Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/edb208-6fed-44e4-b1ab-df0ca4d41955/1/h7p8VLEx0VDamCjnJ0BYzQJ1sKs.roa
File: h7p8VLEx0VDamCjnJ0BYzQJ1sKs.roa (raw, json)
Hash identifier: gdsvyIlGoTTkTOGqo3WPtVoeaoLbkde6sdiLKvm0RcA=
Subject key identifier: 87:BA:7C:54:B1:31:D1:50:DA:98:28:E7:27:40:58:CD:02:75:B0:AB
Certificate issuer: /CN=6611a57d2a03b7065fa8c17b313735bdcda390e9
Certificate serial: 0B4376D1
Authority key identifier: 66:11:A5:7D:2A:03:B7:06:5F:A8:C1:7B:31:37:35:BD:CD:A3:90:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhGlfSoDtwZfqMF7MTc1vc2jkOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/edb208-6fed-44e4-b1ab-df0ca4d41955/1/h7p8VLEx0VDamCjnJ0BYzQJ1sKs.roa
Signing time: Sat 01 Jan 2022 01:53:42 +0000
ROA not before: Sat 01 Jan 2022 01:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 91.238.206.0/24 maxlen: 24
2001:67c:2a78::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188970705 (0xb4376d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6611a57d2a03b7065fa8c17b313735bdcda390e9
Validity
Not Before: Jan 1 01:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87ba7c54b131d150da9828e7274058cd0275b0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:29:79:f7:eb:0b:95:03:35:c5:4f:34:8f:69:
94:c8:de:98:8a:43:7d:1b:93:0b:70:6d:dd:44:6d:
66:a3:6a:c8:39:72:5c:0d:6f:20:dc:17:98:42:15:
38:1f:d6:bf:d5:52:78:61:d4:1a:c0:ed:86:44:58:
4d:b3:50:2a:df:08:16:42:64:3b:e8:00:f2:b2:eb:
b0:b8:0c:47:e6:46:c8:01:27:34:67:cc:49:91:20:
78:08:7f:fa:d4:ae:d8:81:9f:de:c3:38:91:b9:a6:
10:12:ec:31:54:ef:66:0b:5b:00:69:46:3d:c3:a1:
d3:c9:1c:bd:5d:66:58:b1:1e:66:6d:0c:bc:d5:e9:
e2:e8:56:c6:b7:39:6a:89:96:5a:b9:f5:b4:fc:9f:
96:2f:22:12:27:d4:6a:b5:ff:a3:eb:de:2b:1c:68:
a3:60:0a:93:f7:49:8f:1b:83:12:39:06:39:74:2c:
47:87:54:9f:87:3a:65:10:7b:1c:73:94:6d:3f:d6:
32:fb:f4:0f:90:f4:6f:73:dd:bb:1a:8f:36:b0:89:
e4:bf:04:9a:70:74:87:7b:db:e6:b6:20:b4:ef:10:
cf:6e:a0:6e:4a:0f:2a:7d:c1:c0:22:39:33:29:a8:
43:fc:08:a0:e9:b1:77:4a:40:3a:ac:38:a8:b6:b8:
c8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:BA:7C:54:B1:31:D1:50:DA:98:28:E7:27:40:58:CD:02:75:B0:AB
X509v3 Authority Key Identifier:
keyid:66:11:A5:7D:2A:03:B7:06:5F:A8:C1:7B:31:37:35:BD:CD:A3:90:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhGlfSoDtwZfqMF7MTc1vc2jkOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/edb208-6fed-44e4-b1ab-df0ca4d41955/1/h7p8VLEx0VDamCjnJ0BYzQJ1sKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/edb208-6fed-44e4-b1ab-df0ca4d41955/1/ZhGlfSoDtwZfqMF7MTc1vc2jkOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.206.0/24
IPv6:
2001:67c:2a78::/48
Signature Algorithm: sha256WithRSAEncryption
20:37:73:ca:95:34:fb:84:eb:28:31:7e:3e:90:0d:5c:21:78:
b2:08:24:59:f5:65:22:48:c7:42:c2:4f:15:65:d4:d4:53:24:
88:b1:59:9d:9c:52:07:91:fb:47:9c:d8:35:4c:7b:72:4d:8d:
92:87:eb:69:b4:80:d8:14:91:e6:69:25:bb:f9:73:98:d1:ec:
fc:20:0b:98:14:3e:8b:dd:b1:83:ee:a3:8d:a0:e6:16:6c:24:
1d:4c:88:09:62:ad:fb:c9:46:c9:5f:e8:4c:ac:e0:51:71:0b:
29:f7:75:69:ad:b2:f4:0b:67:77:c6:1a:d8:b5:3a:17:ba:0d:
92:b5:ef:2d:10:1e:c3:77:e7:30:de:bd:94:d1:c4:93:e9:89:
41:0a:dd:2d:e9:28:06:f1:b5:2f:1f:67:21:7a:3d:73:18:e8:
af:b0:9c:83:f2:5d:c6:64:92:f5:75:d4:60:86:c0:ba:27:b4:
9a:d9:67:f1:25:9a:d2:2f:13:38:43:3f:24:d2:35:99:e9:82:
01:17:ac:44:ce:74:6e:8c:48:3d:84:37:04:b6:72:a8:ba:68:
ad:49:09:62:69:20:1e:1b:6f:b3:7b:ec:4e:18:ff:a7:a7:8c:
5c:7c:97:e8:91:38:09:44:5f:1a:ba:9f:f5:07:6c:8a:cc:85:
4a:7f:53:32
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEC0N20TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
NjExYTU3ZDJhMDNiNzA2NWZhOGMxN2IzMTM3MzViZGNkYTM5MGU5MB4XDTIyMDEw
MTAxNTM0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODdiYTdjNTRiMTMx
ZDE1MGRhOTgyOGU3Mjc0MDU4Y2QwMjc1YjBhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALMpeffrC5UDNcVPNI9plMjemIpDfRuTC3Bt3URtZqNqyDly
XA1vINwXmEIVOB/Wv9VSeGHUGsDthkRYTbNQKt8IFkJkO+gA8rLrsLgMR+ZGyAEn
NGfMSZEgeAh/+tSu2IGf3sM4kbmmEBLsMVTvZgtbAGlGPcOh08kcvV1mWLEeZm0M
vNXp4uhWxrc5aomWWrn1tPyfli8iEifUarX/o+veKxxoo2AKk/dJjxuDEjkGOXQs
R4dUn4c6ZRB7HHOUbT/WMvv0D5D0b3PduxqPNrCJ5L8EmnB0h3vb5rYgtO8Qz26g
bkoPKn3BwCI5MymoQ/wIoOmxd0pAOqw4qLa4yK0CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSHunxUsTHRUNqYKOcnQFjNAnWwqzAfBgNVHSMEGDAWgBRmEaV9KgO3Bl+o
wXsxNzW9zaOQ6TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1poR2xmU29EdHdaZnFNRjdNVGMxdmMyamtPay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2UvZWRiMjA4LTZmZWQtNDRlNC1iMWFiLWRmMGNhNGQ0MTk1NS8x
L2g3cDhWTEV4MFZEYW1Dam5KMEJZelFKMXNLcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Uv
ZWRiMjA4LTZmZWQtNDRlNC1iMWFiLWRmMGNhNGQ0MTk1NS8xL1poR2xmU29EdHda
ZnFNRjdNVGMxdmMyamtPay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAFvuzjAPBAIAAjAJAwcAIAEGfCp4
MA0GCSqGSIb3DQEBCwUAA4IBAQAgN3PKlTT7hOsoMX4+kA1cIXiyCCRZ9WUiSMdC
wk8VZdTUUySIsVmdnFIHkftHnNg1THtyTY2Sh+tptIDYFJHmaSW7+XOY0ez8IAuY
FD6L3bGD7qONoOYWbCQdTIgJYq37yUbJX+hMrOBRcQsp93VprbL0C2d3xhrYtToX
ug2Ste8tEB7Dd+cw3r2U0cST6YlBCt0t6SgG8bUvH2chej1zGOivsJyD8l3GZJL1
ddRghsC6J7Sa2WfxJZrSLxM4Qz8k0jWZ6YIBF6xEznRujEg9hDcEtnKoumitSQli
aSAeG2+ze+xOGP+np4xcfJfokTgJRF8aup/1B2yKzIVKf1My
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:34 2024 by rpki-client on console-ams.rpki-client.org