Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/ZxUfwfMB3XiUeFnQtbCvFkCU2nw.roa
File: ZxUfwfMB3XiUeFnQtbCvFkCU2nw.roa (raw, json)
Hash identifier: 4pj8u9MSVqYu4T25nONQOlYR2yiuj8NN+Z4nAa71w5o=
Subject key identifier: 67:15:1F:C1:F3:01:DD:78:94:78:59:D0:B5:B0:AF:16:40:94:DA:7C
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 14D0810F
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/ZxUfwfMB3XiUeFnQtbCvFkCU2nw.roa
Signing time: Sat 01 Jan 2022 05:51:57 +0000
ROA not before: Sat 01 Jan 2022 05:51:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206541
IP address blocks: 91.90.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349208847 (0x14d0810f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Jan 1 05:51:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=67151fc1f301dd78947859d0b5b0af164094da7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:42:9a:12:0c:13:eb:cc:9a:07:f0:e6:56:38:
48:bb:61:c9:ad:76:0a:dd:db:85:9d:aa:bf:56:90:
80:2d:ce:00:1a:96:ea:8d:a0:5f:a9:6a:5d:85:8c:
99:7b:a9:8b:fd:0b:ec:3f:5d:d9:a4:11:ff:8b:95:
9d:af:7e:ef:70:9e:19:f3:04:58:08:c0:5d:1e:93:
96:5d:a5:d6:e7:bd:cc:83:95:da:fc:41:c6:7d:8e:
e9:0c:e3:ca:4d:a2:8b:1b:8b:53:84:75:1b:c1:d0:
09:42:0f:1a:13:da:fe:b8:68:eb:3e:22:0b:9c:37:
68:ad:d1:d1:6f:12:55:57:e4:23:10:c0:bf:18:9a:
54:f4:95:25:d7:42:f5:b8:40:25:56:6d:9a:d0:a6:
b5:39:5f:ad:9a:ae:db:5f:a4:3c:3d:e8:b6:b7:8e:
73:81:4c:73:21:4b:7b:c3:eb:16:ab:03:c4:73:a6:
8a:39:73:3e:5d:88:19:d9:fd:9c:61:6a:ad:10:60:
3c:08:7c:48:76:23:aa:03:31:ac:a8:13:d3:51:eb:
09:d4:e5:de:74:39:c7:bf:46:c1:0f:6e:1d:3f:6a:
47:97:02:c7:83:51:18:2e:a2:81:b1:72:21:4f:34:
b1:9a:b8:06:13:9f:c1:99:d5:26:19:4b:42:e0:8c:
59:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:15:1F:C1:F3:01:DD:78:94:78:59:D0:B5:B0:AF:16:40:94:DA:7C
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/ZxUfwfMB3XiUeFnQtbCvFkCU2nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.90.233.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:da:42:d5:82:7a:34:b9:79:af:27:b7:ec:0e:a7:84:86:a4:
5d:d9:4c:d6:b0:78:4d:96:50:c6:f9:f0:19:c7:c3:f5:ea:c1:
41:70:c3:94:d1:b8:6b:f7:f0:53:af:91:5e:08:b6:10:c4:68:
81:f4:db:aa:97:b1:e4:e7:63:6a:89:b0:87:45:49:86:38:41:
59:39:28:8b:48:7c:df:92:bc:7b:6c:96:7d:9e:71:ca:f3:23:
10:ce:5f:9f:a9:22:2d:68:88:03:dd:87:30:d7:88:ee:6c:fd:
0f:81:aa:cc:a7:c6:b3:1c:86:35:c7:29:e7:aa:33:ad:78:3e:
e3:f2:7e:a0:0e:31:9c:99:cf:22:b2:a9:d8:50:72:af:1f:9d:
9c:91:e8:70:a9:fe:8b:9f:bc:a3:7f:96:8b:ab:fe:dd:ba:04:
fd:1d:4a:3f:02:1d:47:a4:89:cd:bc:66:90:1b:99:03:8c:51:
c5:a4:98:87:d9:b3:90:04:a9:53:5e:1e:83:62:f6:05:b9:5f:
0c:6d:cd:9d:46:f7:7a:f4:13:e5:b5:cd:ed:bd:bb:c3:99:d6:
a2:84:96:86:fe:3d:a3:20:14:19:74:f1:2c:35:d5:bc:6a:df:
a2:dd:68:9b:4b:5f:c5:ba:56:54:09:66:5e:34:19:f9:91:4e:
02:11:2f:7e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFNCBDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OGFkZDliNjcxZjdhMzZlYjIzNjdlMzRmZWU0YmNiMTNiOGY2NmNjMB4XDTIyMDEw
MTA1NTE1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjcxNTFmYzFmMzAx
ZGQ3ODk0Nzg1OWQwYjViMGFmMTY0MDk0ZGE3YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhCmhIME+vMmgfw5lY4SLthya12Ct3bhZ2qv1aQgC3OABqW
6o2gX6lqXYWMmXupi/0L7D9d2aQR/4uVna9+73CeGfMEWAjAXR6Tll2l1ue9zIOV
2vxBxn2O6Qzjyk2iixuLU4R1G8HQCUIPGhPa/rho6z4iC5w3aK3R0W8SVVfkIxDA
vxiaVPSVJddC9bhAJVZtmtCmtTlfrZqu21+kPD3otreOc4FMcyFLe8PrFqsDxHOm
ijlzPl2IGdn9nGFqrRBgPAh8SHYjqgMxrKgT01HrCdTl3nQ5x79GwQ9uHT9qR5cC
x4NRGC6igbFyIU80sZq4BhOfwZnVJhlLQuCMWQECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRnFR/B8wHdeJR4WdC1sK8WQJTafDAfBgNVHSMEGDAWgBSIrdm2cfejbrI2
fjT+5LyxO49mzDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lLM1p0bkgzbzI2eU5uNDBfdVM4c1R1UFpzdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzMvM2VkMDBhLTE1ZWUtNDY2NC1hN2YxLWExYjk2YjliNzBmOC8x
L1p4VWZ3Zk1CM1hpVWVGblF0YkN2RmtDVTJudy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzMv
M2VkMDBhLTE1ZWUtNDY2NC1hN2YxLWExYjk2YjliNzBmOC8xL2lLM1p0bkgzbzI2
eU5uNDBfdVM4c1R1UFpzdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFta6TANBgkqhkiG9w0BAQsFAAOC
AQEAm9pC1YJ6NLl5rye37A6nhIakXdlM1rB4TZZQxvnwGcfD9erBQXDDlNG4a/fw
U6+RXgi2EMRogfTbqpex5Odjaomwh0VJhjhBWTkoi0h835K8e2yWfZ5xyvMjEM5f
n6kiLWiIA92HMNeI7mz9D4GqzKfGsxyGNccp56ozrXg+4/J+oA4xnJnPIrKp2FBy
rx+dnJHocKn+i5+8o3+Wi6v+3boE/R1KPwIdR6SJzbxmkBuZA4xRxaSYh9mzkASp
U14eg2L2BblfDG3NnUb3evQT5bXN7b27w5nWooSWhv49oyAUGXTxLDXVvGrfot1o
m0tfxbpWVAlmXjQZ+ZFOAhEvfg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:06 2024 by rpki-client on console-ams.rpki-client.org