Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/M6OPU1iUg1ikJ0aU3XN-4c-S7RQ.roa
File: M6OPU1iUg1ikJ0aU3XN-4c-S7RQ.roa (raw, json)
Hash identifier: waRwMDpT20gKIHUm7f3uv3ubN60NU5wAVrViIM4abhw=
Subject key identifier: 33:A3:8F:53:58:94:83:58:A4:27:46:94:DD:73:7E:E1:CF:92:ED:14
Certificate issuer: /CN=426446a4a1cb56b3f76fe6b4defabad3bd9b5207
Certificate serial: 0182F9F6E137202231F4080050E472662511
Authority key identifier: 42:64:46:A4:A1:CB:56:B3:F7:6F:E6:B4:DE:FA:BA:D3:BD:9B:52:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QmRGpKHLVrP3b-a03vq6072bUgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/M6OPU1iUg1ikJ0aU3XN-4c-S7RQ.roa
Signing time: Thu 01 Sep 2022 16:51:22 +0000
ROA not before: Thu 01 Sep 2022 16:51:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51780
IP address blocks: 91.209.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f9:f6:e1:37:20:22:31:f4:08:00:50:e4:72:66:25:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=426446a4a1cb56b3f76fe6b4defabad3bd9b5207
Validity
Not Before: Sep 1 16:51:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33a38f5358948358a4274694dd737ee1cf92ed14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:66:71:8f:fe:90:2a:a4:f7:5b:6e:a5:f5:48:
94:ed:e9:d4:5e:ec:7f:4c:eb:02:0a:6a:e1:dd:6d:
32:5d:13:4a:a1:70:07:a5:cd:88:6c:f2:8d:1f:5b:
b7:f8:cd:69:db:ca:c4:d4:0f:50:ce:3e:07:ce:6e:
49:88:1a:74:42:32:8e:48:f2:29:fd:5d:12:5d:1e:
83:d0:95:fb:03:51:b6:ae:01:39:1d:50:f5:81:06:
df:fc:aa:63:46:ea:e2:d7:1d:56:aa:82:7d:1c:4c:
6d:33:01:c3:d0:d5:7d:4c:21:86:bc:31:d6:79:10:
e9:fb:b1:3f:19:0a:a9:4a:77:86:ad:2f:64:c5:f4:
fa:05:12:c9:f1:73:ac:9d:e2:bd:3f:34:18:6e:e8:
43:44:55:c9:c2:74:44:64:a4:9d:d3:a9:29:e6:61:
1c:b7:23:5c:b4:18:36:35:d5:52:38:0a:e8:26:7b:
4a:d3:97:63:41:93:e2:1b:36:be:40:01:1a:6b:71:
c6:04:a2:41:be:56:37:55:0a:59:fb:83:1b:f3:eb:
9b:2b:f6:a3:7f:ae:f2:a9:a7:01:1b:73:35:38:14:
93:bb:ac:8c:df:97:8f:6c:d1:97:1c:69:af:f5:7c:
82:b5:d9:7f:34:7a:21:df:61:7a:68:9b:a3:ca:40:
16:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A3:8F:53:58:94:83:58:A4:27:46:94:DD:73:7E:E1:CF:92:ED:14
X509v3 Authority Key Identifier:
keyid:42:64:46:A4:A1:CB:56:B3:F7:6F:E6:B4:DE:FA:BA:D3:BD:9B:52:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QmRGpKHLVrP3b-a03vq6072bUgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/M6OPU1iUg1ikJ0aU3XN-4c-S7RQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2610af-e856-4828-a6ea-ede0282f9bb9/1/QmRGpKHLVrP3b-a03vq6072bUgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.233.0/24
Signature Algorithm: sha256WithRSAEncryption
29:4d:88:71:ae:38:27:0a:e9:ae:5b:72:97:69:01:3c:21:0a:
4d:d6:6f:f6:06:b7:96:e5:7a:0f:cd:3b:b7:50:a4:47:be:01:
77:f4:9d:17:d2:c9:ac:5b:78:18:50:d8:62:3f:3c:34:51:a2:
23:69:70:09:ac:78:ea:7c:a9:e2:17:d3:87:cd:6b:6b:e2:a1:
01:7c:43:37:1e:1e:af:b1:20:b4:d3:75:72:05:df:25:31:fe:
20:01:72:df:94:43:a8:fe:09:6f:82:f0:9c:7c:14:12:4c:68:
a5:3c:14:19:d1:8a:fc:ed:b2:df:65:d0:dc:07:d1:3d:34:dc:
fd:38:e6:da:ac:fc:c3:93:fc:52:32:c7:49:3a:33:d8:49:0e:
94:97:ca:b4:7a:34:02:ae:02:e1:9e:2c:dd:f2:b7:82:ed:d1:
04:fd:f1:e1:aa:45:77:bb:d2:50:5c:f1:5d:da:5e:1c:95:a7:
0c:5a:dc:2e:21:19:c0:dc:17:64:c3:6d:3a:51:0a:20:1d:d5:
e5:0d:6b:96:49:a6:7c:6f:dc:f8:e9:9d:fa:c8:45:a8:dc:d5:
f1:11:61:bb:96:01:d7:72:a3:16:1b:a7:af:c3:90:32:07:04:
d4:1f:66:7c:63:fd:b5:5f:f3:6d:2d:55:4b:3f:d6:36:09:cb:
58:0b:2e:04
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYL59uE3ICIx9AgAUORyZiURMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyNjQ0NmE0YTFjYjU2YjNmNzZmZTZiNGRlZmFiYWQzYmQ5
YjUyMDcwHhcNMjIwOTAxMTY1MTIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2EzOGY1MzU4OTQ4MzU4YTQyNzQ2OTRkZDczN2VlMWNmOTJlZDE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhmZxj/6QKqT3W26l9UiU7enUXux/
TOsCCmrh3W0yXRNKoXAHpc2IbPKNH1u3+M1p28rE1A9Qzj4Hzm5JiBp0QjKOSPIp
/V0SXR6D0JX7A1G2rgE5HVD1gQbf/KpjRuri1x1WqoJ9HExtMwHD0NV9TCGGvDHW
eRDp+7E/GQqpSneGrS9kxfT6BRLJ8XOsneK9PzQYbuhDRFXJwnREZKSd06kp5mEc
tyNctBg2NdVSOAroJntK05djQZPiGza+QAEaa3HGBKJBvlY3VQpZ+4Mb8+ubK/aj
f67yqacBG3M1OBSTu6yM35ePbNGXHGmv9XyCtdl/NHoh32F6aJujykAWbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDOjj1NYlINYpCdGlN1zfuHPku0UMB8GA1UdIwQY
MBaAFEJkRqShy1az92/mtN76utO9m1IHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUW1SR3BLSExWclAzYi1hMDN2cTYwNzJiVWdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8yNjEwYWYtZTg1Ni00ODI4LWE2ZWEt
ZWRlMDI4MmY5YmI5LzEvTTZPUFUxaVVnMWlrSjBhVTNYTi00Yy1TN1JRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8yNjEwYWYtZTg1Ni00ODI4LWE2ZWEtZWRlMDI4MmY5YmI5
LzEvUW1SR3BLSExWclAzYi1hMDN2cTYwNzJiVWdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9HpMA0G
CSqGSIb3DQEBCwUAA4IBAQApTYhxrjgnCumuW3KXaQE8IQpN1m/2BreW5XoPzTu3
UKRHvgF39J0X0smsW3gYUNhiPzw0UaIjaXAJrHjqfKniF9OHzWtr4qEBfEM3Hh6v
sSC003VyBd8lMf4gAXLflEOo/glvgvCcfBQSTGilPBQZ0Yr87bLfZdDcB9E9NNz9
OObarPzDk/xSMsdJOjPYSQ6Ul8q0ejQCrgLhnizd8reC7dEE/fHhqkV3u9JQXPFd
2l4clacMWtwuIRnA3Bdkw206UQogHdXlDWuWSaZ8b9z46Z36yEWo3NXxEWG7lgHX
cqMWG6evw5AyBwTUH2Z8Y/21X/NtLVVLP9Y2CctYCy4E
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:20 2024 by rpki-client on console-ams.rpki-client.org