Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e5344d-5ec3-40ee-8612-f99a3dd99826/1/zWwJkebaKCbKOE6446dvI3V0Vts.roa
File: zWwJkebaKCbKOE6446dvI3V0Vts.roa (raw, json)
Hash identifier: tCLVHnaCfYS/rIblEHR5udg0CPQvmCr/eWn0B8n43rg=
Subject key identifier: CD:6C:09:91:E6:DA:28:26:CA:38:4E:B8:E3:A7:6F:23:75:74:56:DB
Certificate issuer: /CN=24d2807eae26a67d3ebc25ed50ffe5434bc66c52
Certificate serial: 0A6405F2
Authority key identifier: 24:D2:80:7E:AE:26:A6:7D:3E:BC:25:ED:50:FF:E5:43:4B:C6:6C:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JNKAfq4mpn0-vCXtUP_lQ0vGbFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e5344d-5ec3-40ee-8612-f99a3dd99826/1/zWwJkebaKCbKOE6446dvI3V0Vts.roa
Signing time: Sat 01 Jan 2022 03:00:57 +0000
ROA not before: Sat 01 Jan 2022 03:00:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21449
IP address blocks: 91.217.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174327282 (0xa6405f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24d2807eae26a67d3ebc25ed50ffe5434bc66c52
Validity
Not Before: Jan 1 03:00:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd6c0991e6da2826ca384eb8e3a76f23757456db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c2:d2:4d:54:2c:82:80:9a:66:b7:c1:2d:61:
2f:d7:07:21:5b:1e:66:25:1f:97:f8:45:42:c4:d8:
98:d6:57:a9:85:7f:b0:7b:48:b2:54:f5:d2:d0:85:
1f:89:35:ff:4d:16:62:9a:ce:9f:43:3a:a6:eb:e9:
9a:82:2a:d1:84:71:0d:f8:9e:7f:7a:7f:b6:c3:c9:
ea:c4:db:e7:ea:48:32:eb:a5:fb:d7:f3:c3:7b:9f:
08:bd:cd:b6:4f:d0:b2:86:79:ee:3b:5c:02:e2:40:
24:33:b8:b1:3a:58:a2:6b:a7:6b:5e:44:16:ee:cc:
f5:fb:e0:ca:b1:0d:09:45:ad:44:99:bd:46:d8:a9:
87:5f:1a:46:f8:85:0f:87:45:c6:c1:0d:9e:29:69:
4c:77:f4:f0:12:60:ef:43:8e:2f:4e:ba:53:3a:cf:
4f:94:19:e2:fb:5a:ff:dd:44:1b:db:bd:45:f4:e3:
5e:4a:fb:92:98:02:e9:0d:60:b1:e7:59:2e:68:57:
8c:fc:42:7d:17:27:1e:0b:14:af:11:15:c9:be:ed:
e5:25:c2:89:ad:35:c5:ab:c0:10:99:75:06:b8:94:
3d:51:2f:75:b7:6b:f6:88:ef:dd:f9:0b:d9:90:ea:
dc:cb:b6:03:ee:74:7b:9a:d9:55:38:df:45:30:13:
aa:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:6C:09:91:E6:DA:28:26:CA:38:4E:B8:E3:A7:6F:23:75:74:56:DB
X509v3 Authority Key Identifier:
keyid:24:D2:80:7E:AE:26:A6:7D:3E:BC:25:ED:50:FF:E5:43:4B:C6:6C:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JNKAfq4mpn0-vCXtUP_lQ0vGbFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e5344d-5ec3-40ee-8612-f99a3dd99826/1/zWwJkebaKCbKOE6446dvI3V0Vts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e5344d-5ec3-40ee-8612-f99a3dd99826/1/JNKAfq4mpn0-vCXtUP_lQ0vGbFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.128.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:5b:56:2b:2b:84:28:61:1f:3c:e5:3a:20:0f:ec:94:eb:6f:
b4:36:ef:89:75:64:1e:6f:35:db:64:f6:54:b2:8f:6b:5f:8a:
f8:b7:e0:91:aa:2c:7f:f5:f4:bb:7d:40:4a:40:8a:32:0a:90:
5e:61:84:8c:f7:51:08:b6:af:62:95:33:58:ab:64:07:2f:70:
b4:fa:d8:e1:17:17:dd:32:74:8c:11:6d:a0:01:2d:d0:b6:70:
bf:8f:d9:06:af:e8:76:7d:e9:c5:31:bc:cb:2c:b1:76:0c:ec:
bb:2b:0b:8a:fb:36:3e:90:ad:e6:32:b4:80:c0:bc:f8:8c:1c:
c3:b7:0d:e8:38:c5:39:1e:87:13:97:35:26:31:bc:dd:cc:4d:
45:77:e4:19:2d:76:61:f1:a2:da:ae:9d:de:43:5d:42:50:33:
ff:2b:fc:33:66:82:a8:e9:26:30:f3:00:af:98:50:91:25:c3:
88:aa:06:75:47:01:2c:a1:f5:63:65:5a:c0:de:30:32:af:c2:
1f:04:ee:38:75:bb:c5:e1:92:83:e1:f5:26:b3:e5:58:5c:bd:
7b:27:88:9d:6e:6f:7c:14:2f:a0:3f:55:1b:7a:56:6e:f7:88:
1a:f7:35:7b:d4:38:a7:6b:03:5a:e5:22:98:8c:5c:d8:87:f8:
da:31:bc:8d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECmQF8jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NGQyODA3ZWFlMjZhNjdkM2ViYzI1ZWQ1MGZmZTU0MzRiYzY2YzUyMB4XDTIyMDEw
MTAzMDA1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2Q2YzA5OTFlNmRh
MjgyNmNhMzg0ZWI4ZTNhNzZmMjM3NTc0NTZkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK/C0k1ULIKAmma3wS1hL9cHIVseZiUfl/hFQsTYmNZXqYV/
sHtIslT10tCFH4k1/00WYprOn0M6puvpmoIq0YRxDfief3p/tsPJ6sTb5+pIMuul
+9fzw3ufCL3Ntk/QsoZ57jtcAuJAJDO4sTpYomuna15EFu7M9fvgyrENCUWtRJm9
Rtiph18aRviFD4dFxsENnilpTHf08BJg70OOL066UzrPT5QZ4vta/91EG9u9RfTj
Xkr7kpgC6Q1gsedZLmhXjPxCfRcnHgsUrxEVyb7t5SXCia01xavAEJl1BriUPVEv
dbdr9ojv3fkL2ZDq3Mu2A+50e5rZVTjfRTATqtsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTNbAmR5tooJso4Trjjp28jdXRW2zAfBgNVHSMEGDAWgBQk0oB+riamfT68
Je1Q/+VDS8ZsUjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pOS0FmcTRtcG4wLXZDWHRVUF9sUTB2R2JGSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDMvZTUzNDRkLTVlYzMtNDBlZS04NjEyLWY5OWEzZGQ5OTgyNi8x
L3pXd0prZWJhS0NiS09FNjQ0NmR2STNWMFZ0cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMv
ZTUzNDRkLTVlYzMtNDBlZS04NjEyLWY5OWEzZGQ5OTgyNi8xL0pOS0FmcTRtcG4w
LXZDWHRVUF9sUTB2R2JGSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvZgDANBgkqhkiG9w0BAQsFAAOC
AQEAsltWKyuEKGEfPOU6IA/slOtvtDbviXVkHm8122T2VLKPa1+K+Lfgkaosf/X0
u31ASkCKMgqQXmGEjPdRCLavYpUzWKtkBy9wtPrY4RcX3TJ0jBFtoAEt0LZwv4/Z
Bq/odn3pxTG8yyyxdgzsuysLivs2PpCt5jK0gMC8+Iwcw7cN6DjFOR6HE5c1JjG8
3cxNRXfkGS12YfGi2q6d3kNdQlAz/yv8M2aCqOkmMPMAr5hQkSXDiKoGdUcBLKH1
Y2VawN4wMq/CHwTuOHW7xeGSg+H1JrPlWFy9eyeInW5vfBQvoD9VG3pWbveIGvc1
e9Q4p2sDWuUimIxc2If42jG8jQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:15 2024 by rpki-client on console-fra.rpki-client.org