Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/595024-8bff-4f18-8ccb-69a44f048db8/1/eiUR_ju7uJMbJrZ6I1Wh8prU39k.roa
File: eiUR_ju7uJMbJrZ6I1Wh8prU39k.roa (raw, json)
Hash identifier: qP3IXFs3uzZv46zHIOpY4pmf/xtqn1vP24f75TQoU64=
Subject key identifier: 7A:25:11:FE:3B:BB:B8:93:1B:26:B6:7A:23:55:A1:F2:9A:D4:DF:D9
Certificate issuer: /CN=6b22ad4cf647a48b631ff84f227ea0252130552d
Certificate serial: 042F3106
Authority key identifier: 6B:22:AD:4C:F6:47:A4:8B:63:1F:F8:4F:22:7E:A0:25:21:30:55:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayKtTPZHpItjH_hPIn6gJSEwVS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/595024-8bff-4f18-8ccb-69a44f048db8/1/eiUR_ju7uJMbJrZ6I1Wh8prU39k.roa
Signing time: Thu 21 Apr 2022 20:00:34 +0000
ROA not before: Thu 21 Apr 2022 20:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149440
IP address blocks: 193.247.144.0/24 maxlen: 24
91.218.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70201606 (0x42f3106)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b22ad4cf647a48b631ff84f227ea0252130552d
Validity
Not Before: Apr 21 20:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a2511fe3bbbb8931b26b67a2355a1f29ad4dfd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:33:dd:16:95:ac:45:7b:96:43:d4:40:ba:d9:
0b:e5:aa:f4:0a:2a:f9:39:ee:2b:db:ac:1f:54:c2:
1c:fc:22:80:ef:3f:e9:8c:df:03:d0:fa:eb:b5:66:
e8:d2:fa:8f:8a:81:85:42:3d:42:98:b1:7c:4c:dc:
26:72:0d:df:b9:3e:44:77:ee:4d:cc:57:0d:fd:5c:
c9:ce:3b:36:4b:c5:28:1c:76:c4:71:10:b6:6b:8d:
d4:bc:f3:d2:95:26:3c:48:4f:c7:e8:59:fb:92:af:
8f:4e:26:e3:8d:ba:6a:51:39:2e:7a:29:79:80:55:
28:bb:78:aa:91:bb:93:17:74:83:38:19:c9:71:e0:
15:b9:a8:7d:f3:9d:80:d9:45:e2:0a:e4:8d:9b:7a:
6a:31:71:d0:cf:4f:43:6a:7f:d7:b0:12:ce:b9:0d:
a6:56:f9:4e:f5:8f:5d:b8:f9:cf:b9:0c:ff:5e:45:
79:e2:45:03:2b:71:8e:b9:8d:05:48:b2:23:b7:69:
42:f3:eb:09:27:b0:64:ef:fc:d9:f5:5f:d9:a8:78:
32:3f:f0:32:68:18:0a:b5:44:5d:d1:86:67:4c:28:
cf:dd:8a:b6:4a:9b:0b:95:dc:d7:87:62:56:40:f0:
4e:0e:58:59:b3:c5:32:a0:56:64:4a:20:d7:ab:24:
04:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:25:11:FE:3B:BB:B8:93:1B:26:B6:7A:23:55:A1:F2:9A:D4:DF:D9
X509v3 Authority Key Identifier:
keyid:6B:22:AD:4C:F6:47:A4:8B:63:1F:F8:4F:22:7E:A0:25:21:30:55:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayKtTPZHpItjH_hPIn6gJSEwVS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/595024-8bff-4f18-8ccb-69a44f048db8/1/eiUR_ju7uJMbJrZ6I1Wh8prU39k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/595024-8bff-4f18-8ccb-69a44f048db8/1/ayKtTPZHpItjH_hPIn6gJSEwVS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.183.0/24
193.247.144.0/24
Signature Algorithm: sha256WithRSAEncryption
56:be:8e:78:6b:20:43:ae:01:0f:33:b7:96:e5:93:82:cf:4c:
f3:34:53:ad:fa:0f:77:59:b6:46:92:f9:94:08:0b:6a:0e:5c:
dc:34:46:0e:bf:b1:af:92:47:04:c1:cf:3c:ed:1d:15:fc:c4:
61:9a:d2:4f:0f:7d:06:4d:2f:ef:3b:73:77:c4:68:72:75:e2:
f6:54:ce:95:22:71:dd:64:55:79:12:f6:11:68:96:ad:d9:10:
76:c4:df:ff:8f:2d:10:8f:ef:61:b8:f7:fb:4a:0d:a7:f9:51:
ea:62:65:22:1e:2b:90:86:b5:1e:12:44:ca:63:49:8e:fe:ee:
f9:63:0b:22:6a:1d:92:c6:7e:24:ee:4e:fd:b6:dd:38:4f:bc:
ad:3b:f8:cf:d8:d7:6b:30:92:aa:b0:8b:84:0f:cb:c8:e0:04:
95:92:a5:ae:bc:bf:a3:18:2f:fa:ad:b1:4b:b2:71:37:de:18:
fd:98:88:3f:a8:c0:2e:fa:d6:20:65:57:0d:d3:17:86:f2:d9:
59:16:d2:9f:39:cf:97:f0:e1:1e:3a:20:72:33:b0:3d:42:de:
24:c1:10:e3:89:d0:d0:51:10:78:62:26:30:44:fb:81:26:be:
40:e4:14:3b:ac:44:0e:0e:dc:01:86:f5:01:98:0f:fa:3c:a1:
1b:c9:cf:a3
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBC8xBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YjIyYWQ0Y2Y2NDdhNDhiNjMxZmY4NGYyMjdlYTAyNTIxMzA1NTJkMB4XDTIyMDQy
MTIwMDAzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2EyNTExZmUzYmJi
Yjg5MzFiMjZiNjdhMjM1NWExZjI5YWQ0ZGZkOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL4z3RaVrEV7lkPUQLrZC+Wq9Aoq+TnuK9usH1TCHPwigO8/
6YzfA9D667Vm6NL6j4qBhUI9QpixfEzcJnIN37k+RHfuTcxXDf1cyc47NkvFKBx2
xHEQtmuN1Lzz0pUmPEhPx+hZ+5Kvj04m4426alE5LnopeYBVKLt4qpG7kxd0gzgZ
yXHgFbmoffOdgNlF4grkjZt6ajFx0M9PQ2p/17ASzrkNplb5TvWPXbj5z7kM/15F
eeJFAytxjrmNBUiyI7dpQvPrCSewZO/82fVf2ah4Mj/wMmgYCrVEXdGGZ0woz92K
tkqbC5Xc14diVkDwTg5YWbPFMqBWZEog16skBOMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBR6JRH+O7u4kxsmtnojVaHymtTf2TAfBgNVHSMEGDAWgBRrIq1M9keki2Mf
+E8ifqAlITBVLTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2F5S3RUUFpIcEl0akhfaFBJbjZnSlNFd1ZTMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzAvNTk1MDI0LThiZmYtNGYxOC04Y2NiLTY5YTQ0ZjA0OGRiOC8x
L2VpVVJfanU3dUpNYkpyWjZJMVdoOHByVTM5ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAv
NTk1MDI0LThiZmYtNGYxOC04Y2NiLTY5YTQ0ZjA0OGRiOC8xL2F5S3RUUFpIcEl0
akhfaFBJbjZnSlNFd1ZTMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvatwMEAMH3kDANBgkqhkiG9w0B
AQsFAAOCAQEAVr6OeGsgQ64BDzO3luWTgs9M8zRTrfoPd1m2RpL5lAgLag5c3DRG
Dr+xr5JHBMHPPO0dFfzEYZrSTw99Bk0v7ztzd8RocnXi9lTOlSJx3WRVeRL2EWiW
rdkQdsTf/48tEI/vYbj3+0oNp/lR6mJlIh4rkIa1HhJEymNJjv7u+WMLImodksZ+
JO5O/bbdOE+8rTv4z9jXazCSqrCLhA/LyOAElZKlrry/oxgv+q2xS7JxN94Y/ZiI
P6jALvrWIGVXDdMXhvLZWRbSnznPl/DhHjogcjOwPULeJMEQ44nQ0FEQeGImMET7
gSa+QOQUO6xEDg7cAYb1AZgP+jyhG8nPow==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:27 2024 by rpki-client on console-ams.rpki-client.org