Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/V3VYS8beRZ_R-htDxPP0MlqUbQ0.roa
File: V3VYS8beRZ_R-htDxPP0MlqUbQ0.roa (raw, json)
Hash identifier: EPkDaOZrxwov6x3YSCWkl5LxzmMrA4ANFys9oPESVnQ=
Subject key identifier: 57:75:58:4B:C6:DE:45:9F:D1:FA:1B:43:C4:F3:F4:32:5A:94:6D:0D
Certificate issuer: /CN=1637a493bc2025bf080c0b5e242e61e417670e86
Certificate serial: 4D79
Authority key identifier: 16:37:A4:93:BC:20:25:BF:08:0C:0B:5E:24:2E:61:E4:17:67:0E:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fjekk7wgJb8IDAteJC5h5BdnDoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/V3VYS8beRZ_R-htDxPP0MlqUbQ0.roa
Signing time: Tue 25 Jan 2022 18:23:09 +0000
ROA not before: Tue 25 Jan 2022 18:23:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 91.213.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19833 (0x4d79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1637a493bc2025bf080c0b5e242e61e417670e86
Validity
Not Before: Jan 25 18:23:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5775584bc6de459fd1fa1b43c4f3f4325a946d0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c8:70:12:af:a6:23:38:e8:71:b6:7f:d4:85:
3e:9d:aa:d7:44:84:08:0e:94:a5:c4:ea:be:2f:c1:
0b:9f:20:41:b9:06:1e:6d:ea:89:d0:bb:dc:24:1c:
98:7c:07:7d:d8:e6:00:8f:6a:f9:4a:e7:d0:85:64:
33:f4:c7:0e:cc:3b:10:10:e3:49:f8:36:9f:d7:92:
c6:5b:45:5e:65:bd:91:8e:f3:e8:13:64:a5:a9:db:
6e:6f:05:b0:99:1c:b0:33:0e:92:41:2c:e8:ce:34:
07:1a:90:fd:3a:47:8f:59:d2:fa:28:65:77:b8:2f:
31:60:08:69:d9:83:db:90:44:18:3e:6d:03:b7:6d:
3f:86:f9:cb:2b:3c:79:f5:2b:04:94:04:66:7a:96:
16:d1:be:34:1a:53:f5:97:82:4d:24:f0:65:c4:74:
37:6b:28:8c:b4:f0:0b:63:7e:40:87:ba:99:eb:0e:
9f:93:04:89:aa:cc:5d:ea:0f:37:66:6d:58:e5:27:
88:33:13:dc:03:3f:c8:97:d0:d7:ab:94:7d:bf:eb:
a7:52:60:56:63:4e:17:01:48:46:26:e7:27:28:4d:
6a:e3:ca:5a:e4:34:1e:15:95:b9:67:68:5a:59:dd:
4c:b9:5b:6d:40:64:7e:10:90:7b:4d:f8:16:30:b6:
4b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:75:58:4B:C6:DE:45:9F:D1:FA:1B:43:C4:F3:F4:32:5A:94:6D:0D
X509v3 Authority Key Identifier:
keyid:16:37:A4:93:BC:20:25:BF:08:0C:0B:5E:24:2E:61:E4:17:67:0E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fjekk7wgJb8IDAteJC5h5BdnDoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/V3VYS8beRZ_R-htDxPP0MlqUbQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/7690b7-df00-4bd8-9ca7-a718514c58ca/1/Fjekk7wgJb8IDAteJC5h5BdnDoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.117.0/24
Signature Algorithm: sha256WithRSAEncryption
00:7b:51:e8:5e:8b:3d:79:b8:a2:7f:b1:9a:3d:70:8c:6c:a9:
bf:a6:3f:c9:a6:bb:fc:9f:b7:70:c4:d7:5b:b9:76:94:cd:54:
bb:5e:92:50:bf:28:02:16:f0:d0:49:a6:4a:88:e0:71:bd:be:
a9:09:fb:ad:0d:9b:2d:26:a7:5a:bb:fd:6c:b5:50:9a:3b:1b:
b7:0f:98:84:50:9a:35:a6:49:e2:a3:be:cc:e4:2b:74:f9:8c:
5e:c6:99:d9:0b:f2:6a:2c:af:42:a3:d1:ac:1b:67:67:ab:2c:
e3:5e:44:db:3d:7d:1a:58:47:45:02:56:68:69:50:f2:87:f8:
c1:1c:76:23:39:b3:ad:b0:47:02:af:07:de:bf:f2:eb:49:86:
40:bc:ee:0c:37:21:89:43:49:31:5a:9a:dd:d3:33:2b:2e:83:
bc:56:1b:2b:20:24:17:2c:8e:5d:f9:04:a1:36:29:74:06:40:
e1:fe:88:e2:e7:d6:e9:b7:81:a7:b6:f7:d5:69:ff:97:d3:9b:
c4:2c:8e:7f:bd:3f:44:1a:b9:0a:59:86:47:a4:5f:74:e6:88:
ca:4c:1b:a1:c0:5f:f6:ad:e7:73:23:ca:e9:4c:91:4d:5a:95:
68:02:57:27:84:2d:1c:19:42:89:90:a3:d8:72:e2:84:c0:96:
60:d3:ed:38
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICTXkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTYz
N2E0OTNiYzIwMjViZjA4MGMwYjVlMjQyZTYxZTQxNzY3MGU4NjAeFw0yMjAxMjUx
ODIzMDlaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDU3NzU1ODRiYzZkZTQ1
OWZkMWZhMWI0M2M0ZjNmNDMyNWE5NDZkMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsyHASr6YjOOhxtn/UhT6dqtdEhAgOlKXE6r4vwQufIEG5Bh5t
6onQu9wkHJh8B33Y5gCPavlK59CFZDP0xw7MOxAQ40n4Np/XksZbRV5lvZGO8+gT
ZKWp225vBbCZHLAzDpJBLOjONAcakP06R49Z0vooZXe4LzFgCGnZg9uQRBg+bQO3
bT+G+csrPHn1KwSUBGZ6lhbRvjQaU/WXgk0k8GXEdDdrKIy08AtjfkCHupnrDp+T
BImqzF3qDzdmbVjlJ4gzE9wDP8iX0NerlH2/66dSYFZjThcBSEYm5ycoTWrjylrk
NB4VlblnaFpZ3Uy5W21AZH4QkHtN+BYwtkuLAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUV3VYS8beRZ/R+htDxPP0MlqUbQ0wHwYDVR0jBBgwFoAUFjekk7wgJb8IDAte
JC5h5BdnDoYwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9G
amVrazd3Z0piOElEQXRlSkM1aDVCZG5Eb1kuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxULzU5Lzc2OTBiNy1kZjAwLTRiZDgtOWNhNy1hNzE4NTE0YzU4Y2EvMS9W
M1ZZUzhiZVJaX1ItaHREeFBQME1scVViUTAucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU5Lzc2
OTBiNy1kZjAwLTRiZDgtOWNhNy1hNzE4NTE0YzU4Y2EvMS9GamVrazd3Z0piOElE
QXRlSkM1aDVCZG5Eb1kuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABb1XUwDQYJKoZIhvcNAQELBQADggEB
AAB7Ueheiz15uKJ/sZo9cIxsqb+mP8mmu/yft3DE11u5dpTNVLteklC/KAIW8NBJ
pkqI4HG9vqkJ+60Nmy0mp1q7/Wy1UJo7G7cPmIRQmjWmSeKjvszkK3T5jF7GmdkL
8mosr0Kj0awbZ2erLONeRNs9fRpYR0UCVmhpUPKH+MEcdiM5s62wRwKvB96/8utJ
hkC87gw3IYlDSTFamt3TMysug7xWGysgJBcsjl35BKE2KXQGQOH+iOLn1um3gae2
99Vp/5fTm8Qsjn+9P0QauQpZhkekX3TmiMpMG6HAX/at53MjyulMkU1alWgCVyeE
LRwZQomQo9hy4oTAlmDT7Tg=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:46 2023 by rpki-client on console-fra.rpki-client.org