Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/DF3l2Y9x92Egy9FqLwE0aWCohQM.roa
File: DF3l2Y9x92Egy9FqLwE0aWCohQM.roa (raw, json)
Hash identifier: 0IscLrcrE5Qee4rN5pduEIzg+14EihLOkYEhD4lHSTw=
Subject key identifier: 0C:5D:E5:D9:8F:71:F7:61:20:CB:D1:6A:2F:01:34:69:60:A8:85:03
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 034001CF
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/DF3l2Y9x92Egy9FqLwE0aWCohQM.roa
Signing time: Sat 01 Jan 2022 00:57:58 +0000
ROA not before: Sat 01 Jan 2022 00:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206766
IP address blocks: 91.194.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54526415 (0x34001cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 00:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c5de5d98f71f76120cbd16a2f01346960a88503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:29:0a:15:93:78:b3:a8:1f:f1:4d:e5:c2:9d:
74:b8:b1:39:fc:ad:0b:d2:ee:7e:06:f6:99:ab:e7:
d4:6f:77:71:99:fd:7a:0a:6e:13:11:08:da:69:ae:
cd:bc:ff:a9:e4:2b:9c:b2:6f:3b:1e:a7:6b:f7:da:
f4:e8:06:6c:0d:10:8c:4f:8d:c8:b4:86:5c:91:64:
eb:71:38:0f:af:fb:a9:9a:10:b1:96:a6:d9:ac:dd:
66:ba:46:b1:81:4d:a8:bc:08:1b:36:7c:5c:d0:4b:
15:42:87:3b:db:f9:63:c3:a2:ac:fd:f6:9f:c1:68:
c8:dd:c4:ae:6b:2d:89:63:78:d0:e1:b6:be:62:2c:
0f:f5:31:2d:f3:e3:3d:c9:b9:83:46:18:2f:67:19:
04:b1:04:d8:ff:49:ea:53:52:0d:dc:da:cd:35:03:
ea:d2:e7:7c:51:27:c8:5a:9e:6c:ed:88:5d:e8:7c:
c0:dd:c4:27:43:4e:48:63:57:34:65:2d:01:93:89:
eb:72:f3:07:06:58:e4:6a:da:f2:5e:b0:3b:dc:85:
e4:ac:d0:b4:ed:af:7e:36:97:04:67:ee:a3:a1:7a:
26:cf:ff:4f:01:f6:f1:a5:a4:a6:4f:f6:5f:73:9f:
d0:da:ae:33:e0:2d:69:30:25:65:b6:60:37:c4:56:
c9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:5D:E5:D9:8F:71:F7:61:20:CB:D1:6A:2F:01:34:69:60:A8:85:03
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/DF3l2Y9x92Egy9FqLwE0aWCohQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.10.0/24
Signature Algorithm: sha256WithRSAEncryption
60:82:57:a8:7a:53:e5:1c:a0:6d:8f:05:19:82:06:91:30:83:
06:f9:1a:a3:2f:1b:01:0a:52:ec:f3:97:d2:30:ce:d8:83:e8:
32:78:d1:bd:d5:3e:9e:73:6f:9f:92:93:8b:b5:83:b8:2d:07:
9b:d0:6c:de:13:a6:e9:33:a9:9b:a1:a6:be:90:dd:27:d1:a4:
5f:fb:78:dc:50:41:a4:64:99:8c:7d:5c:f2:1c:60:92:89:b8:
2a:72:9f:6f:92:71:79:f0:59:4f:4e:50:e3:af:15:1b:f3:9e:
6c:da:d9:d4:97:4f:95:6d:31:42:21:65:79:55:2e:5b:37:c5:
92:99:6e:f7:f0:a2:a8:f7:83:c7:fd:e1:24:29:9e:7b:1f:5e:
f2:95:66:14:0a:50:44:db:49:00:7c:c2:ed:5b:cd:e0:13:2b:
6f:36:61:99:7e:09:1b:12:25:4b:04:9b:0f:fe:74:e3:55:28:
22:63:5a:e6:ee:53:08:da:d5:6b:ca:26:39:ab:a0:ea:8f:14:
cf:58:e9:c3:ce:6b:ef:a7:46:4e:e7:19:77:c3:ce:29:1a:23:
57:46:d1:8c:64:18:8c:e7:67:e1:8e:a6:6a:0f:3a:7d:a8:b7:
a4:34:78:e2:27:d2:f4:d9:66:6d:f5:8f:e0:04:ed:0b:fe:2a:
ad:e8:91:e6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA0ABzzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
Zjg0MTEzNTQ1ZDkwMDA3NjBmNjYwNjJhNDIyMTkzM2EyZTk1OWQ4MB4XDTIyMDEw
MTAwNTc1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGM1ZGU1ZDk4Zjcx
Zjc2MTIwY2JkMTZhMmYwMTM0Njk2MGE4ODUwMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKopChWTeLOoH/FN5cKddLixOfytC9Lufgb2mavn1G93cZn9
egpuExEI2mmuzbz/qeQrnLJvOx6na/fa9OgGbA0QjE+NyLSGXJFk63E4D6/7qZoQ
sZam2azdZrpGsYFNqLwIGzZ8XNBLFUKHO9v5Y8OirP32n8FoyN3ErmstiWN40OG2
vmIsD/UxLfPjPcm5g0YYL2cZBLEE2P9J6lNSDdzazTUD6tLnfFEnyFqebO2IXeh8
wN3EJ0NOSGNXNGUtAZOJ63LzBwZY5Gra8l6wO9yF5KzQtO2vfjaXBGfuo6F6Js//
TwH28aWkpk/2X3Of0NquM+AtaTAlZbZgN8RWybkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQMXeXZj3H3YSDL0WovATRpYKiFAzAfBgNVHSMEGDAWgBS/hBE1RdkAB2D2
YGKkIhkzoulZ2DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Y0UVJOVVhaQUFkZzltQmlwQ0laTTZMcFdkZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvMzBkYzg1LTJkZDgtNGIxYy1iMTUxLTRiZDYzYWRjNzM1NC8x
L0RGM2wyWTl4OTJFZ3k5RnFMd0UwYVdDb2hRTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
MzBkYzg1LTJkZDgtNGIxYy1iMTUxLTRiZDYzYWRjNzM1NC8xL3Y0UVJOVVhaQUFk
ZzltQmlwQ0laTTZMcFdkZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvCCjANBgkqhkiG9w0BAQsFAAOC
AQEAYIJXqHpT5RygbY8FGYIGkTCDBvkaoy8bAQpS7POX0jDO2IPoMnjRvdU+nnNv
n5KTi7WDuC0Hm9Bs3hOm6TOpm6GmvpDdJ9GkX/t43FBBpGSZjH1c8hxgkom4KnKf
b5JxefBZT05Q468VG/OebNrZ1JdPlW0xQiFleVUuWzfFkplu9/CiqPeDx/3hJCme
ex9e8pVmFApQRNtJAHzC7VvN4BMrbzZhmX4JGxIlSwSbD/5041UoImNa5u5TCNrV
a8omOaug6o8Uz1jpw85r76dGTucZd8POKRojV0bRjGQYjOdn4Y6mag86fai3pDR4
4ifS9NlmbfWP4ATtC/4qreiR5g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:23 2023 by rpki-client on console-fra.rpki-client.org