Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/6e4H1s8Cd3ALT7siZodsDxIqy5A.roa
File: 6e4H1s8Cd3ALT7siZodsDxIqy5A.roa (raw, json)
Hash identifier: H6ELpjFFAElBPZJJ+mWa32wzErdLqYO8oi7suUc+zlU=
Subject key identifier: E9:EE:07:D6:CF:02:77:70:0B:4F:BB:22:66:87:6C:0F:12:2A:CB:90
Certificate issuer: /CN=a8c6f393350c77598c121acd3c92f7048576ef89
Certificate serial: 03601F
Authority key identifier: A8:C6:F3:93:35:0C:77:59:8C:12:1A:CD:3C:92:F7:04:85:76:EF:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qMbzkzUMd1mMEhrNPJL3BIV274k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/6e4H1s8Cd3ALT7siZodsDxIqy5A.roa
Signing time: Wed 30 Mar 2022 18:58:12 +0000
ROA not before: Wed 30 Mar 2022 18:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60386
IP address blocks: 91.237.107.0/24 maxlen: 24
176.121.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221215 (0x3601f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8c6f393350c77598c121acd3c92f7048576ef89
Validity
Not Before: Mar 30 18:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9ee07d6cf0277700b4fbb2266876c0f122acb90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6d:b7:53:bf:68:77:58:be:0f:8f:09:5d:9a:
39:38:4d:84:46:38:c6:3a:fd:2d:ad:ef:26:b2:f0:
ae:f4:05:1c:f1:7d:d1:40:6b:0c:e0:d9:b5:d0:13:
b0:ad:5b:a4:5a:d1:c7:cf:a0:fe:ef:ea:1f:af:2a:
23:e6:36:f9:78:8b:d9:83:c5:2c:48:b7:25:11:49:
4a:57:ae:e7:35:5b:43:ed:08:ef:ed:a5:4e:db:32:
c3:15:e0:82:55:e8:cf:1a:e3:ec:f0:dd:ca:24:8a:
ba:2f:e8:e6:0a:b0:44:b9:18:b1:af:e1:6b:07:54:
c5:f4:07:dc:18:98:36:c3:fe:a3:15:6d:5b:10:42:
a5:41:63:67:9c:d0:37:49:ac:8f:bc:90:55:2c:49:
72:02:5c:d6:19:b8:c7:72:89:c1:a8:20:06:80:3e:
56:f5:ed:56:d3:bb:ad:05:77:6f:1f:cb:7b:4c:56:
28:fd:c6:46:3a:71:73:24:9d:b8:18:80:70:60:7b:
94:b2:05:6c:21:e6:44:f3:1d:e9:8b:37:fb:a1:67:
d6:49:e6:3d:26:9e:4e:b0:08:2f:42:36:b6:b2:de:
af:05:4f:11:65:f7:9d:27:77:2f:49:2a:be:1e:c4:
20:e9:6d:77:ba:ae:8a:62:29:9a:50:bc:ee:b7:1a:
7b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:EE:07:D6:CF:02:77:70:0B:4F:BB:22:66:87:6C:0F:12:2A:CB:90
X509v3 Authority Key Identifier:
keyid:A8:C6:F3:93:35:0C:77:59:8C:12:1A:CD:3C:92:F7:04:85:76:EF:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qMbzkzUMd1mMEhrNPJL3BIV274k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/6e4H1s8Cd3ALT7siZodsDxIqy5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/709e07-47d5-4720-b777-c6bca01b2ff8/1/qMbzkzUMd1mMEhrNPJL3BIV274k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.107.0/24
176.121.3.0/24
Signature Algorithm: sha256WithRSAEncryption
46:c1:a0:f1:53:72:85:00:70:66:75:ae:b6:dd:45:3b:9d:f0:
61:b0:70:69:dc:2a:c8:83:55:c2:2c:06:27:bd:8a:d4:b6:d8:
7c:a7:32:4e:57:28:05:68:c1:4d:e4:1a:6f:9f:84:c1:28:df:
55:0a:3f:52:86:97:f1:69:30:ce:a0:46:2c:7f:5c:94:70:74:
25:88:df:93:ca:de:dd:fb:a7:27:41:bd:e1:5f:a6:bb:50:af:
fe:0f:f2:4a:b8:e8:e8:42:25:e3:df:ec:a9:3e:08:2f:ab:09:
aa:db:97:52:78:8d:3d:52:e2:bf:92:d5:db:7c:c8:9e:ad:42:
2e:af:03:2c:31:74:86:63:6a:fe:56:3c:96:46:4e:27:60:70:
54:8c:1d:ef:04:41:f7:8f:8c:b2:8b:d8:c7:c2:a5:d4:93:65:
ac:83:5e:51:e4:0f:c2:84:e7:8f:a6:7d:28:ac:c1:80:a8:f6:
d9:3a:6a:af:4c:97:f0:0a:b8:b1:dd:04:23:fb:76:01:ae:04:
33:37:13:09:fc:18:a7:4a:40:74:ca:f1:52:05:7c:9f:9e:32:
7c:cd:7a:37:00:51:74:b0:9b:bd:20:1e:10:a1:0f:bb:a3:81:
de:c3:84:4b:86:20:3c:7e:7f:2d:9e:52:bc:f2:78:fc:e8:0e:
ee:0b:ce:ea
-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgIDA2AfMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE4
YzZmMzkzMzUwYzc3NTk4YzEyMWFjZDNjOTJmNzA0ODU3NmVmODkwHhcNMjIwMzMw
MTg1ODEyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlOWVlMDdkNmNmMDI3
NzcwMGI0ZmJiMjI2Njg3NmMwZjEyMmFjYjkwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAlm23U79od1i+D48JXZo5OE2ERjjGOv0tre8msvCu9AUc8X3R
QGsM4Nm10BOwrVukWtHHz6D+7+ofryoj5jb5eIvZg8UsSLclEUlKV67nNVtD7Qjv
7aVO2zLDFeCCVejPGuPs8N3KJIq6L+jmCrBEuRixr+FrB1TF9AfcGJg2w/6jFW1b
EEKlQWNnnNA3SayPvJBVLElyAlzWGbjHconBqCAGgD5W9e1W07utBXdvH8t7TFYo
/cZGOnFzJJ24GIBwYHuUsgVsIeZE8x3pizf7oWfWSeY9Jp5OsAgvQja2st6vBU8R
ZfedJ3cvSSq+HsQg6W13uq6KYimaULzutxp7YQIDAQABo4ICDzCCAgswHQYDVR0O
BBYEFOnuB9bPAndwC0+7ImaHbA8SKsuQMB8GA1UdIwQYMBaAFKjG85M1DHdZjBIa
zTyS9wSFdu+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cU1iemt6VU1kMW1NRWhyTlBKTDNCSVYyNzRrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8xZS83MDllMDctNDdkNS00NzIwLWI3NzctYzZiY2EwMWIyZmY4LzEv
NmU0SDFzOENkM0FMVDdzaVpvZHNEeElxeTVBLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS83
MDllMDctNDdkNS00NzIwLWI3NzctYzZiY2EwMWIyZmY4LzEvcU1iemt6VU1kMW1N
RWhyTlBKTDNCSVYyNzRrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUG
CCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+1rAwQAsHkDMA0GCSqGSIb3DQEB
CwUAA4IBAQBGwaDxU3KFAHBmda623UU7nfBhsHBp3CrIg1XCLAYnvYrUtth8pzJO
VygFaMFN5Bpvn4TBKN9VCj9ShpfxaTDOoEYsf1yUcHQliN+Tyt7d+6cnQb3hX6a7
UK/+D/JKuOjoQiXj3+ypPggvqwmq25dSeI09UuK/ktXbfMierUIurwMsMXSGY2r+
VjyWRk4nYHBUjB3vBEH3j4yyi9jHwqXUk2Wsg15R5A/ChOePpn0orMGAqPbZOmqv
TJfwCrix3QQj+3YBrgQzNxMJ/BinSkB0yvFSBXyfnjJ8zXo3AFF0sJu9IB4QoQ+7
o4Hew4RLhiA8fn8tnlK88nj86A7uC87q
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:51 2023 by rpki-client on console-ams.rpki-client.org