Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/JXRFwgCeRjVLD8jrih1d0HlSqik.roa
File: JXRFwgCeRjVLD8jrih1d0HlSqik.roa (raw, json)
Hash identifier: U7JNNBxiLMZ1hylhJHqyaFb2P2KhEb6CvYkP74jjatY=
Subject key identifier: 25:74:45:C2:00:9E:46:35:4B:0F:C8:EB:8A:1D:5D:D0:79:52:AA:29
Certificate issuer: /CN=cec3b347a216bc437b0bd4cf0bc8cda65e8c2d3b
Certificate serial: 18A40D16
Authority key identifier: CE:C3:B3:47:A2:16:BC:43:7B:0B:D4:CF:0B:C8:CD:A6:5E:8C:2D:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsOzR6IWvEN7C9TPC8jNpl6MLTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/JXRFwgCeRjVLD8jrih1d0HlSqik.roa
Signing time: Sat 01 Jan 2022 07:59:01 +0000
ROA not before: Sat 01 Jan 2022 07:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 91.102.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413404438 (0x18a40d16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec3b347a216bc437b0bd4cf0bc8cda65e8c2d3b
Validity
Not Before: Jan 1 07:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=257445c2009e46354b0fc8eb8a1d5dd07952aa29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:31:07:97:01:8f:be:44:cc:33:92:17:ca:50:
bb:c8:ea:3f:8c:a9:6e:fc:ff:7f:5a:4e:4b:d5:86:
29:11:f4:68:e9:cd:24:62:79:9c:5f:10:6e:25:4c:
9f:e1:1a:53:2d:7b:80:96:3f:86:a2:87:a4:a2:be:
c3:3b:90:c9:99:2e:b5:e1:ab:b2:a9:94:44:86:94:
ca:16:80:aa:5e:06:03:8e:a1:69:46:7a:e3:b9:7b:
b1:33:86:30:db:1c:aa:47:12:65:c4:50:6e:90:51:
10:4d:9a:86:bb:04:57:ee:47:47:26:b4:f2:ea:b5:
34:e6:bd:51:49:9d:48:ae:bd:c1:c2:57:94:2f:91:
2d:83:c1:03:63:2e:32:a1:99:66:e4:d5:06:c4:8a:
bd:ef:a0:88:95:e5:d9:46:8e:19:6d:41:7f:f1:a0:
c5:60:39:84:78:30:2d:57:67:43:63:21:a7:82:0d:
6a:99:fc:7b:87:5b:9d:44:29:73:81:da:c9:1a:73:
d6:96:b9:32:0a:6f:5a:d7:5d:6a:12:62:f6:7f:8a:
2b:78:11:42:c4:45:0f:ef:88:8d:c5:eb:e8:52:b1:
be:92:7b:7f:6c:4b:09:d8:bc:38:67:e7:cf:4c:d0:
76:2e:3c:73:16:4b:7f:23:e7:0c:a6:17:42:5c:88:
ee:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:74:45:C2:00:9E:46:35:4B:0F:C8:EB:8A:1D:5D:D0:79:52:AA:29
X509v3 Authority Key Identifier:
keyid:CE:C3:B3:47:A2:16:BC:43:7B:0B:D4:CF:0B:C8:CD:A6:5E:8C:2D:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsOzR6IWvEN7C9TPC8jNpl6MLTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/JXRFwgCeRjVLD8jrih1d0HlSqik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/zsOzR6IWvEN7C9TPC8jNpl6MLTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.186.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:12:66:54:18:d9:70:f3:4f:a1:28:2b:c3:17:16:da:f9:c6:
9d:ec:dc:9f:72:3b:3d:e4:e2:65:43:79:ac:5d:a9:ac:3a:e8:
3a:d0:da:cb:db:7e:5f:c7:ae:71:3a:e8:df:a6:2c:4e:04:02:
7f:f1:3a:3e:ab:64:0d:4b:96:ff:8a:f7:2b:fa:c0:23:07:8a:
54:13:54:81:2f:3e:b9:78:7b:d8:8d:2b:29:9f:65:7a:2f:15:
53:21:45:5d:92:2b:42:95:ce:8c:4d:4e:f3:36:8f:c1:b2:df:
20:69:4d:44:0d:e1:f2:42:ed:ab:60:b6:2e:9e:46:0b:a6:24:
61:ce:15:65:f6:fe:d3:e5:2f:90:5a:32:f0:24:8d:ba:d3:8a:
27:fc:c4:08:5b:d0:e1:6a:37:99:4e:17:e4:29:98:ca:99:cc:
3f:07:66:e1:c9:c0:ba:ff:cf:1c:c2:f3:db:14:7f:69:d7:a1:
b7:ad:56:39:97:9f:bb:94:d2:f6:e0:07:88:b4:85:f9:14:08:
43:5c:b3:a0:40:67:5a:e6:a1:fb:2d:38:51:05:b0:a5:d9:90:
25:4e:b1:17:87:c6:16:ef:e0:83:b3:dd:be:86:57:3d:b0:f8:
65:ba:ff:f0:26:af:63:3a:cb:03:4e:a1:4b:7f:7c:91:41:04:
72:3b:50:4f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGKQNFjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZWMzYjM0N2EyMTZiYzQzN2IwYmQ0Y2YwYmM4Y2RhNjVlOGMyZDNiMB4XDTIyMDEw
MTA3NTkwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjU3NDQ1YzIwMDll
NDYzNTRiMGZjOGViOGExZDVkZDA3OTUyYWEyOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMgxB5cBj75EzDOSF8pQu8jqP4ypbvz/f1pOS9WGKRH0aOnN
JGJ5nF8QbiVMn+EaUy17gJY/hqKHpKK+wzuQyZkuteGrsqmURIaUyhaAql4GA46h
aUZ647l7sTOGMNscqkcSZcRQbpBREE2ahrsEV+5HRya08uq1NOa9UUmdSK69wcJX
lC+RLYPBA2MuMqGZZuTVBsSKve+giJXl2UaOGW1Bf/GgxWA5hHgwLVdnQ2Mhp4IN
apn8e4dbnUQpc4HayRpz1pa5MgpvWtddahJi9n+KK3gRQsRFD++IjcXr6FKxvpJ7
f2xLCdi8OGfnz0zQdi48cxZLfyPnDKYXQlyI7k8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQldEXCAJ5GNUsPyOuKHV3QeVKqKTAfBgNVHSMEGDAWgBTOw7NHoha8Q3sL
1M8LyM2mXowtOzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pzT3pSNklXdkVON0M5VFBDOGpOcGw2TUxUcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTcvN2E2ODNiLWZhNzgtNDExMi1iNmI2LTE1NWZiM2ZlMjg3ZS8x
L0pYUkZ3Z0NlUmpWTEQ4anJpaDFkMEhsU3Fpay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcv
N2E2ODNiLWZhNzgtNDExMi1iNmI2LTE1NWZiM2ZlMjg3ZS8xL3pzT3pSNklXdkVO
N0M5VFBDOGpOcGw2TUxUcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFtmujANBgkqhkiG9w0BAQsFAAOC
AQEAWxJmVBjZcPNPoSgrwxcW2vnGnezcn3I7PeTiZUN5rF2prDroOtDay9t+X8eu
cTro36YsTgQCf/E6PqtkDUuW/4r3K/rAIweKVBNUgS8+uXh72I0rKZ9lei8VUyFF
XZIrQpXOjE1O8zaPwbLfIGlNRA3h8kLtq2C2Lp5GC6YkYc4VZfb+0+UvkFoy8CSN
utOKJ/zECFvQ4Wo3mU4X5CmYypnMPwdm4cnAuv/PHMLz2xR/adeht61WOZefu5TS
9uAHiLSF+RQIQ1yzoEBnWuah+y04UQWwpdmQJU6xF4fGFu/gg7PdvoZXPbD4Zbr/
8CavYzrLA06hS398kUEEcjtQTw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:42 2024 by rpki-client on console-ams.rpki-client.org