Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/5e80b4-cb16-4a35-b429-229ae9f728d6/1/flCzaFHagJojK51tb6UG3sxeQCs.roa
File: flCzaFHagJojK51tb6UG3sxeQCs.roa (raw, json)
Hash identifier: zUxIQ3O3nizNA9VFlqgU4IFb4mDusUc4WAsRfA1aA48=
Subject key identifier: 7E:50:B3:68:51:DA:80:9A:23:2B:9D:6D:6F:A5:06:DE:CC:5E:40:2B
Certificate issuer: /CN=e8ecf8e4ec9b442a95374c2a3c7e784b076187cc
Certificate serial: 072D6290
Authority key identifier: E8:EC:F8:E4:EC:9B:44:2A:95:37:4C:2A:3C:7E:78:4B:07:61:87:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Oz45OybRCqVN0wqPH54Swdhh8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/5e80b4-cb16-4a35-b429-229ae9f728d6/1/flCzaFHagJojK51tb6UG3sxeQCs.roa
Signing time: Sat 01 Jan 2022 08:00:39 +0000
ROA not before: Sat 01 Jan 2022 08:00:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5610
IP address blocks: 91.232.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120414864 (0x72d6290)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8ecf8e4ec9b442a95374c2a3c7e784b076187cc
Validity
Not Before: Jan 1 08:00:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e50b36851da809a232b9d6d6fa506decc5e402b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:48:98:73:84:4f:b5:2b:97:ec:09:29:b6:10:
e9:68:d6:6a:62:2f:a3:38:10:6d:74:f5:cf:5b:64:
f8:52:65:6e:39:93:32:51:2a:22:74:9a:0e:c9:f1:
7b:f0:3e:58:cf:51:46:95:0b:e5:51:da:6a:ca:f1:
c1:38:72:ae:9d:ea:fd:31:c7:8f:2c:01:56:0d:b8:
fb:4f:09:16:cc:f0:8c:6c:8c:da:5c:0e:07:34:46:
17:f9:99:84:f1:98:5e:70:6d:2d:87:ea:d8:f7:0e:
7a:d4:1a:0c:f0:1e:ca:69:cf:a8:09:25:27:98:4c:
9a:c6:c9:54:75:ad:20:ea:d5:80:20:35:f9:4e:32:
0c:4d:40:8a:e7:c8:75:e4:c0:ba:44:76:ef:74:a4:
71:c0:ee:7b:cf:6a:48:a7:dd:d4:3e:bc:d4:45:57:
53:c8:97:5b:a9:8b:1e:54:01:0a:24:e1:0c:13:63:
d8:d0:a7:7e:21:6a:b9:32:a0:84:e9:91:13:e3:e6:
87:8a:98:df:d5:64:9a:58:fd:d8:b1:84:51:5e:61:
18:94:a9:ed:dc:b7:b1:18:b4:ef:e6:fc:78:83:da:
8c:4c:c7:36:dd:ff:c1:42:93:8f:28:18:62:81:4c:
f3:62:82:cc:c4:f7:af:6b:85:5b:81:1f:4d:7d:19:
bc:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:50:B3:68:51:DA:80:9A:23:2B:9D:6D:6F:A5:06:DE:CC:5E:40:2B
X509v3 Authority Key Identifier:
keyid:E8:EC:F8:E4:EC:9B:44:2A:95:37:4C:2A:3C:7E:78:4B:07:61:87:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Oz45OybRCqVN0wqPH54Swdhh8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5e80b4-cb16-4a35-b429-229ae9f728d6/1/flCzaFHagJojK51tb6UG3sxeQCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/5e80b4-cb16-4a35-b429-229ae9f728d6/1/6Oz45OybRCqVN0wqPH54Swdhh8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.82.0/24
Signature Algorithm: sha256WithRSAEncryption
79:d0:49:c0:2e:88:c4:61:52:6d:90:db:b6:63:10:62:0e:66:
bd:87:da:3f:4d:8e:f1:a7:1b:fa:a0:4e:ce:7f:f4:4b:08:7d:
e2:ec:d4:e3:3b:7b:31:ca:24:eb:7a:49:81:ec:ff:46:da:27:
2b:fd:08:49:92:a3:1c:29:47:77:9f:67:48:8d:f0:0e:cd:d3:
fe:fc:d4:78:95:aa:ed:a6:a0:ac:4e:25:f3:f2:4a:ad:c2:df:
69:47:3f:e6:8e:64:bf:16:cb:52:85:c5:59:f3:11:e8:d4:23:
ed:c9:34:a7:ef:a0:6b:77:4f:79:f3:a7:4d:91:58:eb:33:f3:
80:ce:74:93:25:a1:ff:10:dc:be:60:96:d1:a0:ff:2e:18:4f:
1f:ed:dc:38:37:a4:25:52:9d:c4:26:70:89:b6:68:dc:78:d1:
c6:0c:11:76:be:31:06:fe:71:07:92:75:0d:a8:b9:b9:35:0d:
e5:d7:7b:9c:c8:76:ce:4e:1f:28:20:b6:24:6f:d6:9f:f2:f0:
37:0a:58:7b:cf:17:ea:19:29:c9:07:2a:fb:59:37:0f:29:60:
aa:59:d0:f9:49:7d:c2:79:f6:d7:05:90:37:0c:7b:d2:8d:85:
35:39:a7:51:4a:ea:08:57:4c:e3:27:43:e5:70:f1:20:f9:28:
1a:4f:7b:69
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBy1ikDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
OGVjZjhlNGVjOWI0NDJhOTUzNzRjMmEzYzdlNzg0YjA3NjE4N2NjMB4XDTIyMDEw
MTA4MDAzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2U1MGIzNjg1MWRh
ODA5YTIzMmI5ZDZkNmZhNTA2ZGVjYzVlNDAyYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAORImHOET7Url+wJKbYQ6WjWamIvozgQbXT1z1tk+FJlbjmT
MlEqInSaDsnxe/A+WM9RRpUL5VHaasrxwThyrp3q/THHjywBVg24+08JFszwjGyM
2lwOBzRGF/mZhPGYXnBtLYfq2PcOetQaDPAeymnPqAklJ5hMmsbJVHWtIOrVgCA1
+U4yDE1AiufIdeTAukR273SkccDue89qSKfd1D681EVXU8iXW6mLHlQBCiThDBNj
2NCnfiFquTKghOmRE+Pmh4qY39Vkmlj92LGEUV5hGJSp7dy3sRi07+b8eIPajEzH
Nt3/wUKTjygYYoFM82KCzMT3r2uFW4EfTX0ZvPUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR+ULNoUdqAmiMrnW1vpQbezF5AKzAfBgNVHSMEGDAWgBTo7Pjk7JtEKpU3
TCo8fnhLB2GHzDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZPejQ1T3liUkNxVk4wd3FQSDU0U3dkaGg4dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2UvNWU4MGI0LWNiMTYtNGEzNS1iNDI5LTIyOWFlOWY3MjhkNi8x
L2ZsQ3phRkhhZ0pvaks1MXRiNlVHM3N4ZVFDcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Uv
NWU4MGI0LWNiMTYtNGEzNS1iNDI5LTIyOWFlOWY3MjhkNi8xLzZPejQ1T3liUkNx
Vk4wd3FQSDU0U3dkaGg4dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvoUjANBgkqhkiG9w0BAQsFAAOC
AQEAedBJwC6IxGFSbZDbtmMQYg5mvYfaP02O8acb+qBOzn/0Swh94uzU4zt7Mcok
63pJgez/RtonK/0ISZKjHClHd59nSI3wDs3T/vzUeJWq7aagrE4l8/JKrcLfaUc/
5o5kvxbLUoXFWfMR6NQj7ck0p++ga3dPefOnTZFY6zPzgM50kyWh/xDcvmCW0aD/
LhhPH+3cODekJVKdxCZwibZo3HjRxgwRdr4xBv5xB5J1Dai5uTUN5dd7nMh2zk4f
KCC2JG/Wn/LwNwpYe88X6hkpyQcq+1k3DylgqlnQ+Ul9wnn21wWQNwx70o2FNTmn
UUrqCFdM4ydD5XDxIPkoGk97aQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:31 2024 by rpki-client on console-ams.rpki-client.org