Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/h89Bfb1J5z5GJZRPGBrMoTg9l-s.roa
File: h89Bfb1J5z5GJZRPGBrMoTg9l-s.roa (raw, json)
Hash identifier: M1XERhzfy/KfOoYdCDizzYmhsgatfJGL2DXVAg6z+oM=
Subject key identifier: 87:CF:41:7D:BD:49:E7:3E:46:25:94:4F:18:1A:CC:A1:38:3D:97:EB
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 03BEB1B2
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/h89Bfb1J5z5GJZRPGBrMoTg9l-s.roa
Signing time: Sat 01 Jan 2022 14:05:06 +0000
ROA not before: Sat 01 Jan 2022 14:05:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61179
IP address blocks: 91.250.250.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62828978 (0x3beb1b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Jan 1 14:05:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87cf417dbd49e73e4625944f181acca1383d97eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:13:f2:ab:6a:0b:75:1f:78:fd:1d:88:b1:dd:
07:3f:dc:ce:03:3f:27:f0:74:76:d9:7f:01:0f:ea:
5e:35:5a:8b:82:26:48:59:a8:52:f0:39:95:67:73:
cf:f3:33:7e:99:00:21:3a:b0:f2:84:b2:86:22:7c:
e2:5e:4e:18:45:0f:9e:b7:97:d0:3a:3a:7e:3f:ed:
91:d1:c6:b9:31:58:8b:23:09:0e:99:08:d2:ef:10:
c9:be:f8:8d:a3:11:cc:41:ca:8a:fb:cc:df:ee:71:
b3:22:dc:7e:c6:3b:85:90:54:f9:9e:9d:b2:dd:71:
57:e5:45:a7:a4:c2:96:a3:e6:37:6d:3f:47:0c:73:
5e:7d:e0:d0:50:5e:75:7a:bb:64:b4:6b:b2:ba:f7:
08:e8:c7:04:69:f4:66:8d:88:47:f0:3f:5f:a8:6e:
ef:78:57:8a:1a:e9:2a:03:1e:fc:cb:cf:93:eb:18:
ff:9b:49:8e:f9:0f:3d:38:2b:4e:82:46:c1:6c:0b:
45:a6:2f:c4:7c:c0:8f:e4:32:c2:a4:01:54:80:c3:
ed:f9:6f:78:a2:b7:a1:64:82:6c:d1:04:4c:11:87:
4c:00:9f:12:49:c6:b5:66:da:9c:ba:ed:c3:ce:0b:
08:c7:7e:c1:78:f3:05:4c:db:ee:45:4b:70:86:a9:
fc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CF:41:7D:BD:49:E7:3E:46:25:94:4F:18:1A:CC:A1:38:3D:97:EB
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/h89Bfb1J5z5GJZRPGBrMoTg9l-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.250.250.0/23
Signature Algorithm: sha256WithRSAEncryption
96:91:4a:cc:6c:44:00:25:8d:e9:44:36:35:88:a6:b4:6f:ba:
1d:fb:e7:c2:81:51:13:59:d2:d6:b2:2e:40:07:5c:f5:03:c1:
cd:d0:c2:35:43:33:e4:c6:fc:83:83:04:fa:58:8a:0a:cb:36:
0e:c9:59:37:d0:08:fb:35:bd:0b:09:eb:d7:c8:5e:46:79:25:
f4:46:5a:3a:93:fd:76:59:46:47:b6:db:f8:2b:46:e9:ae:f4:
05:7d:99:c4:cc:50:d9:ec:e3:37:10:24:bf:43:91:4a:70:5f:
f7:10:8e:3f:78:f0:d7:4b:a2:86:b9:ce:49:f1:56:fa:e7:23:
9c:1d:63:1f:67:aa:f1:63:bd:6e:5b:36:26:c8:dd:a3:46:69:
22:07:32:e3:19:8b:a4:c7:66:6f:52:0e:8d:35:72:da:8f:ae:
ef:79:e0:fb:35:62:d8:1f:82:5c:58:95:a4:9c:02:87:6e:d1:
83:23:fb:3d:dd:10:23:a4:33:ea:a3:1c:52:7e:fa:cf:33:ed:
4b:9a:cd:a0:a1:34:ed:23:22:e6:c6:ff:a1:6f:aa:25:fd:13:
78:d8:35:79:93:9d:cf:b3:2b:a0:f1:76:da:94:3e:3a:17:9c:
70:51:49:2e:d2:ae:44:3e:cb:57:ba:b7:01:78:19:d4:74:a6:
99:1d:01:56
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA76xsjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YjhjNmM1OGI2MDdmZjIzYWU3MTc1YTYxNjgyYzc1NDgwZjFlMjE0MB4XDTIyMDEw
MTE0MDUwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODdjZjQxN2RiZDQ5
ZTczZTQ2MjU5NDRmMTgxYWNjYTEzODNkOTdlYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPYT8qtqC3UfeP0diLHdBz/czgM/J/B0dtl/AQ/qXjVai4Im
SFmoUvA5lWdzz/MzfpkAITqw8oSyhiJ84l5OGEUPnreX0Do6fj/tkdHGuTFYiyMJ
DpkI0u8Qyb74jaMRzEHKivvM3+5xsyLcfsY7hZBU+Z6dst1xV+VFp6TClqPmN20/
RwxzXn3g0FBedXq7ZLRrsrr3COjHBGn0Zo2IR/A/X6hu73hXihrpKgMe/MvPk+sY
/5tJjvkPPTgrToJGwWwLRaYvxHzAj+QywqQBVIDD7flveKK3oWSCbNEETBGHTACf
EknGtWbanLrtw84LCMd+wXjzBUzb7kVLcIap/MECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSHz0F9vUnnPkYllE8YGsyhOD2X6zAfBgNVHSMEGDAWgBSrjGxYtgf/I65x
daYWgsdUgPHiFDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3E0eHNXTFlIX3lPdWNYV21Gb0xIVklEeDRoUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTYvZWZiOGVlLWM1YzQtNDQ2Ny1hMGNjLTg4YTNjNDFmYWVlMi8x
L2g4OUJmYjFKNXo1R0paUlBHQnJNb1RnOWwtcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTYv
ZWZiOGVlLWM1YzQtNDQ2Ny1hMGNjLTg4YTNjNDFmYWVlMi8xL3E0eHNXTFlIX3lP
dWNYV21Gb0xIVklEeDRoUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVv6+jANBgkqhkiG9w0BAQsFAAOC
AQEAlpFKzGxEACWN6UQ2NYimtG+6HfvnwoFRE1nS1rIuQAdc9QPBzdDCNUMz5Mb8
g4ME+liKCss2DslZN9AI+zW9Cwnr18heRnkl9EZaOpP9dllGR7bb+CtG6a70BX2Z
xMxQ2ezjNxAkv0ORSnBf9xCOP3jw10uihrnOSfFW+ucjnB1jH2eq8WO9bls2Jsjd
o0ZpIgcy4xmLpMdmb1IOjTVy2o+u73ng+zVi2B+CXFiVpJwCh27RgyP7Pd0QI6Qz
6qMcUn76zzPtS5rNoKE07SMi5sb/oW+qJf0TeNg1eZOdz7MroPF22pQ+OheccFFJ
LtKuRD7LV7q3AXgZ1HSmmR0BVg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:23 2024 by rpki-client on console-fra.rpki-client.org