Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/ABUKhgOggWBw2sbhOUa5bagfcac.roa
File: ABUKhgOggWBw2sbhOUa5bagfcac.roa (raw, json)
Hash identifier: i12QVS6JT+IekNSvf3ykkOwsDCvp3/5U4eF6g556MmE=
Subject key identifier: 00:15:0A:86:03:A0:81:60:70:DA:C6:E1:39:46:B9:6D:A8:1F:71:A7
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 018201497E4E4E165BDC43B6030AD976202D
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/ABUKhgOggWBw2sbhOUa5bagfcac.roa
Signing time: Fri 15 Jul 2022 09:56:09 +0000
ROA not before: Fri 15 Jul 2022 09:56:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48772
IP address blocks: 91.223.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:49:7e:4e:4e:16:5b:dc:43:b6:03:0a:d9:76:20:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Jul 15 09:56:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00150a8603a0816070dac6e13946b96da81f71a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f8:a0:1d:38:6d:c7:e0:1f:9b:39:14:bb:64:
bc:8a:80:d1:c8:41:c1:77:34:f4:06:1a:79:93:c1:
66:0c:9b:5c:ab:63:f8:7c:20:0a:1f:e0:0b:4e:36:
62:8d:1e:cf:c2:64:2e:7d:cb:1e:d8:e4:0c:5b:cf:
82:4b:80:03:3d:55:e4:97:0c:2e:ec:22:63:aa:35:
be:ec:88:79:e4:a3:ff:84:33:4e:f5:3c:43:07:93:
6b:1b:88:92:e6:29:4f:88:a5:17:4e:5d:1b:ec:10:
88:7f:70:77:b5:94:1c:19:03:fe:54:df:22:46:c3:
96:6b:ed:59:97:71:3c:a1:0b:4a:90:6b:8e:78:a8:
1b:b2:3a:e8:39:a8:6a:cb:67:23:5a:ef:75:91:8e:
87:74:3f:1f:8b:48:de:22:c1:36:53:b3:9b:90:9c:
5e:fb:c6:1f:db:09:9f:ae:8b:8c:90:8b:b5:c6:26:
98:22:9e:98:27:a3:13:65:11:b4:05:9d:9f:f8:24:
1c:03:0d:0a:10:81:18:7b:5e:52:22:be:3b:31:b3:
b6:8c:32:5c:d5:00:4b:55:6c:ab:df:91:21:b3:c3:
38:cd:08:d6:bf:46:4c:3b:13:76:90:e4:0c:5d:45:
9d:6c:2c:fe:ac:81:04:74:cc:25:07:ef:d1:90:b6:
03:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:15:0A:86:03:A0:81:60:70:DA:C6:E1:39:46:B9:6D:A8:1F:71:A7
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/ABUKhgOggWBw2sbhOUa5bagfcac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.49.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:e3:21:60:31:2d:a4:07:92:07:25:ba:82:3f:61:8f:76:a1:
ea:09:4e:de:43:b2:db:a8:44:6d:6f:75:05:c8:33:95:64:9c:
8d:00:59:5e:b5:b8:2d:c2:18:d1:05:fb:42:20:33:fa:07:55:
ef:59:b3:64:05:bc:ed:b8:62:a9:37:a3:0c:a9:db:c6:df:cd:
9e:88:2c:6d:3d:3a:2d:30:82:e8:69:0a:b9:fe:98:39:f1:d7:
54:e0:8b:2f:af:07:fc:0c:46:f0:4a:a5:e9:66:89:ee:18:0e:
d0:84:99:92:2d:1e:c4:77:93:62:2b:62:3a:77:11:ac:2d:9b:
34:da:24:5b:0a:95:e2:ba:f9:69:7a:9a:1c:b3:53:63:33:bc:
1f:f4:f0:a3:34:d6:40:b1:df:89:8d:cb:75:1f:97:29:68:31:
03:2f:c5:fe:50:c9:7d:a4:1d:36:51:13:05:c0:2e:d3:25:67:
9c:dc:02:df:46:fd:f7:9d:e1:03:64:8e:1d:6a:cc:1c:b3:42:
40:21:db:f1:3f:1c:be:0f:2a:8d:92:8e:cc:41:e3:da:d9:f8:
05:0e:9e:11:75:b5:02:e6:d9:ea:c7:ae:8b:a8:d9:18:a2:a9:
eb:74:7a:5f:15:06:34:86:42:70:86:e7:0b:69:77:8a:eb:ac:
21:4b:18:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIBSX5OThZb3EO2AwrZdiAtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMmUyN2JlODkxYjE5ZWNhOWJjZWI1M2U0ZGMyMzdjNWEz
NTU2OTcwHhcNMjIwNzE1MDk1NjA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDE1MGE4NjAzYTA4MTYwNzBkYWM2ZTEzOTQ2Yjk2ZGE4MWY3MWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/igHThtx+AfmzkUu2S8ioDRyEHB
dzT0Bhp5k8FmDJtcq2P4fCAKH+ALTjZijR7PwmQufcse2OQMW8+CS4ADPVXklwwu
7CJjqjW+7Ih55KP/hDNO9TxDB5NrG4iS5ilPiKUXTl0b7BCIf3B3tZQcGQP+VN8i
RsOWa+1Zl3E8oQtKkGuOeKgbsjroOahqy2cjWu91kY6HdD8fi0jeIsE2U7ObkJxe
+8Yf2wmfrouMkIu1xiaYIp6YJ6MTZRG0BZ2f+CQcAw0KEIEYe15SIr47MbO2jDJc
1QBLVWyr35Ehs8M4zQjWv0ZMOxN2kOQMXUWdbCz+rIEEdMwlB+/RkLYDiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAAVCoYDoIFgcNrG4TlGuW2oH3GnMB8GA1UdIwQY
MBaAFFEuJ76JGxnsqbzrU+TcI3xaNVaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wZjFiOGYtMWQ0Ny00MmYwLWEwNTAt
NWExMTRlZjliMmFhLzEvQUJVS2hnT2dnV0J3MnNiaE9VYTViYWdmY2FjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wZjFiOGYtMWQ0Ny00MmYwLWEwNTAtNWExMTRlZjliMmFh
LzEvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW98xMA0G
CSqGSIb3DQEBCwUAA4IBAQCu4yFgMS2kB5IHJbqCP2GPdqHqCU7eQ7LbqERtb3UF
yDOVZJyNAFletbgtwhjRBftCIDP6B1XvWbNkBbztuGKpN6MMqdvG382eiCxtPTot
MILoaQq5/pg58ddU4Isvrwf8DEbwSqXpZonuGA7QhJmSLR7Ed5NiK2I6dxGsLZs0
2iRbCpXiuvlpepocs1NjM7wf9PCjNNZAsd+Jjct1H5cpaDEDL8X+UMl9pB02URMF
wC7TJWec3ALfRv33neEDZI4daswcs0JAIdvxPxy+DyqNko7MQePa2fgFDp4RdbUC
5tnqx66LqNkYoqnrdHpfFQY0hkJwhucLaXeK66whSxjC
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:10 2024 by rpki-client on console-ams.rpki-client.org