Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/H6XuWAVZTlUNo6-PsoKcxjgBaT8.roa
File: H6XuWAVZTlUNo6-PsoKcxjgBaT8.roa (raw, json)
Hash identifier: LRRNfEK7ssaOixJ2uY7WuoE8A9bVbBFcxH6yUfXK55Q=
Subject key identifier: 1F:A5:EE:58:05:59:4E:55:0D:A3:AF:8F:B2:82:9C:C6:38:01:69:3F
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 0182465EF0183509A80247573D3DC3375F33
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/H6XuWAVZTlUNo6-PsoKcxjgBaT8.roa
Signing time: Thu 28 Jul 2022 19:53:23 +0000
ROA not before: Thu 28 Jul 2022 19:53:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 91.199.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:46:5e:f0:18:35:09:a8:02:47:57:3d:3d:c3:37:5f:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Jul 28 19:53:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fa5ee5805594e550da3af8fb2829cc63801693f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:82:5f:16:3f:be:6f:f1:6a:8c:81:d1:f4:0b:
44:93:e2:4b:a4:d0:fc:fd:96:77:8c:f6:1d:1c:bd:
8f:a9:be:b5:57:75:4f:7f:7f:b1:79:97:bb:0b:73:
07:1d:55:f7:6e:6a:a8:77:b2:4a:2e:09:fa:a9:ec:
b8:ab:d9:fe:42:63:bb:b3:1d:aa:1e:6b:13:5a:71:
90:f5:2a:b1:ca:6f:75:83:bd:49:96:e0:25:86:ca:
b5:c0:cd:d7:43:5c:9b:5e:40:aa:61:8d:b5:bd:34:
55:1a:90:af:66:d4:66:40:43:67:f1:96:84:a0:a0:
04:cc:3f:c8:46:01:bb:eb:fa:98:9d:a5:6b:41:18:
e4:79:45:f5:cc:44:1a:16:74:33:9a:a0:c8:91:f8:
d9:2c:ca:f0:6f:89:b1:91:75:d7:7e:49:65:87:16:
11:57:cc:e2:63:d2:c5:33:44:19:dd:41:f7:3c:8c:
c9:a3:3b:9d:ed:e5:6a:a7:d8:7a:18:57:c4:62:d1:
52:b9:a1:34:54:e3:45:88:77:f9:26:6e:6c:70:44:
2b:a0:64:20:0e:df:46:81:73:c4:89:2e:5f:18:c8:
a0:16:92:45:ba:2f:f9:a1:15:17:89:10:e7:7a:72:
15:a2:ea:08:f3:21:40:ce:34:12:48:f8:85:e0:1c:
d6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A5:EE:58:05:59:4E:55:0D:A3:AF:8F:B2:82:9C:C6:38:01:69:3F
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/H6XuWAVZTlUNo6-PsoKcxjgBaT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.47.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:89:d4:bd:da:12:52:fa:08:97:54:77:97:fe:58:f3:11:59:
59:6d:38:91:6c:e1:e7:a7:f6:63:ba:f9:b5:53:60:83:b9:29:
29:0f:e5:01:47:bb:ef:f3:3a:b8:83:38:91:ad:d3:e2:64:86:
3d:d9:38:d7:8f:71:58:65:32:1c:ec:34:ff:39:25:78:0c:87:
ea:a1:02:b5:d6:0b:8d:91:c4:5a:f7:06:83:ab:85:c7:bb:b8:
3e:b5:38:33:f8:c5:21:78:6b:ed:88:74:04:ff:13:d7:cc:e8:
2c:90:ec:19:fa:07:b6:9c:c7:ef:8c:06:4b:a6:58:c9:ea:a1:
a8:2a:0d:2e:4d:71:86:46:60:b0:5c:24:d8:92:15:79:ba:ac:
11:51:b7:5d:4e:47:72:69:ca:8d:58:61:5d:7f:78:dc:a5:ab:
51:99:82:f8:26:7a:b4:f4:58:79:68:f0:d9:20:ce:70:97:7a:
53:96:f8:a7:3f:aa:4c:94:62:99:bd:e2:d4:42:b5:f0:d1:3b:
e7:a9:67:e5:0c:c9:8f:23:aa:ff:b3:8e:4b:69:38:e8:87:96:
a7:70:06:3e:4f:4e:7e:0f:6c:bb:0a:e5:cd:0d:aa:d9:27:8e:
75:3f:71:ce:04:f1:33:29:65:58:f5:7f:78:9e:24:1f:2d:b8:
a6:a6:3d:94
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJGXvAYNQmoAkdXPT3DN18zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZjIzMTM2NTk4NTgyOGQ1YTk2NjNlZDFiNDQwNjI0YjI0
ZmVjMTMwHhcNMjIwNzI4MTk1MzIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZmE1ZWU1ODA1NTk0ZTU1MGRhM2FmOGZiMjgyOWNjNjM4MDE2OTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgYJfFj++b/FqjIHR9AtEk+JLpND8
/ZZ3jPYdHL2Pqb61V3VPf3+xeZe7C3MHHVX3bmqod7JKLgn6qey4q9n+QmO7sx2q
HmsTWnGQ9Sqxym91g71JluAlhsq1wM3XQ1ybXkCqYY21vTRVGpCvZtRmQENn8ZaE
oKAEzD/IRgG76/qYnaVrQRjkeUX1zEQaFnQzmqDIkfjZLMrwb4mxkXXXfkllhxYR
V8ziY9LFM0QZ3UH3PIzJozud7eVqp9h6GFfEYtFSuaE0VONFiHf5Jm5scEQroGQg
Dt9GgXPEiS5fGMigFpJFui/5oRUXiRDnenIVouoI8yFAzjQSSPiF4BzWkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB+l7lgFWU5VDaOvj7KCnMY4AWk/MB8GA1UdIwQY
MBaAFAfyMTZZhYKNWpZj7RtEBiSyT+wTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQl9JeE5sbUZnbzFhbG1QdEcwUUdKTEpQN0JNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lZjVmYjMtM2U1Ni00Yjc3LWFhYzct
MDg1ZmEwYTU2MDUyLzEvSDZYdVdBVlpUbFVObzYtUHNvS2N4amdCYVQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9lZjVmYjMtM2U1Ni00Yjc3LWFhYzctMDg1ZmEwYTU2MDUy
LzEvQl9JeE5sbUZnbzFhbG1QdEcwUUdKTEpQN0JNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8cvMA0G
CSqGSIb3DQEBCwUAA4IBAQCzidS92hJS+giXVHeX/ljzEVlZbTiRbOHnp/Zjuvm1
U2CDuSkpD+UBR7vv8zq4gziRrdPiZIY92TjXj3FYZTIc7DT/OSV4DIfqoQK11guN
kcRa9waDq4XHu7g+tTgz+MUheGvtiHQE/xPXzOgskOwZ+ge2nMfvjAZLpljJ6qGo
Kg0uTXGGRmCwXCTYkhV5uqwRUbddTkdyacqNWGFdf3jcpatRmYL4Jnq09Fh5aPDZ
IM5wl3pTlvinP6pMlGKZveLUQrXw0TvnqWflDMmPI6r/s45LaTjoh5ancAY+T05+
D2y7CuXNDarZJ451P3HOBPEzKWVY9X94niQfLbimpj2U
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-fra.rpki-client.org