Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/48506a-33dc-4574-80f3-bde24a2a9ff5/1/SkTMnHkMW4Ul9p4QHX5UGGMFNfk.roa
File: SkTMnHkMW4Ul9p4QHX5UGGMFNfk.roa (raw, json)
Hash identifier: rllAVDPseXrSH5HU2jV1ugkzNcMbdS0Y6ba+ekczXRU=
Subject key identifier: 4A:44:CC:9C:79:0C:5B:85:25:F6:9E:10:1D:7E:54:18:63:05:35:F9
Certificate issuer: /CN=fe0a7919a3ed7b13b5dab39c86e04a7a97231473
Certificate serial: 03E26B40
Authority key identifier: FE:0A:79:19:A3:ED:7B:13:B5:DA:B3:9C:86:E0:4A:7A:97:23:14:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_gp5GaPtexO12rOchuBKepcjFHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/48506a-33dc-4574-80f3-bde24a2a9ff5/1/SkTMnHkMW4Ul9p4QHX5UGGMFNfk.roa
Signing time: Sat 01 Jan 2022 08:02:46 +0000
ROA not before: Sat 01 Jan 2022 08:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15669
IP address blocks: 91.237.102.0/23 maxlen: 23
2a03:4ba0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65170240 (0x3e26b40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe0a7919a3ed7b13b5dab39c86e04a7a97231473
Validity
Not Before: Jan 1 08:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a44cc9c790c5b8525f69e101d7e5418630535f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:34:d4:71:60:f2:47:d4:07:90:3b:5a:ae:a9:
83:3f:47:ad:28:ee:55:86:13:b4:bb:d9:7e:0b:55:
77:93:90:58:df:31:87:6f:84:9b:e2:7c:3f:58:91:
88:08:12:73:3c:01:f9:18:de:1a:cc:4b:12:42:2e:
d2:1e:f1:ec:bc:e1:74:4f:34:20:65:47:6b:12:53:
f4:9a:88:ad:2a:3a:1e:7a:28:10:42:7e:c5:ce:2a:
75:a7:a7:03:25:c4:5a:17:66:66:bf:66:84:4c:6d:
16:0d:81:d6:cd:7a:87:76:27:6c:20:4f:35:de:80:
49:e5:52:d4:fe:7a:16:22:4f:f2:74:7e:e0:bf:5c:
fb:5c:de:da:d9:c3:ab:cb:c2:c9:c5:c0:e3:16:85:
4e:48:6f:49:68:3b:fb:6c:00:92:f1:2f:1b:fd:96:
e4:50:85:30:3a:89:96:83:e9:3a:c0:c2:16:c5:56:
98:65:6c:bd:d3:8b:6c:e0:50:01:2c:85:91:4e:70:
d4:5a:4c:21:80:0b:9a:9a:8f:f4:aa:a7:40:48:17:
82:00:a0:a3:d5:36:24:fb:57:5e:57:1c:88:ea:9f:
b4:cb:c5:d0:12:c7:9d:58:e6:87:df:03:ef:3d:a5:
4b:6d:ce:b8:69:c5:10:2a:64:c9:3d:2f:e0:3f:21:
d6:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:44:CC:9C:79:0C:5B:85:25:F6:9E:10:1D:7E:54:18:63:05:35:F9
X509v3 Authority Key Identifier:
keyid:FE:0A:79:19:A3:ED:7B:13:B5:DA:B3:9C:86:E0:4A:7A:97:23:14:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_gp5GaPtexO12rOchuBKepcjFHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/48506a-33dc-4574-80f3-bde24a2a9ff5/1/SkTMnHkMW4Ul9p4QHX5UGGMFNfk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/48506a-33dc-4574-80f3-bde24a2a9ff5/1/_gp5GaPtexO12rOchuBKepcjFHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.102.0/23
IPv6:
2a03:4ba0::/48
Signature Algorithm: sha256WithRSAEncryption
97:0e:09:a1:97:1a:02:1a:67:dc:1b:6a:c7:1e:0c:fa:93:aa:
f7:1f:95:6e:e2:74:7b:34:7f:1e:ef:c5:2c:e9:dc:fa:fa:8d:
41:50:9e:ec:55:4f:63:90:f6:ef:fc:fe:48:39:6e:0c:42:7b:
f3:b5:c2:f2:95:a2:a6:9a:8e:61:14:2f:12:a9:38:ab:99:3c:
5e:7f:b4:29:7a:17:c1:2c:b0:9c:85:7d:d1:da:a1:bc:1d:77:
2f:61:e1:f9:41:90:02:dc:b4:d1:ab:13:f3:3b:aa:d5:fa:10:
c6:48:73:4f:96:ca:43:79:03:ba:2f:d1:92:99:3e:a8:b3:4d:
81:7d:60:0b:f8:e4:5b:d2:5f:66:f5:17:26:b9:0c:63:ca:c3:
6d:29:9f:89:70:f4:0f:4a:0e:f3:a0:29:84:33:17:09:ac:94:
ef:fa:54:27:24:13:8b:c7:b8:62:4e:e0:fa:4d:da:ba:af:94:
7c:54:33:03:88:8a:af:a2:a2:bb:e1:8b:16:ca:5c:12:cf:25:
10:e9:75:a0:0e:02:5c:fd:8a:ea:a2:3b:5f:a5:a8:79:8a:42:
6e:cd:aa:59:e1:cd:8d:4a:cb:c4:46:9c:b3:bb:6e:4b:f3:3a:
24:33:fc:b5:48:4c:4d:8a:19:82:88:e9:c4:48:74:78:b9:74:
b0:0e:8c:e7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEA+JrQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZTBhNzkxOWEzZWQ3YjEzYjVkYWIzOWM4NmUwNGE3YTk3MjMxNDczMB4XDTIyMDEw
MTA4MDI0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGE0NGNjOWM3OTBj
NWI4NTI1ZjY5ZTEwMWQ3ZTU0MTg2MzA1MzVmOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKM01HFg8kfUB5A7Wq6pgz9HrSjuVYYTtLvZfgtVd5OQWN8x
h2+Em+J8P1iRiAgSczwB+RjeGsxLEkIu0h7x7LzhdE80IGVHaxJT9JqIrSo6Hnoo
EEJ+xc4qdaenAyXEWhdmZr9mhExtFg2B1s16h3YnbCBPNd6ASeVS1P56FiJP8nR+
4L9c+1ze2tnDq8vCycXA4xaFTkhvSWg7+2wAkvEvG/2W5FCFMDqJloPpOsDCFsVW
mGVsvdOLbOBQASyFkU5w1FpMIYALmpqP9KqnQEgXggCgo9U2JPtXXlcciOqftMvF
0BLHnVjmh98D7z2lS23OuGnFECpkyT0v4D8h1rUCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRKRMyceQxbhSX2nhAdflQYYwU1+TAfBgNVHSMEGDAWgBT+CnkZo+17E7Xa
s5yG4Ep6lyMUczAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19ncDVHYVB0ZXhPMTJyT2NodUJLZXBjakZITS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWUvNDg1MDZhLTMzZGMtNDU3NC04MGYzLWJkZTI0YTJhOWZmNS8x
L1NrVE1uSGtNVzRVbDlwNFFIWDVVR0dNRk5may5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWUv
NDg1MDZhLTMzZGMtNDU3NC04MGYzLWJkZTI0YTJhOWZmNS8xL19ncDVHYVB0ZXhP
MTJyT2NodUJLZXBjakZITS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAVvtZjAPBAIAAjAJAwcAKgNLoAAA
MA0GCSqGSIb3DQEBCwUAA4IBAQCXDgmhlxoCGmfcG2rHHgz6k6r3H5Vu4nR7NH8e
78Us6dz6+o1BUJ7sVU9jkPbv/P5IOW4MQnvztcLylaKmmo5hFC8SqTirmTxef7Qp
ehfBLLCchX3R2qG8HXcvYeH5QZAC3LTRqxPzO6rV+hDGSHNPlspDeQO6L9GSmT6o
s02BfWAL+ORb0l9m9RcmuQxjysNtKZ+JcPQPSg7zoCmEMxcJrJTv+lQnJBOLx7hi
TuD6Tdq6r5R8VDMDiIqvoqK74YsWylwSzyUQ6XWgDgJc/Yrqojtfpah5ikJuzapZ
4c2NSsvERpyzu25L8zokM/y1SExNihmCiOnESHR4uXSwDozn
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:03 2023 by rpki-client on console-fra.rpki-client.org