Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/Rws2jBqT4ZLVvvVlrgSlyiR39jY.roa
File: Rws2jBqT4ZLVvvVlrgSlyiR39jY.roa (raw, json)
Hash identifier: OJM/bchv8xkIfm5EPY3j6K8kuHBJzarisrhgPRaLeC4=
Subject key identifier: 47:0B:36:8C:1A:93:E1:92:D5:BE:F5:65:AE:04:A5:CA:24:77:F6:36
Certificate issuer: /CN=a5ae8a3d8bdaabf4765fda79d55eca8c69c8bf2c
Certificate serial: 6D5DC8
Authority key identifier: A5:AE:8A:3D:8B:DA:AB:F4:76:5F:DA:79:D5:5E:CA:8C:69:C8:BF:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pa6KPYvaq_R2X9p51V7KjGnIvyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/Rws2jBqT4ZLVvvVlrgSlyiR39jY.roa
Signing time: Sat 01 Jan 2022 03:00:58 +0000
ROA not before: Sat 01 Jan 2022 03:00:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 91.237.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7167432 (0x6d5dc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5ae8a3d8bdaabf4765fda79d55eca8c69c8bf2c
Validity
Not Before: Jan 1 03:00:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=470b368c1a93e192d5bef565ae04a5ca2477f636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:47:44:a8:bd:28:0f:09:e9:a1:10:0d:3e:91:
77:bd:5d:b0:2d:84:35:88:4a:69:6f:25:d0:7f:f4:
9d:5c:89:89:9a:93:70:3d:06:11:b5:d8:56:0c:70:
47:22:8b:84:74:2b:f7:0d:b3:c2:90:23:f2:51:ea:
0d:8e:f3:28:f4:4e:42:d4:47:04:95:d1:12:93:b2:
d7:dd:04:a1:bb:ea:5f:83:03:64:b2:6b:7d:ce:75:
6c:e0:28:3d:0c:9c:6d:ca:c7:f4:2f:19:e4:ca:5a:
9a:5c:92:d8:51:40:67:93:e5:4d:c1:75:20:e5:a9:
50:a6:00:f8:c2:ea:b9:56:52:d3:f3:fb:98:c2:c8:
f6:34:a8:c9:50:b8:23:75:f4:9c:8a:d6:99:7d:b4:
e6:82:3c:5c:9c:29:d2:b7:1b:d4:4f:36:33:93:ac:
04:d4:10:28:b4:93:63:bd:8b:be:4d:0f:dd:fa:11:
79:85:0f:81:15:db:ab:ae:80:1a:ab:20:d6:e0:58:
60:b2:ec:33:c0:e8:29:9e:71:4c:f7:15:7a:41:34:
c6:54:18:65:a7:4d:d8:88:93:03:06:3f:8e:ed:24:
2d:30:ef:ef:f3:de:cf:69:37:eb:98:b2:11:d5:c1:
58:29:2a:29:82:df:51:b3:5b:73:43:1a:3a:20:5b:
a6:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0B:36:8C:1A:93:E1:92:D5:BE:F5:65:AE:04:A5:CA:24:77:F6:36
X509v3 Authority Key Identifier:
keyid:A5:AE:8A:3D:8B:DA:AB:F4:76:5F:DA:79:D5:5E:CA:8C:69:C8:BF:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pa6KPYvaq_R2X9p51V7KjGnIvyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/Rws2jBqT4ZLVvvVlrgSlyiR39jY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/pa6KPYvaq_R2X9p51V7KjGnIvyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.175.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:3d:c4:2d:90:70:13:ba:ef:22:01:7f:36:75:63:97:26:8b:
3d:0e:a4:e8:04:74:43:19:f7:66:e4:df:c3:d3:ec:09:67:47:
75:71:d9:27:07:78:ac:d8:74:23:79:e7:18:82:65:95:c2:f9:
50:1d:33:16:e8:89:3c:e6:54:16:b5:98:50:b4:4a:8d:3b:aa:
57:a9:6d:7a:4e:e3:3a:d5:d6:6a:91:f3:27:ce:59:41:e0:af:
8d:58:59:a8:19:05:e0:74:92:e4:3e:89:ff:3e:56:7f:7c:b5:
31:07:93:e8:44:ee:52:55:3c:86:1d:5c:0a:48:02:74:26:a3:
ec:f2:50:42:6b:00:8a:60:01:55:34:e1:a9:03:02:8e:81:10:
be:ca:a9:fb:43:a5:9d:c9:51:86:29:90:c1:e3:ec:a5:b9:d8:
47:77:62:7e:01:66:dd:48:1d:ed:94:34:d0:ed:6e:25:17:92:
39:a3:24:83:f8:83:a7:f7:8b:1e:fd:48:4b:1b:bf:f3:25:e4:
8c:e3:b0:59:17:11:f7:cb:1e:5b:f5:a4:26:c5:65:de:5c:3e:
44:10:6a:db:21:17:83:3c:0b:ff:eb:53:1e:94:ea:41:71:e3:
54:76:b5:a2:52:24:ce:e5:e4:98:85:0a:61:d8:d2:2b:b4:0b:
d7:99:f9:72
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDbV3IMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE1
YWU4YTNkOGJkYWFiZjQ3NjVmZGE3OWQ1NWVjYThjNjljOGJmMmMwHhcNMjIwMTAx
MDMwMDU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg0NzBiMzY4YzFhOTNl
MTkyZDViZWY1NjVhZTA0YTVjYTI0NzdmNjM2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAh0dEqL0oDwnpoRANPpF3vV2wLYQ1iEppbyXQf/SdXImJmpNw
PQYRtdhWDHBHIouEdCv3DbPCkCPyUeoNjvMo9E5C1EcEldESk7LX3QShu+pfgwNk
smt9znVs4Cg9DJxtysf0LxnkylqaXJLYUUBnk+VNwXUg5alQpgD4wuq5VlLT8/uY
wsj2NKjJULgjdfScitaZfbTmgjxcnCnStxvUTzYzk6wE1BAotJNjvYu+TQ/d+hF5
hQ+BFdurroAaqyDW4FhgsuwzwOgpnnFM9xV6QTTGVBhlp03YiJMDBj+O7SQtMO/v
897PaTfrmLIR1cFYKSopgt9Rs1tzQxo6IFumNQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFEcLNowak+GS1b71Za4Epcokd/Y2MB8GA1UdIwQYMBaAFKWuij2L2qv0dl/a
edVeyoxpyL8sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cGE2S1BZdmFxX1IyWDlwNTFWN0tqR25Jdnl3LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC81Ny8wZDI4MGMtOWQ4OC00YWVhLWI1MjEtNDE2Zjg1ZWUyMzdiLzEv
UndzMmpCcVQ0WkxWdnZWbHJnU2x5aVIzOWpZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8w
ZDI4MGMtOWQ4OC00YWVhLWI1MjEtNDE2Zjg1ZWUyMzdiLzEvcGE2S1BZdmFxX1Iy
WDlwNTFWN0tqR25Jdnl3LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+2vMA0GCSqGSIb3DQEBCwUAA4IB
AQBdPcQtkHATuu8iAX82dWOXJos9DqToBHRDGfdm5N/D0+wJZ0d1cdknB3is2HQj
eecYgmWVwvlQHTMW6Ik85lQWtZhQtEqNO6pXqW16TuM61dZqkfMnzllB4K+NWFmo
GQXgdJLkPon/PlZ/fLUxB5PoRO5SVTyGHVwKSAJ0JqPs8lBCawCKYAFVNOGpAwKO
gRC+yqn7Q6WdyVGGKZDB4+yludhHd2J+AWbdSB3tlDTQ7W4lF5I5oySD+IOn94se
/UhLG7/zJeSM47BZFxH3yx5b9aQmxWXeXD5EEGrbIReDPAv/61MelOpBceNUdrWi
UiTO5eSYhQph2NIrtAvXmfly
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:21 2023 by rpki-client on console-ams.rpki-client.org