Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/CR9GOIvzclz-sWnEAauYr5zV0Xw.roa
File: CR9GOIvzclz-sWnEAauYr5zV0Xw.roa (raw, json)
Hash identifier: TRF1zXzDjOV37pOfe0qUjQVsXiafWgWABNtOG+0zzu0=
Subject key identifier: 09:1F:46:38:8B:F3:72:5C:FE:B1:69:C4:01:AB:98:AF:9C:D5:D1:7C
Certificate issuer: /CN=b0bfd2c85e6b79d460e660cf9664dee55dccc8cc
Certificate serial: B0C5D2
Authority key identifier: B0:BF:D2:C8:5E:6B:79:D4:60:E6:60:CF:96:64:DE:E5:5D:CC:C8:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sL_SyF5redRg5mDPlmTe5V3MyMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/CR9GOIvzclz-sWnEAauYr5zV0Xw.roa
Signing time: Fri 21 Jan 2022 11:58:40 +0000
ROA not before: Fri 21 Jan 2022 11:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56855
IP address blocks: 185.51.100.0/24 maxlen: 24
185.51.101.0/24 maxlen: 24
91.226.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11584978 (0xb0c5d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0bfd2c85e6b79d460e660cf9664dee55dccc8cc
Validity
Not Before: Jan 21 11:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=091f46388bf3725cfeb169c401ab98af9cd5d17c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:81:83:14:cc:b4:e6:4b:c5:30:dd:10:d8:18:
93:db:b4:6f:49:09:53:e7:72:da:ec:f7:71:4d:8d:
81:dc:73:ce:d2:c6:ea:6b:08:f0:67:99:c5:4f:6d:
e5:c4:d5:86:f0:ba:8d:55:c3:0f:e7:fd:55:93:56:
14:a0:78:38:69:dd:86:49:c4:42:c4:bd:b6:7d:65:
22:38:8a:bf:24:27:1a:db:d5:13:eb:75:c6:9c:88:
2c:9f:f4:c1:88:79:ea:5e:93:7a:3c:bc:e1:a6:cf:
31:42:18:69:7c:50:f2:79:ff:ad:11:68:dd:54:1b:
43:8f:88:ae:8f:b3:3c:01:4e:22:2d:26:74:a6:96:
8e:e5:ea:c2:c2:e9:a9:43:24:1f:da:31:33:1f:a2:
84:1c:76:fb:41:9f:84:d3:b4:86:af:d0:88:7d:e1:
45:74:bc:4c:c6:1b:52:76:6f:24:2e:cd:11:32:74:
f1:17:fc:32:b9:7a:10:6a:a6:87:57:54:5d:1b:24:
ba:44:46:01:d5:2c:0f:56:db:29:eb:a4:f6:cf:05:
37:76:2d:5b:da:8c:ee:af:80:52:fa:cb:e9:18:5d:
6b:5f:ab:b0:12:46:d5:d3:cd:aa:3f:84:71:99:f7:
66:fa:1f:b9:73:df:70:89:76:ea:35:df:e4:c6:1f:
b6:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1F:46:38:8B:F3:72:5C:FE:B1:69:C4:01:AB:98:AF:9C:D5:D1:7C
X509v3 Authority Key Identifier:
keyid:B0:BF:D2:C8:5E:6B:79:D4:60:E6:60:CF:96:64:DE:E5:5D:CC:C8:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sL_SyF5redRg5mDPlmTe5V3MyMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/CR9GOIvzclz-sWnEAauYr5zV0Xw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/sL_SyF5redRg5mDPlmTe5V3MyMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.179.0/24
185.51.100.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:1e:c2:7f:9f:8a:ae:77:ae:c8:77:68:ed:08:dd:ed:18:64:
2a:a6:be:f0:1f:21:97:90:86:f0:6c:15:c4:db:0e:c5:79:df:
b3:f0:f8:c6:44:bc:60:01:2a:7f:ca:dd:04:af:ca:83:d6:2c:
f1:54:57:07:b5:b5:b8:ff:44:dc:00:c4:e0:49:11:ab:78:4b:
03:61:af:98:0d:66:50:fa:6b:d5:f2:7a:7e:b6:1c:6a:d3:3e:
7b:c5:93:4b:9f:b1:75:c0:f7:f4:70:d3:32:1d:2a:d8:cc:68:
42:8b:7c:9c:41:07:0f:58:96:83:f0:01:8c:37:5a:12:5f:1d:
f8:59:04:a5:79:fb:ca:e9:e1:37:d7:98:68:e3:62:2b:9e:a3:
9d:16:5a:54:61:a1:3b:04:ff:f7:1e:2d:68:40:1e:ee:89:59:
66:d0:b6:0c:fe:79:55:50:5d:6f:3b:21:71:23:83:88:74:fb:
f8:a1:fc:68:20:67:f0:69:bb:18:8a:85:e4:96:8f:f9:ad:2b:
e4:5f:64:f4:cd:19:85:6c:8e:29:21:22:e7:75:c2:26:15:eb:
2c:51:c7:e4:49:b1:56:66:7a:fc:de:5c:d1:15:6c:93:68:0b:
b4:0a:a7:37:d7:4f:03:71:bf:7b:9a:df:c0:9b:c9:90:20:6c:
fc:1f:38:12
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEALDF0jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MGJmZDJjODVlNmI3OWQ0NjBlNjYwY2Y5NjY0ZGVlNTVkY2NjOGNjMB4XDTIyMDEy
MTExNTg0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDkxZjQ2Mzg4YmYz
NzI1Y2ZlYjE2OWM0MDFhYjk4YWY5Y2Q1ZDE3YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ6BgxTMtOZLxTDdENgYk9u0b0kJU+dy2uz3cU2NgdxzztLG
6msI8GeZxU9t5cTVhvC6jVXDD+f9VZNWFKB4OGndhknEQsS9tn1lIjiKvyQnGtvV
E+t1xpyILJ/0wYh56l6Tejy84abPMUIYaXxQ8nn/rRFo3VQbQ4+Iro+zPAFOIi0m
dKaWjuXqwsLpqUMkH9oxMx+ihBx2+0GfhNO0hq/QiH3hRXS8TMYbUnZvJC7NETJ0
8Rf8Mrl6EGqmh1dUXRskukRGAdUsD1bbKeuk9s8FN3YtW9qM7q+AUvrL6Rhda1+r
sBJG1dPNqj+EcZn3ZvofuXPfcIl26jXf5MYfts0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQJH0Y4i/NyXP6xacQBq5ivnNXRfDAfBgNVHSMEGDAWgBSwv9LIXmt51GDm
YM+WZN7lXczIzDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NMX1N5RjVyZWRSZzVtRFBsbVRlNVYzTXlNdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjMvMjAzYTUzLTA1OGEtNGQ1ZC1hNzYxLWQzNzE4NTU3NTZjMy8x
L0NSOUdPSXZ6Y2x6LXNXbkVBYXVZcjV6VjBYdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjMv
MjAzYTUzLTA1OGEtNGQ1ZC1hNzYxLWQzNzE4NTU3NTZjMy8xL3NMX1N5RjVyZWRS
ZzVtRFBsbVRlNVYzTXlNdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFviswMEAbkzZDANBgkqhkiG9w0B
AQsFAAOCAQEAqh7Cf5+KrneuyHdo7Qjd7RhkKqa+8B8hl5CG8GwVxNsOxXnfs/D4
xkS8YAEqf8rdBK/Kg9Ys8VRXB7W1uP9E3ADE4EkRq3hLA2GvmA1mUPpr1fJ6frYc
atM+e8WTS5+xdcD39HDTMh0q2MxoQot8nEEHD1iWg/ABjDdaEl8d+FkEpXn7yunh
N9eYaONiK56jnRZaVGGhOwT/9x4taEAe7olZZtC2DP55VVBdbzshcSODiHT7+KH8
aCBn8Gm7GIqF5JaP+a0r5F9k9M0ZhWyOKSEi53XCJhXrLFHH5EmxVmZ6/N5c0RVs
k2gLtAqnN9dPA3G/e5rfwJvJkCBs/B84Eg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:38 2024 by rpki-client on console-fra.rpki-client.org