Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/sH6r8lnQ_K00L2XFI0MobAp-1UY.roa
File: sH6r8lnQ_K00L2XFI0MobAp-1UY.roa (raw, json)
Hash identifier: 4DZxsglW8KHYy/pL/IfhdlYitGnPJe0wDUL+HmfNdYw=
Subject key identifier: B0:7E:AB:F2:59:D0:FC:AD:34:2F:65:C5:23:43:28:6C:0A:7E:D5:46
Certificate issuer: /CN=74ae941a681c1586379e07247dcc19f3f41035d8
Certificate serial: 37EB
Authority key identifier: 74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/sH6r8lnQ_K00L2XFI0MobAp-1UY.roa
Signing time: Wed 23 Feb 2022 07:44:35 +0000
ROA not before: Wed 23 Feb 2022 07:44:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49552
IP address blocks: 91.213.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14315 (0x37eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae941a681c1586379e07247dcc19f3f41035d8
Validity
Not Before: Feb 23 07:44:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b07eabf259d0fcad342f65c52343286c0a7ed546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:93:79:3a:f5:c3:0d:54:26:56:af:88:7e:72:
4e:80:11:a8:d4:62:19:04:ce:87:f4:03:06:13:54:
94:ac:14:e0:bb:7f:11:94:a0:48:3a:92:b3:7f:66:
31:44:58:4f:d5:3a:7e:bc:cc:78:c2:fb:76:60:47:
62:2c:f5:28:93:a5:89:7d:a2:6b:1e:fe:7a:5e:08:
26:d3:43:aa:d7:75:7d:78:72:06:15:da:f0:5c:43:
49:1a:4e:8d:7c:91:2a:8a:41:77:c5:eb:54:0d:95:
16:4c:d4:c8:47:1d:e1:ba:91:01:f1:a2:a9:04:0c:
61:d4:af:27:01:80:e2:5f:32:5d:1b:5c:91:a8:a0:
e1:60:a6:d2:78:03:e4:15:e6:5e:4b:44:0f:b9:a9:
0f:6b:20:11:03:b6:f7:46:6e:90:23:38:d0:13:7a:
01:e6:a8:a8:84:d7:6d:f2:b4:62:b3:b7:9a:d6:f4:
3a:35:b9:1a:3e:92:02:2e:63:5d:f8:cd:c4:0c:c2:
a2:b6:a9:6e:0b:5a:af:bb:56:71:9b:b0:98:bb:4f:
16:74:8a:d5:d5:23:9d:32:9d:44:75:1b:c1:0b:e2:
a0:87:f1:20:57:2a:32:01:04:77:04:ad:65:0f:ba:
f6:50:70:64:df:00:eb:42:38:3a:87:d5:fa:7a:84:
3d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:7E:AB:F2:59:D0:FC:AD:34:2F:65:C5:23:43:28:6C:0A:7E:D5:46
X509v3 Authority Key Identifier:
keyid:74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/sH6r8lnQ_K00L2XFI0MobAp-1UY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.36.0/24
Signature Algorithm: sha256WithRSAEncryption
76:56:6c:41:19:e8:63:53:6e:c6:2f:37:31:6d:6e:96:27:71:
73:29:0a:2e:fc:4b:ac:b4:4d:9d:6d:9e:e3:fa:e5:d9:30:6b:
59:8a:50:47:6c:d5:0a:db:db:50:cc:a1:30:b9:78:f8:f6:5a:
41:93:ac:2c:e2:00:d2:bf:d3:5d:eb:62:cb:ad:10:c0:65:bc:
07:29:55:5e:a9:88:bd:cd:04:58:d6:a7:70:04:f6:15:d3:46:
80:86:01:4a:db:49:3c:62:4e:86:96:f9:2e:4e:5f:40:14:31:
c8:88:e5:cc:d4:87:fa:3d:ec:91:7b:cb:36:4e:61:1d:50:68:
e6:bd:bd:88:bc:bc:72:a8:80:9b:99:56:e7:79:b4:aa:f1:0a:
fd:90:cb:a1:5f:d5:fa:22:52:b6:84:c9:2c:ce:f6:5f:a8:07:
20:4f:31:d1:e2:e5:bc:2a:9d:cd:fc:5f:27:0b:9c:fa:d9:af:
a5:b1:55:96:f8:32:55:4c:a7:be:63:42:c4:74:5c:52:8b:4f:
70:29:81:8d:e9:c9:a7:bc:13:43:a8:e8:2a:22:9d:c3:cd:6e:
bb:fe:26:f2:93:71:a0:a9:9d:90:2e:59:0f:d2:fc:6e:15:67:
96:5d:4d:53:1f:55:4b:b9:a3:82:bd:19:2c:fd:50:35:08:72:
c4:96:5f:34
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICN+swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRh
ZTk0MWE2ODFjMTU4NjM3OWUwNzI0N2RjYzE5ZjNmNDEwMzVkODAeFw0yMjAyMjMw
NzQ0MzVaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKGIwN2VhYmYyNTlkMGZj
YWQzNDJmNjVjNTIzNDMyODZjMGE3ZWQ1NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDOk3k69cMNVCZWr4h+ck6AEajUYhkEzof0AwYTVJSsFOC7fxGU
oEg6krN/ZjFEWE/VOn68zHjC+3ZgR2Is9SiTpYl9omse/npeCCbTQ6rXdX14cgYV
2vBcQ0kaTo18kSqKQXfF61QNlRZM1MhHHeG6kQHxoqkEDGHUrycBgOJfMl0bXJGo
oOFgptJ4A+QV5l5LRA+5qQ9rIBEDtvdGbpAjONATegHmqKiE123ytGKzt5rW9Do1
uRo+kgIuY134zcQMwqK2qW4LWq+7VnGbsJi7TxZ0itXVI50ynUR1G8EL4qCH8SBX
KjIBBHcErWUPuvZQcGTfAOtCODqH1fp6hD3RAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUsH6r8lnQ/K00L2XFI0MobAp+1UYwHwYDVR0jBBgwFoAUdK6UGmgcFYY3ngck
fcwZ8/QQNdgwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9k
SzZVR21nY0ZZWTNuZ2NrZmN3WjhfUVFOZGcuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxULzRiLzE0ZTRjMi04YTk4LTQ1NmUtOTYxMi05NDI5ZGE4N2JkNTAvMS9z
SDZyOGxuUV9LMDBMMlhGSTBNb2JBcC0xVVkucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRiLzE0
ZTRjMi04YTk4LTQ1NmUtOTYxMi05NDI5ZGE4N2JkNTAvMS9kSzZVR21nY0ZZWTNu
Z2NrZmN3WjhfUVFOZGcuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABb1SQwDQYJKoZIhvcNAQELBQADggEB
AHZWbEEZ6GNTbsYvNzFtbpYncXMpCi78S6y0TZ1tnuP65dkwa1mKUEds1Qrb21DM
oTC5ePj2WkGTrCziANK/013rYsutEMBlvAcpVV6piL3NBFjWp3AE9hXTRoCGAUrb
STxiToaW+S5OX0AUMciI5czUh/o97JF7yzZOYR1QaOa9vYi8vHKogJuZVud5tKrx
Cv2Qy6Ff1foiUraEySzO9l+oByBPMdHi5bwqnc38XycLnPrZr6WxVZb4MlVMp75j
QsR0XFKLT3ApgY3pyae8E0Oo6CoincPNbrv+JvKTcaCpnZAuWQ/S/G4VZ5ZdTVMf
VUu5o4K9GSz9UDUIcsSWXzQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:19 2024 by rpki-client on console-fra.rpki-client.org