Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/xWtmIi39BCGTLYoxxAGNKLF8e-4.roa
File: xWtmIi39BCGTLYoxxAGNKLF8e-4.roa (raw, json)
Hash identifier: JYrbJlwsBV0vFnLgWrxdhLMuDEBzhRFS0EUm8iJygoY=
Subject key identifier: C5:6B:66:22:2D:FD:04:21:93:2D:8A:31:C4:01:8D:28:B1:7C:7B:EE
Certificate issuer: /CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Certificate serial: 04FCF35B
Authority key identifier: 53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/xWtmIi39BCGTLYoxxAGNKLF8e-4.roa
Signing time: Sat 01 Jan 2022 05:58:01 +0000
ROA not before: Sat 01 Jan 2022 05:58:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197202
IP address blocks: 91.223.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83686235 (0x4fcf35b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Validity
Not Before: Jan 1 05:58:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c56b66222dfd0421932d8a31c4018d28b17c7bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a3:65:f0:f3:ac:07:18:99:ca:f4:ee:02:0b:
13:0b:79:1f:2e:12:7b:ba:b3:d8:04:b0:6d:e5:5a:
2d:d5:93:09:91:a9:53:51:3a:9b:d0:2e:1e:f7:91:
60:34:4a:73:00:3f:57:cb:6a:ef:9f:53:26:c3:af:
0f:cc:43:75:5b:a0:74:27:58:67:3f:93:27:23:d1:
95:b2:fb:f8:aa:d0:34:bb:8d:20:10:99:6e:32:ac:
77:49:14:27:af:2a:c9:44:d3:4e:f0:65:95:8d:2d:
bb:f7:41:59:92:d9:13:5f:96:65:64:59:e9:e3:0c:
5a:01:94:6d:42:e4:6a:37:3c:8a:11:24:69:7f:ae:
59:9e:db:ec:c1:92:f5:da:b5:e9:f1:c1:c9:6a:b4:
90:42:6c:33:41:69:6a:a6:64:b2:ba:72:16:35:ff:
15:73:53:03:de:9e:07:78:5b:cd:14:25:c0:ec:e5:
fa:b6:f1:57:2c:b5:d1:1a:73:cd:1d:bb:ff:5e:3f:
95:bf:3c:0a:a3:38:a5:7b:eb:f3:bf:d7:b1:8f:eb:
67:ed:70:12:d8:5e:74:f9:e8:2f:3c:a8:0a:40:6c:
7a:00:a1:f0:be:0d:f6:57:38:73:f7:fd:82:d7:65:
12:02:11:5f:1d:91:b2:09:4c:39:2f:3d:c2:d3:b5:
64:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6B:66:22:2D:FD:04:21:93:2D:8A:31:C4:01:8D:28:B1:7C:7B:EE
X509v3 Authority Key Identifier:
keyid:53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/xWtmIi39BCGTLYoxxAGNKLF8e-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.79.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:77:2a:a8:3d:f6:75:8f:6c:54:47:3a:e7:15:f5:fc:b3:5b:
16:ab:d8:24:01:28:01:6b:79:95:7e:68:98:1e:69:f8:38:15:
2a:21:d0:80:02:8f:b0:79:b5:3c:a6:4e:12:6b:3f:90:09:ef:
b0:07:1d:bb:ce:4b:45:9b:bb:7a:53:5d:f0:7e:8d:47:77:a2:
90:a1:1b:ef:d9:75:4d:fa:87:c1:1b:e0:b6:30:86:66:be:c8:
a2:b3:59:a7:56:62:c0:02:b7:eb:81:e8:10:0d:41:e2:2a:43:
1a:16:3e:14:6d:0c:0a:a7:93:9c:c9:ff:4a:70:21:50:0d:10:
43:34:d4:0a:ce:28:5f:14:99:de:2c:68:59:b0:ed:e6:87:f6:
63:48:02:28:a6:37:1d:db:83:27:aa:8b:58:30:7f:30:4f:07:
83:40:19:3c:52:bd:70:4e:1b:2b:aa:f8:6b:42:39:ed:0b:15:
23:b6:5f:c6:51:d4:2f:32:37:8e:56:36:3f:c5:ea:7c:82:75:
55:ba:be:d3:85:94:de:d2:0a:b4:04:5e:ce:63:b3:ad:32:af:
08:03:5a:3a:aa:71:d5:a1:f8:30:4d:e5:9d:71:f4:7b:56:e6:
ce:c6:c8:5c:9d:c7:d8:72:c1:2f:22:a2:7a:ff:80:3d:9a:9b:
f2:51:5a:7a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBPzzWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MzI5NmVlMzMxNTNlZjZlNjkzOGQ1N2EyYTEzMmMxZTUyNmRjNDMwMB4XDTIyMDEw
MTA1NTgwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzU2YjY2MjIyZGZk
MDQyMTkzMmQ4YTMxYzQwMThkMjhiMTdjN2JlZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ2jZfDzrAcYmcr07gILEwt5Hy4Se7qz2ASwbeVaLdWTCZGp
U1E6m9AuHveRYDRKcwA/V8tq759TJsOvD8xDdVugdCdYZz+TJyPRlbL7+KrQNLuN
IBCZbjKsd0kUJ68qyUTTTvBllY0tu/dBWZLZE1+WZWRZ6eMMWgGUbULkajc8ihEk
aX+uWZ7b7MGS9dq16fHByWq0kEJsM0FpaqZksrpyFjX/FXNTA96eB3hbzRQlwOzl
+rbxVyy10RpzzR27/14/lb88CqM4pXvr87/XsY/rZ+1wEthedPnoLzyoCkBsegCh
8L4N9lc4c/f9gtdlEgIRXx2RsglMOS89wtO1ZPMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTFa2YiLf0EIZMtijHEAY0osXx77jAfBgNVHSMEGDAWgBRTKW7jMVPvbmk4
1XoqEyweUm3EMDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1V5bHU0ekZUNzI1cE9OVjZLaE1zSGxKdHhEQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTIvZjhiMzgxLTY5MmEtNDgzMC04ZDdkLTIxYmY3MDhmM2NhZC8x
L3hXdG1JaTM5QkNHVExZb3h4QUdOS0xGOGUtNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIv
ZjhiMzgxLTY5MmEtNDgzMC04ZDdkLTIxYmY3MDhmM2NhZC8xL1V5bHU0ekZUNzI1
cE9OVjZLaE1zSGxKdHhEQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvfTzANBgkqhkiG9w0BAQsFAAOC
AQEAfncqqD32dY9sVEc65xX1/LNbFqvYJAEoAWt5lX5omB5p+DgVKiHQgAKPsHm1
PKZOEms/kAnvsAcdu85LRZu7elNd8H6NR3eikKEb79l1TfqHwRvgtjCGZr7IorNZ
p1ZiwAK364HoEA1B4ipDGhY+FG0MCqeTnMn/SnAhUA0QQzTUCs4oXxSZ3ixoWbDt
5of2Y0gCKKY3HduDJ6qLWDB/ME8Hg0AZPFK9cE4bK6r4a0I57QsVI7ZfxlHULzI3
jlY2P8XqfIJ1Vbq+04WU3tIKtARezmOzrTKvCANaOqpx1aH4ME3lnXH0e1bmzsbI
XJ3H2HLBLyKiev+APZqb8lFaeg==
-----END CERTIFICATE-----
Generated at Thu Mar 13 20:18:27 2025 by rpki-client