Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/1-X9V2txd_tGrrxp27qJf6-DUIgI.roa
File: 1-X9V2txd_tGrrxp27qJf6-DUIgI.roa (raw, json)
Hash identifier: a2OY49dFRnXmdCthdijNM2AdLZgQGhQWC1R5WBVhmYM=
Subject key identifier: F9:7F:55:DA:DC:5D:FE:D1:AB:AF:1A:76:EE:A2:5F:EB:E0:D4:22:02
Certificate issuer: /CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Certificate serial: 0182870C8935017BE066F6E8AC3E01F3C37C
Authority key identifier: E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/1-X9V2txd_tGrrxp27qJf6-DUIgI.roa
Signing time: Wed 10 Aug 2022 09:18:41 +0000
ROA not before: Wed 10 Aug 2022 09:18:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 91.132.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:0c:89:35:01:7b:e0:66:f6:e8:ac:3e:01:f3:c3:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Validity
Not Before: Aug 10 09:18:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f97f55dadc5dfed1abaf1a76eea25febe0d42202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:26:01:b8:d1:d2:09:2c:e3:29:89:21:e7:a1:
58:a8:b3:2b:05:59:0a:0b:5c:a5:3e:0f:a8:1f:e9:
2b:1b:db:5b:2a:d1:ab:85:70:2a:77:f7:70:a4:69:
71:83:51:0d:eb:1f:cb:a7:40:82:eb:2c:20:9b:ea:
09:4a:1d:1e:27:a3:d7:62:b7:8b:2b:ed:b6:6a:a3:
d3:c3:55:f7:c2:5b:a1:fd:b5:9a:58:90:62:6b:0b:
a3:13:5d:71:04:48:93:ba:81:d9:d7:84:d7:1a:e2:
b0:32:d7:3c:f4:13:c0:8d:ef:25:84:c9:ce:a0:cb:
e3:ac:9c:aa:c5:41:ac:d8:c6:0c:aa:93:80:22:d8:
1e:26:3a:1b:73:2a:2f:13:97:b3:61:df:b3:a0:4f:
9a:00:f5:98:80:0a:7e:15:ff:05:c1:41:21:3f:01:
88:ed:d7:51:fd:41:4d:e9:26:0c:52:24:a3:63:a0:
48:c5:34:17:e5:f1:06:26:79:cb:c2:50:64:ac:71:
18:2e:a1:67:37:41:2e:ad:7e:84:09:ab:f9:99:26:
69:5a:f6:fc:7c:d9:0f:d3:fb:87:d6:61:c1:91:2c:
b8:12:00:08:88:b3:6d:3b:74:3c:6a:9e:c2:df:8f:
58:4e:8e:f1:65:74:e0:e6:6d:92:a9:f3:44:b0:8d:
c6:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:7F:55:DA:DC:5D:FE:D1:AB:AF:1A:76:EE:A2:5F:EB:E0:D4:22:02
X509v3 Authority Key Identifier:
keyid:E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/1-X9V2txd_tGrrxp27qJf6-DUIgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/4UCgR8izCtxtnuMmpmnf0BHZtdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.227.0/24
Signature Algorithm: sha256WithRSAEncryption
96:cb:63:d4:5a:8a:cc:de:e7:00:cb:06:87:5c:10:da:d2:16:
ef:c3:cb:cf:1b:4c:6d:ac:3e:73:34:7b:c5:4c:52:46:df:c8:
26:dc:01:1e:da:a0:af:c9:f1:29:11:ec:c0:4f:e2:13:50:3f:
1f:3d:c1:29:2a:bb:61:1f:80:c8:d1:a3:3d:a1:5d:b6:43:4f:
33:01:b6:a8:0d:de:e5:bc:08:7b:73:ac:43:80:f4:af:20:33:
ca:13:95:c8:9f:b0:73:c2:fe:a5:82:a4:72:d9:67:76:bb:95:
cf:ca:96:45:26:98:f6:6a:29:35:61:a9:f2:c9:cd:b6:0b:61:
b9:69:ec:6a:cd:be:55:a5:21:96:c6:8d:87:76:19:d4:fa:eb:
48:ff:12:60:9b:96:23:e4:1d:11:0f:63:2b:89:10:fb:bc:a0:
7b:83:7c:63:d6:7b:e7:5c:e3:4a:d1:d4:2c:d4:00:f7:b3:b8:
9c:78:7f:f8:19:e7:1d:f1:32:2e:32:1f:31:cb:2c:dc:de:1e:
d5:8c:52:29:df:57:c3:f1:5d:f0:8f:86:22:78:f8:39:54:87:
d0:7d:67:2a:24:38:0a:d3:3d:47:cd:d3:fc:93:d0:d0:5c:fc:
66:52:f5:bd:0f:23:4b:94:d9:68:d0:98:8f:40:e1:61:cf:32:
44:f5:2d:09
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYKHDIk1AXvgZvborD4B88N8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxNDBhMDQ3YzhiMzBhZGM2ZDllZTMyNmE2NjlkZmQwMTFk
OWI1ZDMwHhcNMjIwODEwMDkxODQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTdmNTVkYWRjNWRmZWQxYWJhZjFhNzZlZWEyNWZlYmUwZDQyMjAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCYBuNHSCSzjKYkh56FYqLMrBVkK
C1ylPg+oH+krG9tbKtGrhXAqd/dwpGlxg1EN6x/Lp0CC6ywgm+oJSh0eJ6PXYreL
K+22aqPTw1X3wluh/bWaWJBiawujE11xBEiTuoHZ14TXGuKwMtc89BPAje8lhMnO
oMvjrJyqxUGs2MYMqpOAItgeJjobcyovE5ezYd+zoE+aAPWYgAp+Ff8FwUEhPwGI
7ddR/UFN6SYMUiSjY6BIxTQX5fEGJnnLwlBkrHEYLqFnN0EurX6ECav5mSZpWvb8
fNkP0/uH1mHBkSy4EgAIiLNtO3Q8ap7C349YTo7xZXTg5m2SqfNEsI3GzwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPl/VdrcXf7Rq68adu6iX+vg1CICMB8GA1UdIwQY
MBaAFOFAoEfIswrcbZ7jJqZp39AR2bXTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFVDZ1I4aXpDdHh0bnVNbXBtbmYwQkhadGRNLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9mODViN2MtNGFkNi00MjdkLTkzZWQt
YTZmMWU0OTVmMWJlLzEvMS1YOVYydHhkX3RHcnJ4cDI3cUpmNi1EVUlnSS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTkvZjg1YjdjLTRhZDYtNDI3ZC05M2VkLWE2ZjFlNDk1ZjFi
ZS8xLzRVQ2dSOGl6Q3R4dG51TW1wbW5mMEJIWnRkTS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFuE4zAN
BgkqhkiG9w0BAQsFAAOCAQEAlstj1FqKzN7nAMsGh1wQ2tIW78PLzxtMbaw+czR7
xUxSRt/IJtwBHtqgr8nxKRHswE/iE1A/Hz3BKSq7YR+AyNGjPaFdtkNPMwG2qA3e
5bwIe3OsQ4D0ryAzyhOVyJ+wc8L+pYKkctlndruVz8qWRSaY9mopNWGp8snNtgth
uWnsas2+VaUhlsaNh3YZ1PrrSP8SYJuWI+QdEQ9jK4kQ+7yge4N8Y9Z751zjStHU
LNQA97O4nHh/+BnnHfEyLjIfMcss3N4e1YxSKd9Xw/Fd8I+GInj4OVSH0H1nKiQ4
CtM9R83T/JPQ0Fz8ZlL1vQ8jS5TZaNCYj0DhYc8yRPUtCQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-fra.rpki-client.org