Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/sjgpKt5wL-XnSY2qtSBA-saJvHE.roa
File: sjgpKt5wL-XnSY2qtSBA-saJvHE.roa (raw, json)
Hash identifier: usoauiLZ0A8E4/a9TaBb/+MqiR6GnLJpNRSCepmksaU=
Subject key identifier: B2:38:29:2A:DE:70:2F:E5:E7:49:8D:AA:B5:20:40:FA:C6:89:BC:71
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 03F83E82
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/sjgpKt5wL-XnSY2qtSBA-saJvHE.roa
Signing time: Thu 14 Apr 2022 10:11:43 +0000
ROA not before: Thu 14 Apr 2022 10:11:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.217.162.0/24 maxlen: 24
91.217.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66600578 (0x3f83e82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Apr 14 10:11:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b238292ade702fe5e7498daab52040fac689bc71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3d:a8:c8:76:51:8e:ce:6d:ea:d1:08:01:61:
ff:30:d7:9d:96:6a:2d:66:a9:4c:3c:b4:03:20:97:
ba:f0:f9:85:5c:7c:25:62:ad:87:e0:52:8e:7d:65:
94:45:43:cc:ed:cf:99:ea:e4:5f:c0:b6:2d:08:c6:
94:06:91:96:7e:be:30:00:a3:47:6f:48:a1:a9:bf:
e0:17:aa:c6:04:2a:9c:02:d1:49:d3:3f:34:96:3c:
4f:77:27:84:6a:01:9e:e0:ea:2f:63:40:e9:62:40:
7f:77:ed:7e:1a:88:b5:66:39:5c:e3:11:a3:2e:fd:
9c:da:61:8e:20:80:53:4f:db:b0:46:3e:02:fa:6c:
e1:63:61:01:f4:e6:9f:d4:a1:a1:6d:df:8e:e0:5c:
00:e8:18:2c:34:e6:26:24:46:12:9b:b4:23:69:b5:
2e:62:6d:53:eb:92:97:66:9d:bf:e0:19:d3:3c:b5:
05:8c:8e:d2:2a:70:13:e0:ef:c3:bf:42:9f:e5:2b:
e3:15:a3:20:09:cf:b3:6e:16:dc:01:44:19:b8:bb:
d7:bf:3a:17:03:5a:8e:05:ad:56:01:11:7f:ee:5f:
5c:53:dc:ed:85:21:bc:a5:13:3e:17:0f:cc:8a:69:
de:68:2b:bd:78:8e:56:6f:0e:a5:df:78:98:d2:f2:
1f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:38:29:2A:DE:70:2F:E5:E7:49:8D:AA:B5:20:40:FA:C6:89:BC:71
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/sjgpKt5wL-XnSY2qtSBA-saJvHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.162.0/24
91.217.167.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:0c:c2:f3:60:23:39:68:36:3f:69:1c:aa:a2:c4:7c:0e:71:
ff:5e:1b:f7:23:b7:a9:70:9a:1a:48:e5:44:23:c2:95:81:f6:
09:8d:e0:c5:fd:4c:3f:8e:55:12:df:23:17:94:ab:92:64:95:
ce:08:1a:a0:1d:a8:3d:75:3e:63:d4:e5:7d:ec:08:3d:39:de:
a6:98:e0:5d:03:89:d6:4c:97:fc:ad:35:c3:4c:f3:90:50:83:
0c:a3:86:69:b8:ae:ed:64:7c:b1:27:cd:0f:4d:4b:d4:8a:fd:
ae:27:71:72:06:89:7b:bb:88:66:7f:77:cf:ad:3f:ce:27:a5:
b1:30:ff:9c:18:c1:8a:33:f9:c7:ad:c3:5c:7e:6e:f7:62:40:
6c:5d:7f:81:7f:32:f6:a7:c2:03:15:ee:51:ba:42:b1:34:7f:
79:37:46:c1:19:d4:03:18:23:de:43:f9:46:7d:79:33:ba:2a:
be:ac:c3:37:4d:48:77:db:5c:ac:ec:6f:f3:7a:24:5a:6f:3c:
e9:a6:c4:fd:f9:44:df:0e:bd:1e:5d:2e:05:2d:a4:d7:c1:c2:
40:30:98:ab:9e:b9:5b:af:00:9f:04:2b:cb:e4:af:ba:61:53:
0c:69:21:e1:0a:65:39:a8:81:67:22:a2:bd:6c:a1:a5:30:f7:
4d:70:d8:ab
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA/g+gjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDdiNDg3ODQ4ZmZmNjM1MzNkODdjMzI0ZWNjNTFjMmMzZWEyYWRiMB4XDTIyMDQx
NDEwMTE0M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjIzODI5MmFkZTcw
MmZlNWU3NDk4ZGFhYjUyMDQwZmFjNjg5YmM3MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALE9qMh2UY7OberRCAFh/zDXnZZqLWapTDy0AyCXuvD5hVx8
JWKth+BSjn1llEVDzO3PmerkX8C2LQjGlAaRln6+MACjR29Ioam/4BeqxgQqnALR
SdM/NJY8T3cnhGoBnuDqL2NA6WJAf3ftfhqItWY5XOMRoy79nNphjiCAU0/bsEY+
Avps4WNhAfTmn9ShoW3fjuBcAOgYLDTmJiRGEpu0I2m1LmJtU+uSl2adv+AZ0zy1
BYyO0ipwE+Dvw79Cn+Ur4xWjIAnPs24W3AFEGbi71786FwNajgWtVgERf+5fXFPc
7YUhvKUTPhcPzIpp3mgrvXiOVm8Opd94mNLyH1MCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSyOCkq3nAv5edJjaq1IED6xom8cTAfBgNVHSMEGDAWgBQ0e0h4SP/2NTPY
fDJOzFHCw+oq2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05IdEllRWpfOWpVejJId3lUc3hSd3NQcUt0cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvYmM3MTIyLTRkMWItNDZhNy1hZWNiLTIzMGIzYjcyYTE3NS8x
L3NqZ3BLdDV3TC1YblNZMnF0U0JBLXNhSnZIRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
YmM3MTIyLTRkMWItNDZhNy1hZWNiLTIzMGIzYjcyYTE3NS8xL05IdEllRWpfOWpV
ejJId3lUc3hSd3NQcUt0cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvZogMEAFvZpzANBgkqhkiG9w0B
AQsFAAOCAQEAXQzC82AjOWg2P2kcqqLEfA5x/14b9yO3qXCaGkjlRCPClYH2CY3g
xf1MP45VEt8jF5SrkmSVzggaoB2oPXU+Y9TlfewIPTneppjgXQOJ1kyX/K01w0zz
kFCDDKOGabiu7WR8sSfND01L1Ir9ridxcgaJe7uIZn93z60/zielsTD/nBjBijP5
x63DXH5u92JAbF1/gX8y9qfCAxXuUbpCsTR/eTdGwRnUAxgj3kP5Rn15M7oqvqzD
N01Id9tcrOxv83okWm886abE/flE3w69Hl0uBS2k18HCQDCYq565W68AnwQry+Sv
umFTDGkh4QplOaiBZyKivWyhpTD3TXDYqw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org