Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/_9mQpttnRkbgIaNndClnMc96zzw.roa
File: _9mQpttnRkbgIaNndClnMc96zzw.roa (raw, json)
Hash identifier: nyaBH2ltqWDQUEkQWSSppyGr9ip4YkNuyGI0c3y65Z8=
Subject key identifier: FF:D9:90:A6:DB:67:46:46:E0:21:A3:67:74:29:67:31:CF:7A:CF:3C
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0183EC6C6B19F784C8CDEBEC25588DDCAED7
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/_9mQpttnRkbgIaNndClnMc96zzw.roa
Signing time: Tue 18 Oct 2022 18:47:51 +0000
ROA not before: Tue 18 Oct 2022 18:47:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 91.225.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:6c:6b:19:f7:84:c8:cd:eb:ec:25:58:8d:dc:ae:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Oct 18 18:47:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffd990a6db674646e021a36774296731cf7acf3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c8:d8:e9:77:d5:25:c2:88:90:16:8d:33:df:
f5:32:fe:42:87:c7:35:fd:e7:f1:0a:7e:10:62:09:
3f:ee:97:56:96:ff:7f:0b:29:72:be:1e:87:7b:8d:
3c:53:33:9c:93:33:06:74:d7:14:cc:2c:43:e4:8c:
5c:97:ed:78:20:bd:b1:7e:84:3f:d9:7e:92:66:a7:
83:cb:ff:2a:de:b9:9b:4b:8a:75:8e:f4:4c:57:6e:
d4:13:7f:bc:bf:37:3c:31:17:2e:87:1e:7e:a1:cd:
d4:e5:96:c9:11:a5:93:1d:94:3f:5a:0f:dc:fd:ff:
36:cd:d0:10:76:68:f4:8c:1d:ca:e5:00:76:eb:68:
fe:2d:0a:e1:f6:10:20:9c:e1:bb:25:75:ea:d6:d9:
1b:94:e3:70:33:a5:bb:15:43:25:3c:8c:21:a8:43:
69:aa:71:61:99:c2:c1:13:c5:ca:63:2a:2d:06:7f:
84:62:e1:89:1d:e8:f9:a7:c5:d6:9f:9c:65:e0:76:
fd:f3:29:40:21:53:d0:89:08:c2:9f:ce:5b:52:7c:
ad:1b:ec:24:c0:d8:7a:a5:aa:fd:c9:f9:86:4c:8b:
6f:a9:71:64:6f:37:b5:b6:f2:b5:2a:12:1a:6b:9b:
4e:df:7e:30:65:ad:a9:6d:3b:54:83:ec:85:52:7a:
2a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:D9:90:A6:DB:67:46:46:E0:21:A3:67:74:29:67:31:CF:7A:CF:3C
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/_9mQpttnRkbgIaNndClnMc96zzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.225.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:28:fe:27:58:44:a9:69:5a:57:06:86:e6:b0:87:40:c1:c9:
63:fc:c9:e7:9b:38:dc:04:a1:65:81:d6:c6:13:c7:f6:7d:1c:
9f:cd:f7:8c:0b:27:c3:82:72:24:f2:72:76:96:94:b9:a4:cf:
56:54:11:1a:d3:66:70:75:9a:29:9f:75:1a:9e:4c:bc:7c:b9:
20:46:79:f7:5a:89:1e:f7:d6:6b:d8:4c:a9:81:f5:0b:68:14:
cb:c2:65:e5:85:6f:ee:81:a0:d1:b6:90:3d:31:c0:f5:93:9e:
33:95:5a:eb:6c:49:3c:d9:df:d5:56:31:95:36:37:d5:59:ec:
48:21:c5:06:2e:11:ce:ee:37:18:4c:d6:7a:d2:c3:77:b3:a6:
57:ef:04:0d:dd:d8:bf:67:ba:d2:d7:8b:01:8b:14:94:6a:ce:
27:15:75:c3:99:a0:6d:a3:d0:c3:e5:29:51:ad:b7:73:04:96:
6f:e4:1b:be:d6:3e:2a:e9:00:fe:02:a3:72:21:1b:85:3f:44:
89:4e:e3:ed:2a:7e:3c:44:40:e2:b5:b4:b2:86:4d:2b:75:6f:
ae:50:62:b3:4b:02:31:42:68:ff:bb:13:ae:09:2f:c2:91:ad:
7a:a1:ed:f6:a1:6c:4d:82:dc:51:11:82:36:47:1d:33:f9:2a:
e1:7f:bb:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPsbGsZ94TIzevsJViN3K7XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMWFjODNlZTNhM2Y5NjhkNjZhZDJmZGY0NjE2ZTdiYjFl
NGQxZDcwHhcNMjIxMDE4MTg0NzUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmQ5OTBhNmRiNjc0NjQ2ZTAyMWEzNjc3NDI5NjczMWNmN2FjZjNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAisjY6XfVJcKIkBaNM9/1Mv5Ch8c1
/efxCn4QYgk/7pdWlv9/Cylyvh6He408UzOckzMGdNcUzCxD5Ixcl+14IL2xfoQ/
2X6SZqeDy/8q3rmbS4p1jvRMV27UE3+8vzc8MRcuhx5+oc3U5ZbJEaWTHZQ/Wg/c
/f82zdAQdmj0jB3K5QB262j+LQrh9hAgnOG7JXXq1tkblONwM6W7FUMlPIwhqENp
qnFhmcLBE8XKYyotBn+EYuGJHej5p8XWn5xl4Hb98ylAIVPQiQjCn85bUnytG+wk
wNh6par9yfmGTItvqXFkbze1tvK1KhIaa5tO334wZa2pbTtUg+yFUnoqZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP/ZkKbbZ0ZG4CGjZ3QpZzHPes88MB8GA1UdIwQY
MBaAFI0ayD7jo/lo1mrS/fRhbnux5NHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWIt
ZGRmNTY3ZWRlZDAzLzEvXzltUXB0dG5Sa2JnSWFObmRDbG5NYzk2enp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YWJmM2YtMTU4Zi00ZjYyLWE5ZWItZGRmNTY3ZWRlZDAz
LzEvalJySVB1T2otV2pXYXRMOTlHRnVlN0hrMGRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+HhMA0G
CSqGSIb3DQEBCwUAA4IBAQAfKP4nWESpaVpXBobmsIdAwclj/MnnmzjcBKFlgdbG
E8f2fRyfzfeMCyfDgnIk8nJ2lpS5pM9WVBEa02ZwdZopn3Uanky8fLkgRnn3Woke
99Zr2EypgfULaBTLwmXlhW/ugaDRtpA9McD1k54zlVrrbEk82d/VVjGVNjfVWexI
IcUGLhHO7jcYTNZ60sN3s6ZX7wQN3di/Z7rS14sBixSUas4nFXXDmaBto9DD5SlR
rbdzBJZv5Bu+1j4q6QD+AqNyIRuFP0SJTuPtKn48REDitbSyhk0rdW+uUGKzSwIx
Qmj/uxOuCS/Cka16oe32oWxNgtxREYI2Rx0z+Srhf7uP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org