Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/IhcC9D6fj-AvH0IENau0l1KgG04.roa
File: IhcC9D6fj-AvH0IENau0l1KgG04.roa (raw, json)
Hash identifier: PNEF4FNzPI5B0VXedc4U2BV2oznAyNR8RUt99fHfVRM=
Subject key identifier: 22:17:02:F4:3E:9F:8F:E0:2F:1F:42:04:35:AB:B4:97:52:A0:1B:4E
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01845675C6F5F354093DDB31FD78855E3DA8
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/IhcC9D6fj-AvH0IENau0l1KgG04.roa
Signing time: Tue 08 Nov 2022 08:57:50 +0000
ROA not before: Tue 08 Nov 2022 08:57:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39344
IP address blocks: 91.205.196.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:56:75:c6:f5:f3:54:09:3d:db:31:fd:78:85:5e:3d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Nov 8 08:57:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=221702f43e9f8fe02f1f420435abb49752a01b4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ef:e5:b8:61:c5:1a:47:87:c8:2a:98:b6:cf:
43:85:96:e1:40:69:e1:b1:fc:1e:66:73:99:b9:27:
0a:fb:40:1d:cd:5a:04:4f:26:07:05:aa:80:4c:e7:
fa:8a:33:ea:bf:d1:d3:66:34:52:03:8a:9f:3c:77:
76:70:4a:1c:c3:d3:2c:59:21:5e:0a:b4:da:aa:53:
5b:ae:f0:e3:c9:48:ae:42:73:e2:38:cb:68:38:8b:
21:a2:de:7a:fb:a5:1e:37:54:bc:27:c9:98:16:b2:
25:80:d8:c9:ad:a6:40:36:4b:23:19:5f:b0:1e:db:
b8:9f:53:61:7f:6c:66:0d:3a:29:20:03:d6:50:c8:
08:6c:f7:14:16:05:43:9f:78:0a:70:c7:53:68:f0:
9b:d1:6a:eb:23:1d:ac:d1:de:20:05:73:02:98:03:
f6:54:e9:2a:73:cb:dd:66:52:6e:d4:fa:0a:48:42:
3a:97:01:d2:f1:8d:57:5e:2f:94:fc:92:b7:09:f7:
7b:00:94:c2:26:d9:92:a9:3b:34:bc:a4:4b:f6:b3:
4b:41:73:dd:bf:00:01:79:49:bd:a4:95:89:64:45:
4c:50:90:62:21:89:cf:e0:64:82:ce:10:fb:bc:dd:
79:7b:77:9a:c8:5e:54:af:8c:ed:4c:96:35:f4:b8:
63:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:17:02:F4:3E:9F:8F:E0:2F:1F:42:04:35:AB:B4:97:52:A0:1B:4E
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/IhcC9D6fj-AvH0IENau0l1KgG04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.196.0/23
Signature Algorithm: sha256WithRSAEncryption
16:62:06:c3:b9:a4:68:5f:63:a6:f5:e4:54:45:40:9c:93:5f:
b2:3a:24:55:a4:52:1c:3d:f6:f6:8c:db:f9:7d:9a:d4:58:78:
fd:9f:f8:bb:a8:dd:56:5f:80:2e:44:96:16:60:c3:99:d6:5f:
3a:2a:07:04:56:13:ae:b4:8f:92:2b:b4:9f:0b:61:3c:b8:28:
fe:50:db:b2:64:74:02:17:7d:b0:07:55:8a:45:11:fd:a3:d8:
21:a0:d2:8d:4a:71:7c:ee:c2:f1:fc:0f:a5:fd:2f:75:cb:bf:
74:88:c3:1e:7f:17:3a:50:3f:a6:eb:81:83:30:66:2b:0b:dd:
94:03:2a:e7:57:09:be:8d:6c:53:c3:20:ce:2f:80:20:02:b4:
42:cb:8f:a1:21:7c:53:33:33:47:25:2b:26:34:ef:45:9a:b3:
c1:19:37:d9:45:33:9f:d6:1e:09:14:94:f0:f9:fa:6e:2f:22:
82:d5:e3:11:dc:22:07:22:97:3f:91:b5:32:f7:d9:6d:3e:1b:
14:05:34:44:5f:b3:b1:61:5b:28:b1:54:dc:d2:a6:48:10:46:
65:80:06:8d:a3:44:2e:12:66:16:de:83:2d:87:37:61:aa:e8:
46:3e:0f:12:db:cd:18:95:78:61:7d:dd:6e:bc:05:f2:82:6c:
d2:d0:40:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRWdcb181QJPdsx/XiFXj2oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZThmNGVkNWRkMDYzMDFjNDIzOTg4ZTc4NmRhYmY1MWM1
ZjU2NzQwHhcNMjIxMTA4MDg1NzUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjE3MDJmNDNlOWY4ZmUwMmYxZjQyMDQzNWFiYjQ5NzUyYTAxYjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgO/luGHFGkeHyCqYts9DhZbhQGnh
sfweZnOZuScK+0AdzVoETyYHBaqATOf6ijPqv9HTZjRSA4qfPHd2cEocw9MsWSFe
CrTaqlNbrvDjyUiuQnPiOMtoOIshot56+6UeN1S8J8mYFrIlgNjJraZANksjGV+w
Htu4n1Nhf2xmDTopIAPWUMgIbPcUFgVDn3gKcMdTaPCb0WrrIx2s0d4gBXMCmAP2
VOkqc8vdZlJu1PoKSEI6lwHS8Y1XXi+U/JK3Cfd7AJTCJtmSqTs0vKRL9rNLQXPd
vwABeUm9pJWJZEVMUJBiIYnP4GSCzhD7vN15e3eayF5Ur4ztTJY19Lhj8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCIXAvQ+n4/gLx9CBDWrtJdSoBtOMB8GA1UdIwQY
MBaAFJPo9O1d0GMBxCOYjnhtq/UcX1Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQt
MWZjMTllYTczYTJhLzEvSWhjQzlENmZqLUF2SDBJRU5hdTBsMUtnRzA0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQtMWZjMTllYTczYTJh
LzEvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW83EMA0G
CSqGSIb3DQEBCwUAA4IBAQAWYgbDuaRoX2Om9eRURUCck1+yOiRVpFIcPfb2jNv5
fZrUWHj9n/i7qN1WX4AuRJYWYMOZ1l86KgcEVhOutI+SK7SfC2E8uCj+UNuyZHQC
F32wB1WKRRH9o9ghoNKNSnF87sLx/A+l/S91y790iMMefxc6UD+m64GDMGYrC92U
AyrnVwm+jWxTwyDOL4AgArRCy4+hIXxTMzNHJSsmNO9FmrPBGTfZRTOf1h4JFJTw
+fpuLyKC1eMR3CIHIpc/kbUy99ltPhsUBTREX7OxYVsosVTc0qZIEEZlgAaNo0Qu
EmYW3oMthzdhquhGPg8S280YlXhhfd1uvAXygmzS0EAm
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:23 2023 by rpki-client on console-ams.rpki-client.org