Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/vK7mgbxslhjvNRn_vrukU5BQ14w.roa
File: vK7mgbxslhjvNRn_vrukU5BQ14w.roa (raw, json)
Hash identifier: D+vZhWv+xQDOWJVmDmG4LNdB9UPHdN4YjfhhICBsK38=
Subject key identifier: BC:AE:E6:81:BC:6C:96:18:EF:35:19:FF:BE:BB:A4:53:90:50:D7:8C
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 0184C41635D6D555BB5BE7030853DE089400
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/vK7mgbxslhjvNRn_vrukU5BQ14w.roa
Signing time: Tue 29 Nov 2022 15:51:40 +0000
ROA not before: Tue 29 Nov 2022 15:51:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 91.243.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c4:16:35:d6:d5:55:bb:5b:e7:03:08:53:de:08:94:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Nov 29 15:51:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcaee681bc6c9618ef3519ffbebba4539050d78c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:82:59:08:4a:16:cc:56:ef:de:ba:b0:d1:4c:
44:9e:69:77:9d:f7:13:3c:8f:ba:b0:ec:16:8c:42:
78:4c:ed:2c:46:13:53:e9:6c:f9:dd:2a:cc:f6:90:
b5:51:1d:b6:27:2a:32:45:40:ea:d3:e3:82:6e:ea:
72:1f:57:41:46:de:3a:f2:90:3d:9d:dc:e7:69:2a:
08:d1:f3:e0:13:3c:ec:d5:c7:1e:ae:5e:49:fc:74:
83:06:58:82:9f:25:00:fd:02:b2:eb:07:73:41:85:
96:b0:27:64:3e:7b:0c:75:5c:cf:47:d5:4e:49:ce:
b3:02:d5:4f:f8:ca:ab:98:b7:53:6d:0f:b0:64:3a:
56:69:bd:6c:a1:3e:d2:c6:b5:03:c0:70:79:46:7a:
9e:44:29:20:a2:01:42:8f:8a:4a:ca:eb:ff:75:45:
85:db:94:09:68:40:ab:3c:39:ad:c6:57:e1:43:fa:
c9:af:64:21:6c:d8:ee:82:57:18:7a:7e:30:d4:49:
40:63:c4:87:0e:b8:c5:2f:df:6c:2d:a8:1a:0c:82:
7c:b9:ed:c3:c0:7c:3a:d0:87:71:3d:96:d8:e4:a3:
e8:0e:20:fa:c2:66:aa:75:b4:d6:08:a2:8f:51:21:
18:3d:b0:4e:a9:23:db:2e:93:94:99:12:07:29:2f:
f1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AE:E6:81:BC:6C:96:18:EF:35:19:FF:BE:BB:A4:53:90:50:D7:8C
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/vK7mgbxslhjvNRn_vrukU5BQ14w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.176.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:07:99:b9:e9:03:9b:f0:2b:89:8f:bf:12:d0:df:16:da:7e:
d2:b9:6d:88:ea:29:d4:57:ec:45:7c:0e:3c:ab:97:cb:af:94:
96:6e:fa:2c:5c:2c:94:28:34:0b:66:ab:21:51:f6:25:7f:4f:
45:70:c5:8e:59:39:5d:03:05:d2:e6:e3:ef:9f:2d:92:f2:1b:
94:4a:bb:91:05:8e:37:a3:7a:a8:be:5e:26:b9:ea:c0:ac:9c:
2c:9f:0d:d9:cf:41:17:f9:49:bf:c9:ac:23:91:75:2c:ea:aa:
a0:dd:f9:6f:28:40:65:08:1d:b6:b8:f6:0f:58:3f:5d:c5:c7:
ad:43:f3:08:0f:7f:35:19:62:6f:07:b5:5a:eb:7c:4d:fd:bd:
08:18:2a:4c:ce:0b:db:ce:65:57:1f:8a:0b:51:be:a3:6e:a5:
65:c4:34:c0:4c:2c:00:a0:ff:30:7e:07:d8:31:31:7c:52:ec:
b8:86:4c:71:1f:09:64:9a:49:cc:b5:9d:6d:33:59:1a:f8:3a:
fe:61:c9:5e:f6:4e:8f:07:09:1c:68:0c:9e:f5:0a:d2:35:c7:
da:29:95:3d:69:34:9e:33:ce:d3:38:9a:ae:3e:2c:19:f4:f1:
8a:e7:a9:e8:a2:81:5c:49:9f:5a:15:f3:79:c9:d8:a5:f1:2d:
34:92:33:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTEFjXW1VW7W+cDCFPeCJQAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1
YmE2ODEwHhcNMjIxMTI5MTU1MTQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2FlZTY4MWJjNmM5NjE4ZWYzNTE5ZmZiZWJiYTQ1MzkwNTBkNzhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoJZCEoWzFbv3rqw0UxEnml3nfcT
PI+6sOwWjEJ4TO0sRhNT6Wz53SrM9pC1UR22JyoyRUDq0+OCbupyH1dBRt468pA9
ndznaSoI0fPgEzzs1ccerl5J/HSDBliCnyUA/QKy6wdzQYWWsCdkPnsMdVzPR9VO
Sc6zAtVP+MqrmLdTbQ+wZDpWab1soT7SxrUDwHB5RnqeRCkgogFCj4pKyuv/dUWF
25QJaECrPDmtxlfhQ/rJr2QhbNjuglcYen4w1ElAY8SHDrjFL99sLagaDIJ8ue3D
wHw60IdxPZbY5KPoDiD6wmaqdbTWCKKPUSEYPbBOqSPbLpOUmRIHKS/xYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLyu5oG8bJYY7zUZ/767pFOQUNeMMB8GA1UdIwQY
MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt
YTg3NzNkZTc2OGY3LzEvdks3bWdieHNsaGp2TlJuX3ZydWtVNUJRMTR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3
LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/OwMA0G
CSqGSIb3DQEBCwUAA4IBAQBsB5m56QOb8CuJj78S0N8W2n7SuW2I6inUV+xFfA48
q5fLr5SWbvosXCyUKDQLZqshUfYlf09FcMWOWTldAwXS5uPvny2S8huUSruRBY43
o3qovl4muerArJwsnw3Zz0EX+Um/yawjkXUs6qqg3flvKEBlCB22uPYPWD9dxcet
Q/MID381GWJvB7Va63xN/b0IGCpMzgvbzmVXH4oLUb6jbqVlxDTATCwAoP8wfgfY
MTF8Uuy4hkxxHwlkmknMtZ1tM1ka+Dr+Ycle9k6PBwkcaAye9QrSNcfaKZU9aTSe
M87TOJquPiwZ9PGK56noooFcSZ9aFfN5ydil8S00kjNq
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:04 2023 by rpki-client on console-ams.rpki-client.org