Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/be2540-48bb-4c66-8b24-2741b36b75de/1/tnn2m1VXiZy4IjjBXfkokigpuK4.roa
File: tnn2m1VXiZy4IjjBXfkokigpuK4.roa (raw, json)
Hash identifier: FAu6ynPQw+Cu6YMWkGOXFdX1ivfjy0Ldt3lR6w3DxxY=
Subject key identifier: B6:79:F6:9B:55:57:89:9C:B8:22:38:C1:5D:F9:28:92:28:29:B8:AE
Certificate issuer: /CN=ca9ea5167807b7085b51310ca60dbf2b91982fc7
Certificate serial: 0183B16C12B1B27782B6AF2B6D101F717DDD
Authority key identifier: CA:9E:A5:16:78:07:B7:08:5B:51:31:0C:A6:0D:BF:2B:91:98:2F:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yp6lFngHtwhbUTEMpg2_K5GYL8c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/be2540-48bb-4c66-8b24-2741b36b75de/1/tnn2m1VXiZy4IjjBXfkokigpuK4.roa
Signing time: Fri 07 Oct 2022 07:49:53 +0000
ROA not before: Fri 07 Oct 2022 07:49:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197935
IP address blocks: 91.227.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b1:6c:12:b1:b2:77:82:b6:af:2b:6d:10:1f:71:7d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9ea5167807b7085b51310ca60dbf2b91982fc7
Validity
Not Before: Oct 7 07:49:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b679f69b5557899cb82238c15df928922829b8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4f:6e:9c:f4:aa:19:88:2f:4f:a2:ed:9c:1c:
04:f8:a3:98:57:24:73:b0:11:1a:6b:89:a6:64:79:
7d:f0:e3:b5:9f:be:5d:f4:8e:56:e7:97:ad:02:fc:
b5:b9:c4:8e:a5:9e:80:70:93:b2:4b:bc:eb:89:51:
6e:53:90:5a:8f:97:98:4e:46:cf:d0:14:77:30:9e:
f9:0c:28:73:db:7a:a5:1e:25:77:d2:9f:1d:79:73:
d3:b0:a1:60:1f:60:3e:f4:9f:01:88:c8:0f:46:ae:
df:8e:14:d1:16:92:19:e1:bb:80:dc:e8:39:7b:7d:
40:a8:a7:99:19:da:ed:89:94:46:fd:38:38:d3:32:
54:45:de:2b:23:b5:69:a8:95:93:ac:f3:50:85:a1:
54:33:f6:b3:96:2b:cf:10:96:b0:08:e9:07:6d:69:
16:18:b0:32:be:63:bc:99:27:2b:78:53:b8:9d:41:
c4:e6:22:cb:ce:b5:fc:8e:7b:3c:d0:61:4d:19:53:
84:c5:26:32:49:86:b2:65:ac:75:50:ab:47:85:e1:
0b:6b:fe:27:27:3b:d6:b9:63:94:75:5e:e4:86:17:
a0:4a:0f:82:8c:2a:b7:d7:2c:38:ab:bb:ad:28:6d:
ae:67:8c:f3:44:c3:c5:0f:53:e1:a9:0c:07:b5:be:
9e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:79:F6:9B:55:57:89:9C:B8:22:38:C1:5D:F9:28:92:28:29:B8:AE
X509v3 Authority Key Identifier:
keyid:CA:9E:A5:16:78:07:B7:08:5B:51:31:0C:A6:0D:BF:2B:91:98:2F:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yp6lFngHtwhbUTEMpg2_K5GYL8c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/be2540-48bb-4c66-8b24-2741b36b75de/1/tnn2m1VXiZy4IjjBXfkokigpuK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/be2540-48bb-4c66-8b24-2741b36b75de/1/yp6lFngHtwhbUTEMpg2_K5GYL8c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.76.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:f5:ad:07:19:90:53:fa:45:c5:f5:f7:69:98:20:d1:c5:67:
59:ce:e6:fd:74:4a:3c:d9:14:78:2a:d8:e5:2e:d5:38:e2:b4:
c5:6a:78:0c:89:4d:83:11:19:ac:26:02:1d:12:df:69:57:1f:
f9:e7:13:45:f4:80:3b:06:70:60:c2:c5:6d:8b:f7:25:17:ae:
b6:1a:e5:7a:e5:e5:e8:27:d5:4a:d1:bf:66:bb:a2:74:92:6f:
35:b8:de:85:31:55:a5:cb:6a:c3:0f:23:8a:59:70:3d:f2:39:
96:c4:0b:0b:ac:4f:bf:9f:21:66:5b:4a:65:5f:be:bf:44:70:
b3:19:ea:95:7d:af:42:a6:c3:a2:da:9d:95:24:79:1b:e6:f3:
09:cc:bb:4f:05:0b:08:ad:a2:0f:86:77:a3:3a:82:32:eb:42:
df:a2:00:05:50:cc:e5:fd:c8:29:9c:c1:f2:5d:f0:f2:ed:3e:
ef:ac:7b:ab:13:9e:76:57:79:22:9e:6b:86:c0:76:51:90:e3:
41:42:14:df:32:97:c8:f9:b4:12:9e:ba:78:5a:b6:d3:15:1d:
09:af:15:88:1b:94:3b:81:6a:68:86:2b:c4:b9:1c:13:da:12:
d3:f4:6d:c3:2a:17:53:2c:04:f3:35:e3:27:a2:d1:4a:7d:00:
d5:11:e2:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOxbBKxsneCtq8rbRAfcX3dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhOWVhNTE2NzgwN2I3MDg1YjUxMzEwY2E2MGRiZjJiOTE5
ODJmYzcwHhcNMjIxMDA3MDc0OTUzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjc5ZjY5YjU1NTc4OTljYjgyMjM4YzE1ZGY5Mjg5MjI4MjliOGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsk9unPSqGYgvT6LtnBwE+KOYVyRz
sBEaa4mmZHl98OO1n75d9I5W55etAvy1ucSOpZ6AcJOyS7zriVFuU5Baj5eYTkbP
0BR3MJ75DChz23qlHiV30p8deXPTsKFgH2A+9J8BiMgPRq7fjhTRFpIZ4buA3Og5
e31AqKeZGdrtiZRG/Tg40zJURd4rI7VpqJWTrPNQhaFUM/azlivPEJawCOkHbWkW
GLAyvmO8mScreFO4nUHE5iLLzrX8jns80GFNGVOExSYySYayZax1UKtHheELa/4n
JzvWuWOUdV7khhegSg+CjCq31yw4q7utKG2uZ4zzRMPFD1PhqQwHtb6e1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLZ59ptVV4mcuCI4wV35KJIoKbiuMB8GA1UdIwQY
MBaAFMqepRZ4B7cIW1ExDKYNvyuRmC/HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXA2bEZuZ0h0d2hiVVRFTXBnMl9LNUdZTDhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9iZTI1NDAtNDhiYi00YzY2LThiMjQt
Mjc0MWIzNmI3NWRlLzEvdG5uMm0xVlhpWnk0SWpqQlhma29raWdwdUs0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9iZTI1NDAtNDhiYi00YzY2LThiMjQtMjc0MWIzNmI3NWRl
LzEveXA2bEZuZ0h0d2hiVVRFTXBnMl9LNUdZTDhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+NMMA0G
CSqGSIb3DQEBCwUAA4IBAQCb9a0HGZBT+kXF9fdpmCDRxWdZzub9dEo82RR4Ktjl
LtU44rTFangMiU2DERmsJgIdEt9pVx/55xNF9IA7BnBgwsVti/clF662GuV65eXo
J9VK0b9mu6J0km81uN6FMVWly2rDDyOKWXA98jmWxAsLrE+/nyFmW0plX76/RHCz
GeqVfa9CpsOi2p2VJHkb5vMJzLtPBQsIraIPhnejOoIy60LfogAFUMzl/cgpnMHy
XfDy7T7vrHurE552V3kinmuGwHZRkONBQhTfMpfI+bQSnrp4WrbTFR0JrxWIG5Q7
gWpohivEuRwT2hLT9G3DKhdTLATzNeMnotFKfQDVEeJF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:26 2024 by rpki-client on console-fra.rpki-client.org