Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/pb35_iIoRtnh_gS0iUqQ279_HqM.roa
File: pb35_iIoRtnh_gS0iUqQ279_HqM.roa (raw, json)
Hash identifier: PcDnaW1SLhvS6y9+8fa21s3+TOhAcFBN5SbNrs5D248=
Subject key identifier: A5:BD:F9:FE:22:28:46:D9:E1:FE:04:B4:89:4A:90:DB:BF:7F:1E:A3
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1CCF548E
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/pb35_iIoRtnh_gS0iUqQ279_HqM.roa
Signing time: Fri 08 Apr 2022 12:53:31 +0000
ROA not before: Fri 08 Apr 2022 12:53:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 91.239.220.0/23 maxlen: 23
91.237.92.0/24 maxlen: 24
109.207.128.0/24 maxlen: 24
64.43.73.0/24 maxlen: 24
91.246.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 483349646 (0x1ccf548e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Apr 8 12:53:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5bdf9fe222846d9e1fe04b4894a90dbbf7f1ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ee:a3:97:e4:be:37:37:39:54:06:1a:45:7f:
65:68:6a:72:0d:9a:ca:0c:4f:ee:7c:14:b8:eb:09:
63:27:39:21:67:c7:ad:25:99:bd:cf:3f:7f:0a:b6:
f8:ef:be:a2:44:ac:99:e3:18:02:70:3c:9d:3f:54:
36:b8:da:45:68:0b:0f:e1:54:82:dc:94:41:34:81:
01:0d:af:58:bd:fb:23:1f:7d:b7:60:f3:24:01:44:
57:53:5f:1c:82:1c:02:8d:46:04:b1:27:b5:a5:4f:
8d:8c:8c:ec:44:72:da:75:ef:13:05:1c:23:2e:87:
6f:4b:82:6b:3a:69:d0:0f:1c:11:8e:32:b9:94:00:
0a:d5:4c:77:d9:c8:9f:bd:0f:96:e0:32:aa:be:e0:
67:b3:27:1f:26:8a:8b:bc:8d:ce:70:4f:97:3b:40:
52:86:20:fd:f7:88:9a:a1:37:95:f8:e9:a0:ef:7c:
96:1a:15:fc:6e:1a:c3:ab:e3:31:8c:13:04:73:61:
ab:a1:af:fa:a7:1b:8f:dc:16:fa:06:8a:66:d2:3a:
4c:2a:3b:7c:d8:fb:2d:0d:c4:11:27:e9:89:bb:3c:
ce:c9:ad:c2:f7:54:e7:b6:e7:d6:ae:62:0f:cb:59:
d9:22:19:22:15:7b:ca:2c:f8:d4:06:23:12:1a:d9:
94:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:BD:F9:FE:22:28:46:D9:E1:FE:04:B4:89:4A:90:DB:BF:7F:1E:A3
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/pb35_iIoRtnh_gS0iUqQ279_HqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.43.73.0/24
91.237.92.0/24
91.239.220.0/23
91.246.200.0/24
109.207.128.0/24
Signature Algorithm: sha256WithRSAEncryption
76:d1:87:b8:c0:ee:55:40:fe:d0:7b:f8:f8:26:f2:50:e4:cc:
62:fe:40:69:16:8b:6a:7d:13:fa:59:83:f4:69:b8:c2:ed:e7:
fa:5e:9e:47:c0:36:42:20:1b:3c:50:4a:ab:b6:52:44:64:64:
69:20:d9:3f:a8:6f:84:e6:ae:63:fa:95:4b:c5:dd:27:26:f2:
50:db:47:45:05:33:4d:c1:f1:6d:22:6a:52:a7:dd:4e:18:03:
af:97:aa:b4:b8:f6:2c:62:4b:fe:7d:bc:6a:bb:15:c5:b7:9c:
c2:04:d9:4a:35:10:a1:98:69:76:53:15:e5:83:f2:18:63:a2:
4c:d8:60:c2:f0:70:7b:ec:1d:e3:3c:64:85:5c:28:c3:d2:72:
d4:a2:31:9c:e5:60:7a:4f:ab:e0:85:f2:d7:2f:3b:6d:88:d9:
01:7f:44:6f:46:e5:bb:f2:75:05:f3:cc:55:d3:17:93:4d:04:
23:97:d2:fd:be:07:c2:e7:16:2e:a9:7b:3b:5c:6a:97:73:09:
13:cf:0e:48:f0:39:cd:45:aa:50:e6:8d:fa:48:57:a6:f8:90:
79:76:72:9a:ba:40:8e:1e:cb:3a:a7:2f:3f:cf:ff:74:78:e0:
dd:bf:38:10:a9:68:4d:cb:8c:c3:ca:ab:d4:07:b3:ea:32:cc:
bf:68:31:bd
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIEHM9UjjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDljYmJkNWMyY2Y0MTk1Y2M2ZWM3ZjIxZjYwNzU4MWEwMjI0ZGFhMB4XDTIyMDQw
ODEyNTMzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTViZGY5ZmUyMjI4
NDZkOWUxZmUwNGI0ODk0YTkwZGJiZjdmMWVhMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL3uo5fkvjc3OVQGGkV/ZWhqcg2aygxP7nwUuOsJYyc5IWfH
rSWZvc8/fwq2+O++okSsmeMYAnA8nT9UNrjaRWgLD+FUgtyUQTSBAQ2vWL37Ix99
t2DzJAFEV1NfHIIcAo1GBLEntaVPjYyM7ERy2nXvEwUcIy6Hb0uCazpp0A8cEY4y
uZQACtVMd9nIn70PluAyqr7gZ7MnHyaKi7yNznBPlztAUoYg/feImqE3lfjpoO98
lhoV/G4aw6vjMYwTBHNhq6Gv+qcbj9wW+gaKZtI6TCo7fNj7LQ3EESfpibs8zsmt
wvdU57bn1q5iD8tZ2SIZIhV7yiz41AYjEhrZlK8CAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBSlvfn+IihG2eH+BLSJSpDbv38eozAfBgNVHSMEGDAWgBQ0nLvVws9Blcxu
x/IfYHWBoCJNqjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05KeTcxY0xQUVpYTWJzZnlIMkIxZ2FBaVRhby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvY2RmNWY2LTJmMTgtNDJjNy05MzBlLWRjMDZkZDgwNTk2MC8x
L3BiMzVfaUlvUnRuaF9nUzBpVXFRMjc5X0hxTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
Y2RmNWY2LTJmMTgtNDJjNy05MzBlLWRjMDZkZDgwNTk2MC8xL05KeTcxY0xQUVpY
TWJzZnlIMkIxZ2FBaVRhby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAEArSQMEAFvtXAMEAVvv3AMEAFv2
yAMEAG3PgDANBgkqhkiG9w0BAQsFAAOCAQEAdtGHuMDuVUD+0Hv4+CbyUOTMYv5A
aRaLan0T+lmD9Gm4wu3n+l6eR8A2QiAbPFBKq7ZSRGRkaSDZP6hvhOauY/qVS8Xd
JybyUNtHRQUzTcHxbSJqUqfdThgDr5eqtLj2LGJL/n28arsVxbecwgTZSjUQoZhp
dlMV5YPyGGOiTNhgwvBwe+wd4zxkhVwow9Jy1KIxnOVgek+r4IXy1y87bYjZAX9E
b0blu/J1BfPMVdMXk00EI5fS/b4HwucWLql7O1xql3MJE88OSPA5zUWqUOaN+khX
pviQeXZymrpAjh7LOqcvP8//dHjg3b84EKloTcuMw8qr1Aez6jLMv2gxvQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org