Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/F6MPoFDlu_EoFewLYWwIRBzaJKY.roa
File: F6MPoFDlu_EoFewLYWwIRBzaJKY.roa (raw, json)
Hash identifier: QKxM5jsCR0uUw+q03RNdk5r+srGgzkz3irsytNjDpJs=
Subject key identifier: 17:A3:0F:A0:50:E5:BB:F1:28:15:EC:0B:61:6C:08:44:1C:DA:24:A6
Certificate issuer: /CN=637104d927e7e1ef8febbffddf28145495011094
Certificate serial: 0549A7B7
Authority key identifier: 63:71:04:D9:27:E7:E1:EF:8F:EB:BF:FD:DF:28:14:54:95:01:10:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/F6MPoFDlu_EoFewLYWwIRBzaJKY.roa
Signing time: Sat 01 Jan 2022 16:06:15 +0000
ROA not before: Sat 01 Jan 2022 16:06:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42673
IP address blocks: 91.240.130.0/24 maxlen: 32
91.240.136.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88713143 (0x549a7b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637104d927e7e1ef8febbffddf28145495011094
Validity
Not Before: Jan 1 16:06:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17a30fa050e5bbf12815ec0b616c08441cda24a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:76:1a:34:9f:88:1a:13:88:d8:b9:af:7c:a3:
6c:ac:cd:b1:e4:01:47:80:58:fa:63:79:d8:c1:c6:
2d:86:ab:2d:82:e1:5f:2c:5d:63:37:aa:6d:96:b0:
ec:4e:eb:64:93:a2:1f:d5:88:e5:9b:ed:eb:8b:d1:
c2:3a:bd:f6:28:be:7b:3e:32:fd:da:ac:02:8d:95:
0c:76:30:e9:93:02:83:38:31:4e:b0:d3:29:2e:74:
9e:d6:f7:ac:f4:e8:47:6d:c4:f0:53:b0:b4:4e:62:
8e:2f:3f:02:5d:9b:0a:71:91:fd:78:88:d9:de:6e:
3e:14:e9:0a:2e:6f:4e:15:b2:54:30:1d:85:ae:7e:
6a:f9:20:cb:f1:25:e4:3b:9d:37:f3:63:7f:f3:c1:
14:14:44:c7:bc:6b:e5:6a:f6:09:27:bd:19:3c:d7:
c2:05:cf:e1:a3:7f:fe:c4:0b:f5:24:ba:f5:ce:b4:
3b:9f:89:e6:50:d2:dd:cf:13:21:8d:68:33:76:d8:
79:94:96:43:3f:ad:bd:02:b4:af:d0:a0:b8:db:5a:
89:90:ae:06:7a:cd:d6:9c:c3:05:57:c6:c8:9c:74:
20:00:7a:ca:ff:39:b0:9f:d9:bc:98:db:6c:28:44:
36:d7:c2:1f:01:ac:f7:b0:dc:98:8d:7f:cf:68:44:
08:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A3:0F:A0:50:E5:BB:F1:28:15:EC:0B:61:6C:08:44:1C:DA:24:A6
X509v3 Authority Key Identifier:
keyid:63:71:04:D9:27:E7:E1:EF:8F:EB:BF:FD:DF:28:14:54:95:01:10:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/F6MPoFDlu_EoFewLYWwIRBzaJKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.130.0/24
91.240.136.0/22
Signature Algorithm: sha256WithRSAEncryption
11:85:3b:9a:cc:96:1c:da:b4:dd:8f:ee:ad:3b:62:32:48:df:
cb:48:05:44:2c:cc:c2:4c:5a:3a:02:37:3b:28:21:7f:5d:e4:
fe:98:c1:4c:c1:92:fa:59:d6:92:d5:98:c8:6e:5a:26:17:09:
9d:17:c9:d1:9c:80:aa:7c:8c:fd:41:e3:a2:76:c0:82:29:8f:
ac:eb:c6:4a:09:db:67:dd:8a:a7:c2:a2:9a:4e:2b:9b:f7:54:
05:c7:df:a0:56:d9:e1:fa:b0:7d:bc:2c:0c:3a:b0:97:5e:b6:
5f:52:02:51:10:00:76:bd:8b:77:5e:2a:d3:30:39:68:49:d6:
3b:65:3e:a1:c2:a1:62:da:b0:66:5d:0c:2f:79:d0:b8:da:75:
6e:98:ee:71:0c:41:4d:ea:21:af:aa:ae:4d:22:a5:47:d9:1c:
2e:d9:68:25:2f:55:5f:22:ed:e5:71:b4:57:2f:b3:da:c5:e8:
01:3f:c9:47:ef:7d:1b:8c:fe:1a:fd:7e:1b:26:4c:37:55:ff:
44:fb:63:f8:53:79:37:b4:1e:a1:fb:ec:1c:a7:36:53:70:3b:
52:9a:dc:2c:1d:dd:d2:4f:de:24:c1:15:c1:f9:42:75:64:fd:
c2:76:11:d5:26:26:16:56:ef:43:40:25:50:c6:44:97:2b:1b:
11:0a:8e:d3
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBUmntzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
MzcxMDRkOTI3ZTdlMWVmOGZlYmJmZmRkZjI4MTQ1NDk1MDExMDk0MB4XDTIyMDEw
MTE2MDYxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTdhMzBmYTA1MGU1
YmJmMTI4MTVlYzBiNjE2YzA4NDQxY2RhMjRhNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJN2GjSfiBoTiNi5r3yjbKzNseQBR4BY+mN52MHGLYarLYLh
XyxdYzeqbZaw7E7rZJOiH9WI5Zvt64vRwjq99ii+ez4y/dqsAo2VDHYw6ZMCgzgx
TrDTKS50ntb3rPToR23E8FOwtE5iji8/Al2bCnGR/XiI2d5uPhTpCi5vThWyVDAd
ha5+avkgy/El5DudN/Njf/PBFBREx7xr5Wr2CSe9GTzXwgXP4aN//sQL9SS69c60
O5+J5lDS3c8TIY1oM3bYeZSWQz+tvQK0r9CguNtaiZCuBnrN1pzDBVfGyJx0IAB6
yv85sJ/ZvJjbbChENtfCHwGs97DcmI1/z2hECCMCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQXow+gUOW78SgV7AthbAhEHNokpjAfBgNVHSMEGDAWgBRjcQTZJ+fh74/r
v/3fKBRUlQEQlDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1kzRUUyU2ZuNGUtUDY3XzkzeWdVVkpVQkVKUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNTkvZGQxZGRmLTczY2YtNGJiMi04YTZlLTZlNGFlYzg2ZmUxZS8x
L0Y2TVBvRkRsdV9Fb0Zld0xZV3dJUkJ6YUpLWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTkv
ZGQxZGRmLTczY2YtNGJiMi04YTZlLTZlNGFlYzg2ZmUxZS8xL1kzRUUyU2ZuNGUt
UDY3XzkzeWdVVkpVQkVKUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvwggMEAlvwiDANBgkqhkiG9w0B
AQsFAAOCAQEAEYU7msyWHNq03Y/urTtiMkjfy0gFRCzMwkxaOgI3Oyghf13k/pjB
TMGS+lnWktWYyG5aJhcJnRfJ0ZyAqnyM/UHjonbAgimPrOvGSgnbZ92Kp8Kimk4r
m/dUBcffoFbZ4fqwfbwsDDqwl162X1ICURAAdr2Ld14q0zA5aEnWO2U+ocKhYtqw
Zl0ML3nQuNp1bpjucQxBTeohr6quTSKlR9kcLtloJS9VXyLt5XG0Vy+z2sXoAT/J
R+99G4z+Gv1+GyZMN1X/RPtj+FN5N7QeofvsHKc2U3A7UprcLB3d0k/eJMEVwflC
dWT9wnYR1SYmFlbvQ0AlUMZElysbEQqO0w==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-fra.rpki-client.org