Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5a4526-89fc-4640-901d-13a58eb9d8f5/1/n8vW1cNYK59dp2eez-L5AexJJ48.roa
File: n8vW1cNYK59dp2eez-L5AexJJ48.roa (raw, json)
Hash identifier: rUmhFQ7QtlD8gziVKY+Sn5a4wCNG5cudj2s1VcdJ3Ow=
Subject key identifier: 9F:CB:D6:D5:C3:58:2B:9F:5D:A7:67:9E:CF:E2:F9:01:EC:49:27:8F
Certificate issuer: /CN=6238410338e21e8eab94119d80e41a3958491de6
Certificate serial: 018201431648A96F33016B01BC65214BC7CB
Authority key identifier: 62:38:41:03:38:E2:1E:8E:AB:94:11:9D:80:E4:1A:39:58:49:1D:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YjhBAzjiHo6rlBGdgOQaOVhJHeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5a4526-89fc-4640-901d-13a58eb9d8f5/1/n8vW1cNYK59dp2eez-L5AexJJ48.roa
Signing time: Fri 15 Jul 2022 09:49:09 +0000
ROA not before: Fri 15 Jul 2022 09:49:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48419
IP address blocks: 91.209.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:43:16:48:a9:6f:33:01:6b:01:bc:65:21:4b:c7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6238410338e21e8eab94119d80e41a3958491de6
Validity
Not Before: Jul 15 09:49:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fcbd6d5c3582b9f5da7679ecfe2f901ec49278f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a6:57:d8:be:88:bd:f5:dd:d3:b5:15:59:2e:
2d:90:07:b4:6e:0a:58:17:52:1d:d4:28:47:3c:11:
5c:f9:b1:75:a6:ad:f4:98:74:84:b8:a6:be:54:78:
be:f5:63:41:b6:44:87:03:d2:62:e1:50:b6:06:e2:
23:f7:a7:65:b5:fc:3d:5b:3e:cc:5a:cb:83:9b:87:
a7:09:f9:9d:be:7d:80:86:60:25:87:b3:fe:25:4e:
f5:37:9e:12:8d:fd:29:31:63:97:44:d1:6b:89:02:
80:a9:6c:54:59:9d:35:cd:0d:a0:c7:59:61:bf:eb:
6f:6f:93:b3:29:86:28:51:50:61:11:fc:7a:b0:3e:
8f:e8:c0:91:ad:4f:62:5e:bf:22:76:cd:33:38:f7:
7e:ae:12:94:25:44:23:e4:c7:27:fa:ca:6f:a2:d1:
9a:93:cd:0f:a6:ed:22:69:d6:b2:c4:45:1b:78:b7:
93:1f:0d:25:95:eb:0d:72:e3:f5:55:9f:bf:a3:b8:
c1:16:49:ad:b5:29:cc:50:c7:8f:4f:37:8e:b6:7e:
37:f4:ea:e7:87:10:de:8f:f9:6e:ae:b8:cb:26:49:
b7:ec:1a:cf:ca:73:b8:0f:98:71:e5:6d:dc:e2:f5:
ab:37:b4:d8:3d:5b:b6:c2:9e:28:67:92:87:81:ac:
82:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CB:D6:D5:C3:58:2B:9F:5D:A7:67:9E:CF:E2:F9:01:EC:49:27:8F
X509v3 Authority Key Identifier:
keyid:62:38:41:03:38:E2:1E:8E:AB:94:11:9D:80:E4:1A:39:58:49:1D:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YjhBAzjiHo6rlBGdgOQaOVhJHeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5a4526-89fc-4640-901d-13a58eb9d8f5/1/n8vW1cNYK59dp2eez-L5AexJJ48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5a4526-89fc-4640-901d-13a58eb9d8f5/1/YjhBAzjiHo6rlBGdgOQaOVhJHeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.150.0/24
Signature Algorithm: sha256WithRSAEncryption
36:85:25:40:d9:09:c0:87:df:55:04:55:fa:59:00:29:07:49:
a6:f5:d8:c4:6c:ba:8a:90:88:bc:ba:89:9b:b9:61:b2:35:8e:
21:e2:0d:50:36:3a:f1:b7:c7:2b:bd:89:8f:2f:66:8f:8b:3b:
58:a9:0a:12:85:12:dd:9b:98:6b:7a:b7:b6:1c:e1:6a:3e:3f:
18:b5:c6:15:f8:96:81:dd:fb:e4:bb:54:b1:4d:62:76:15:8c:
05:ee:fe:e3:1d:4a:46:82:77:d7:ce:fe:c2:04:2c:e6:74:42:
e9:bf:c2:f7:2e:0f:94:e1:64:11:5f:c6:7f:47:9d:e7:9e:aa:
20:2b:ff:90:61:f5:7c:bc:05:36:d4:22:7d:83:0d:9e:d4:ca:
45:78:df:d4:c5:fd:2a:f5:cd:2b:59:24:ca:22:1c:f1:78:e2:
f8:2a:4d:53:60:26:ba:d0:bd:17:0a:65:48:65:ac:20:4e:04:
4b:52:0c:0f:7e:2c:b9:60:39:9f:c4:a7:b5:33:64:10:35:a1:
02:9e:a4:9b:15:30:6c:5a:f2:88:a5:a7:c1:97:50:9e:68:b4:
49:d1:41:86:08:3e:8f:9b:ff:a1:78:da:73:ee:e6:4a:71:33:
d4:d2:ab:47:5e:da:85:bc:4f:47:a3:d3:ad:89:5d:09:8d:58:
1b:a2:f9:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIBQxZIqW8zAWsBvGUhS8fLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMzg0MTAzMzhlMjFlOGVhYjk0MTE5ZDgwZTQxYTM5NTg0
OTFkZTYwHhcNMjIwNzE1MDk0OTA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZmNiZDZkNWMzNTgyYjlmNWRhNzY3OWVjZmUyZjkwMWVjNDkyNzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgqZX2L6IvfXd07UVWS4tkAe0bgpY
F1Id1ChHPBFc+bF1pq30mHSEuKa+VHi+9WNBtkSHA9Ji4VC2BuIj96dltfw9Wz7M
WsuDm4enCfmdvn2AhmAlh7P+JU71N54Sjf0pMWOXRNFriQKAqWxUWZ01zQ2gx1lh
v+tvb5OzKYYoUVBhEfx6sD6P6MCRrU9iXr8ids0zOPd+rhKUJUQj5Mcn+spvotGa
k80Ppu0iadayxEUbeLeTHw0llesNcuP1VZ+/o7jBFkmttSnMUMePTzeOtn439Orn
hxDej/lurrjLJkm37BrPynO4D5hx5W3c4vWrN7TYPVu2wp4oZ5KHgayClQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ/L1tXDWCufXadnns/i+QHsSSePMB8GA1UdIwQY
MBaAFGI4QQM44h6Oq5QRnYDkGjlYSR3mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWpoQkF6amlIbzZybEJHZGdPUWFPVmhKSGVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81YTQ1MjYtODlmYy00NjQwLTkwMWQt
MTNhNThlYjlkOGY1LzEvbjh2VzFjTllLNTlkcDJlZXotTDVBZXhKSjQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS81YTQ1MjYtODlmYy00NjQwLTkwMWQtMTNhNThlYjlkOGY1
LzEvWWpoQkF6amlIbzZybEJHZGdPUWFPVmhKSGVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9GWMA0G
CSqGSIb3DQEBCwUAA4IBAQA2hSVA2QnAh99VBFX6WQApB0mm9djEbLqKkIi8uomb
uWGyNY4h4g1QNjrxt8crvYmPL2aPiztYqQoShRLdm5hrere2HOFqPj8YtcYV+JaB
3fvku1SxTWJ2FYwF7v7jHUpGgnfXzv7CBCzmdELpv8L3Lg+U4WQRX8Z/R53nnqog
K/+QYfV8vAU21CJ9gw2e1MpFeN/Uxf0q9c0rWSTKIhzxeOL4Kk1TYCa60L0XCmVI
ZawgTgRLUgwPfiy5YDmfxKe1M2QQNaECnqSbFTBsWvKIpafBl1CeaLRJ0UGGCD6P
m/+heNpz7uZKcTPU0qtHXtqFvE9Ho9OtiV0JjVgbovke
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:01 2024 by rpki-client on console-fra.rpki-client.org