc1QVoXMWSQ6ZVGWdfKLJGU6IhCQop8g3XdixCVACoJAvDnoIqlgM8Nv
7NXMDapuziSBXRIeWE9DT1vyEW1p2cFjULlu0TIOqJVHvvw+BwgBfvtKoVvTkGOX
XK+/TPB3u/hdmqNJPujoNH0cRPJRMAoMOWBbO2ECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSjlFTh0A9IXecUvVREMrnbRQceWjAfBgNVHSMEGDAWgBR5opXIC1TC2+d7
pH3n2uxrmGAhtDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VhS1Z5QXRVd3R2bmU2Ujk1OXJzYTVoZ0liUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvZDFkYTZhLTQ5MTktNDk5YS05YTQxLTJiYmI0OGVmYjBlZC8x
L281UlU0ZEFQU0YzbkZMMVVSREs1MjBVSEhsby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
ZDFkYTZhLTQ5MTktNDk5YS05YTQxLTJiYmI0OGVmYjBlZC8xL2VhS1Z5QXRVd3R2
bmU2Ujk1OXJzYTVoZ0liUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvq7DANBgkqhkiG9w0BAQsFAAOC
AQEAktE1nEkgRYyF6+MIV388iWJUvCRSYVPehIC0KQLzJZny08/FVSQjWP12at7q
G+qcZl78L2WMLh+shHcZWpG5YReFibUc9CJYCSZQVrxDdhmwH4SHAp+xVOFtGITL
pZTHD2ZftHk4qXFSscbpz+dz2q5S3/UX+AzSzFBD0ebv5dYVSoUk+rPCIhQC6P4I
7SL3LCEbJrT4PKpRl66YLICvC9muSKvFDbHKxtImUzhifSWWPweJUdNyylmFT7gy
Knui+E9B8FKGGxG3skirvcBtNJNQml0rrS6M/XAWApAgZYCtPA4VEZeJyAMcwJTg
pNfocVkusJ0gCrKDowFGAp2GNA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:05 2024 by rpki-client on console-fra.rpki-client.org