Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a9279-69f5-4a09-8cae-edb30b02b5ba/1/kDNubsaWW6WvknfxXRPWg4q842o.roa
File: kDNubsaWW6WvknfxXRPWg4q842o.roa (raw, json)
Hash identifier: 4XANF4iObhWCaFiTXogl0oeidc1hK5bnyHm/2nZNAZs=
Subject key identifier: 90:33:6E:6E:C6:96:5B:A5:AF:92:77:F1:5D:13:D6:83:8A:BC:E3:6A
Certificate issuer: /CN=7a924b8e5c90bab30ae58b3564ddaa17cdfb1085
Certificate serial: 0184AA10630602964A35A580029B558FC746
Authority key identifier: 7A:92:4B:8E:5C:90:BA:B3:0A:E5:8B:35:64:DD:AA:17:CD:FB:10:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/epJLjlyQurMK5Ys1ZN2qF837EIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a9279-69f5-4a09-8cae-edb30b02b5ba/1/kDNubsaWW6WvknfxXRPWg4q842o.roa
Signing time: Thu 24 Nov 2022 14:35:11 +0000
ROA not before: Thu 24 Nov 2022 14:35:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197604
IP address blocks: 91.230.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:10:63:06:02:96:4a:35:a5:80:02:9b:55:8f:c7:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a924b8e5c90bab30ae58b3564ddaa17cdfb1085
Validity
Not Before: Nov 24 14:35:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90336e6ec6965ba5af9277f15d13d6838abce36a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:69:09:56:3f:8d:aa:76:32:46:f4:4d:cb:9f:
9f:d3:1d:8f:e0:f6:bd:2f:46:fa:eb:8e:b5:16:e8:
d1:ed:86:de:ee:11:81:31:9a:1b:ee:7f:46:1a:fc:
eb:c6:78:f0:2f:d8:71:e2:33:aa:7a:8a:6b:90:e1:
d1:85:89:9e:5d:85:a9:fd:39:85:59:20:40:3d:c1:
05:11:da:18:7a:ab:5c:28:4e:54:4a:6d:2d:50:f0:
ce:ca:01:3c:6a:71:6f:0d:86:3b:2e:11:fd:ef:08:
f6:4f:e8:a5:b8:81:9e:e3:6b:2f:75:5d:b1:c6:6b:
ec:66:34:e9:8f:19:a8:ae:7d:27:0f:37:8a:c6:67:
6b:21:e7:99:3b:b2:8d:cd:17:df:b2:e6:be:57:ab:
71:8b:d6:07:d0:32:0b:05:78:ff:41:68:3a:de:4a:
f5:4e:ee:8c:2f:d8:5f:6e:f7:e3:90:90:9d:21:f8:
41:d0:5d:12:05:cb:25:11:33:e9:1a:7d:9f:ab:28:
b1:8e:6b:96:74:68:3b:dd:eb:52:de:79:7b:81:52:
5b:6c:df:f9:28:4e:ab:ee:66:e5:51:c8:b4:6d:a3:
ba:b9:d3:d8:18:3a:c1:bd:bd:81:15:85:63:c7:f4:
12:76:2d:ee:32:fb:7d:65:da:68:3e:87:40:b9:3f:
f8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:33:6E:6E:C6:96:5B:A5:AF:92:77:F1:5D:13:D6:83:8A:BC:E3:6A
X509v3 Authority Key Identifier:
keyid:7A:92:4B:8E:5C:90:BA:B3:0A:E5:8B:35:64:DD:AA:17:CD:FB:10:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/epJLjlyQurMK5Ys1ZN2qF837EIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a9279-69f5-4a09-8cae-edb30b02b5ba/1/kDNubsaWW6WvknfxXRPWg4q842o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a9279-69f5-4a09-8cae-edb30b02b5ba/1/epJLjlyQurMK5Ys1ZN2qF837EIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.230.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:d1:ab:54:60:00:9f:d1:20:87:c1:9a:2b:7d:65:29:c3:f3:
1a:8b:0b:a7:95:00:48:fc:f5:f0:06:4e:a9:46:4a:8a:d2:a7:
6d:b3:b8:f0:57:37:02:7d:7e:68:f6:17:85:90:89:62:13:6b:
71:31:b1:16:9a:7e:35:b5:bc:ce:ff:0d:13:a1:a6:8c:1c:e5:
4e:68:e0:f3:b6:51:98:d1:da:ca:d1:10:9b:2e:4f:36:f1:df:
dd:22:0c:a2:1d:0e:30:ea:fa:32:31:59:4e:3e:46:4b:ae:81:
95:b6:28:c9:da:a4:a2:60:c5:77:50:64:1d:ba:59:24:20:9f:
c7:ce:6c:08:40:32:2f:3d:52:fb:d5:a9:1d:45:de:f9:b9:4c:
38:7b:8f:c1:2e:9d:ef:36:46:e1:c3:03:7b:95:9d:d2:32:57:
ff:00:5a:6e:38:40:2d:e9:f2:8a:69:e8:ac:1c:22:54:dc:ce:
1e:aa:12:07:30:8d:56:bc:31:c7:d9:c6:ad:53:cf:37:c6:da:
e1:cc:92:01:83:83:11:57:bf:91:45:7d:21:7f:08:54:61:cf:
19:8f:9b:90:67:b5:5e:19:aa:36:d8:19:70:e6:2f:c3:de:c9:
00:7c:5c:c8:1d:96:65:dc:9b:1d:8a:e0:ea:e5:38:1e:64:28:
8f:62:f0:a8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSqEGMGApZKNaWAAptVj8dGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhOTI0YjhlNWM5MGJhYjMwYWU1OGIzNTY0ZGRhYTE3Y2Rm
YjEwODUwHhcNMjIxMTI0MTQzNTExWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDMzNmU2ZWM2OTY1YmE1YWY5Mjc3ZjE1ZDEzZDY4MzhhYmNlMzZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmkJVj+NqnYyRvRNy5+f0x2P4Pa9
L0b66461FujR7Ybe7hGBMZob7n9GGvzrxnjwL9hx4jOqeoprkOHRhYmeXYWp/TmF
WSBAPcEFEdoYeqtcKE5USm0tUPDOygE8anFvDYY7LhH97wj2T+iluIGe42svdV2x
xmvsZjTpjxmorn0nDzeKxmdrIeeZO7KNzRffsua+V6txi9YH0DILBXj/QWg63kr1
Tu6ML9hfbvfjkJCdIfhB0F0SBcslETPpGn2fqyixjmuWdGg73etS3nl7gVJbbN/5
KE6r7mblUci0baO6udPYGDrBvb2BFYVjx/QSdi3uMvt9ZdpoPodAuT/4RwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJAzbm7Gllulr5J38V0T1oOKvONqMB8GA1UdIwQY
MBaAFHqSS45ckLqzCuWLNWTdqhfN+xCFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXBKTGpseVF1ck1LNVlzMVpOMnFGODM3RUlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS83YTkyNzktNjlmNS00YTA5LThjYWUt
ZWRiMzBiMDJiNWJhLzEva0ROdWJzYVdXNld2a25meFhSUFdnNHE4NDJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS83YTkyNzktNjlmNS00YTA5LThjYWUtZWRiMzBiMDJiNWJh
LzEvZXBKTGpseVF1ck1LNVlzMVpOMnFGODM3RUlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+bmMA0G
CSqGSIb3DQEBCwUAA4IBAQA70atUYACf0SCHwZorfWUpw/MaiwunlQBI/PXwBk6p
RkqK0qdts7jwVzcCfX5o9heFkIliE2txMbEWmn41tbzO/w0ToaaMHOVOaODztlGY
0drK0RCbLk828d/dIgyiHQ4w6voyMVlOPkZLroGVtijJ2qSiYMV3UGQdulkkIJ/H
zmwIQDIvPVL71akdRd75uUw4e4/BLp3vNkbhwwN7lZ3SMlf/AFpuOEAt6fKKaeis
HCJU3M4eqhIHMI1WvDHH2catU883xtrhzJIBg4MRV7+RRX0hfwhUYc8Zj5uQZ7Ve
Gao22Blw5i/D3skAfFzIHZZl3JsdiuDq5TgeZCiPYvCo
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:17 2023 by rpki-client on console-ams.rpki-client.org