Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/jbu9AamRRHFXYOBsJF9XCQ0yjqE.roa
File: jbu9AamRRHFXYOBsJF9XCQ0yjqE.roa (raw, json)
Hash identifier: CIiMb6uvwkWFsGwRJ3dc+BMRUgc+EX+tUfB3UsjSQE0=
Subject key identifier: 8D:BB:BD:01:A9:91:44:71:57:60:E0:6C:24:5F:57:09:0D:32:8E:A1
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01844DA5EBA8D899CF0AEB0664D61B600DE6
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/jbu9AamRRHFXYOBsJF9XCQ0yjqE.roa
Signing time: Sun 06 Nov 2022 15:53:50 +0000
ROA not before: Sun 06 Nov 2022 15:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212898
IP address blocks: 91.205.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:4d:a5:eb:a8:d8:99:cf:0a:eb:06:64:d6:1b:60:0d:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Nov 6 15:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dbbbd01a99144715760e06c245f57090d328ea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1b:be:29:00:15:80:29:d5:77:3b:0b:c4:cb:
d1:5d:98:76:67:56:3d:81:86:e9:3f:30:94:29:95:
3e:c6:15:b7:b9:bd:f6:a3:53:17:50:33:99:9a:d7:
de:99:f6:6d:48:bd:60:04:1d:e1:69:2f:ba:a5:e8:
b8:c0:e2:74:dc:9c:2b:53:8c:c5:42:bc:45:a7:9f:
50:0a:1a:84:a5:af:78:21:02:99:7b:c9:0c:28:d9:
a8:f1:1a:31:07:e1:61:91:49:e9:4f:1c:87:9a:61:
12:93:c2:d5:e8:55:ca:f1:db:a1:e7:f9:d0:39:e5:
28:4a:54:3f:a6:76:bf:0b:f6:56:4d:96:1a:f1:35:
eb:66:70:c5:f3:c8:0a:92:a2:4a:92:99:17:06:ca:
9f:10:74:f8:f6:98:21:64:8d:ae:e3:db:54:51:7c:
a2:ab:a7:2c:d7:75:64:9e:68:51:0d:c6:87:49:39:
92:6b:be:70:8b:b7:d9:97:e6:58:bf:7d:cd:ab:c1:
d5:83:5f:3f:47:a2:ea:6d:47:df:e8:d1:b0:6e:10:
6a:4b:57:f5:34:bb:05:52:96:65:77:11:cc:21:8e:
ba:22:43:82:08:76:ec:0e:70:0a:76:2c:c4:6b:18:
4f:b9:3b:96:b5:08:d6:34:55:db:cc:31:29:7a:f7:
bd:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:BB:BD:01:A9:91:44:71:57:60:E0:6C:24:5F:57:09:0D:32:8E:A1
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/jbu9AamRRHFXYOBsJF9XCQ0yjqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.199.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:28:ae:93:cf:7b:e6:74:48:35:6a:59:7b:0e:19:5f:48:e4:
76:37:45:26:cd:2f:98:67:93:d0:bc:95:6e:c9:d4:1c:83:78:
b6:a4:fa:c4:b5:9b:b0:45:5a:e7:48:8d:38:fa:c1:f7:0e:04:
a3:ea:99:2e:d4:1e:28:c7:c0:3d:04:e6:85:5e:3f:90:32:dd:
43:c1:5d:d3:8c:f7:50:c4:51:f9:f0:d0:14:fe:3c:e8:7b:36:
08:b1:48:05:1b:a4:2f:f7:d5:db:0a:c7:27:e7:4b:07:e9:b0:
9a:63:f0:4c:97:37:34:cd:a6:ed:3f:42:56:5f:ee:44:f3:39:
93:a2:8f:78:8d:23:e7:27:7c:45:91:a6:e9:e0:61:08:b9:bb:
41:a9:dc:b7:4b:4f:d3:b9:22:05:60:17:86:86:b6:7c:ff:c5:
b0:be:f0:48:07:96:9e:ed:87:a8:6f:06:48:0a:0a:8a:38:6b:
0b:f8:ff:ca:1d:12:8f:f5:74:4c:80:14:1c:ef:14:bf:84:29:
fd:14:fb:68:7f:f7:5b:b4:04:93:d7:10:2b:ea:82:48:a4:c0:
14:d9:8e:1b:e3:94:d8:7f:ce:f7:2d:aa:09:8f:07:67:3e:1f:
30:bd:44:e2:da:75:b7:ec:75:6f:ef:ec:95:90:7f:8c:67:35:
70:c6:38:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRNpeuo2JnPCusGZNYbYA3mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZThmNGVkNWRkMDYzMDFjNDIzOTg4ZTc4NmRhYmY1MWM1
ZjU2NzQwHhcNMjIxMTA2MTU1MzUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZGJiYmQwMWE5OTE0NDcxNTc2MGUwNmMyNDVmNTcwOTBkMzI4ZWExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhu+KQAVgCnVdzsLxMvRXZh2Z1Y9
gYbpPzCUKZU+xhW3ub32o1MXUDOZmtfemfZtSL1gBB3haS+6pei4wOJ03JwrU4zF
QrxFp59QChqEpa94IQKZe8kMKNmo8RoxB+FhkUnpTxyHmmESk8LV6FXK8duh5/nQ
OeUoSlQ/pna/C/ZWTZYa8TXrZnDF88gKkqJKkpkXBsqfEHT49pghZI2u49tUUXyi
q6cs13VknmhRDcaHSTmSa75wi7fZl+ZYv33Nq8HVg18/R6LqbUff6NGwbhBqS1f1
NLsFUpZldxHMIY66IkOCCHbsDnAKdizEaxhPuTuWtQjWNFXbzDEpeve9YQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI27vQGpkURxV2DgbCRfVwkNMo6hMB8GA1UdIwQY
MBaAFJPo9O1d0GMBxCOYjnhtq/UcX1Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQt
MWZjMTllYTczYTJhLzEvamJ1OUFhbVJSSEZYWU9Cc0pGOVhDUTB5anFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQtMWZjMTllYTczYTJh
LzEvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW83HMA0G
CSqGSIb3DQEBCwUAA4IBAQCaKK6Tz3vmdEg1all7DhlfSOR2N0UmzS+YZ5PQvJVu
ydQcg3i2pPrEtZuwRVrnSI04+sH3DgSj6pku1B4ox8A9BOaFXj+QMt1DwV3TjPdQ
xFH58NAU/jzoezYIsUgFG6Qv99XbCscn50sH6bCaY/BMlzc0zabtP0JWX+5E8zmT
oo94jSPnJ3xFkabp4GEIubtBqdy3S0/TuSIFYBeGhrZ8/8WwvvBIB5ae7YeobwZI
CgqKOGsL+P/KHRKP9XRMgBQc7xS/hCn9FPtof/dbtAST1xAr6oJIpMAU2Y4b45TY
f873LaoJjwdnPh8wvUTi2nW37HVv7+yVkH+MZzVwxjgJ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org