Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7e4ea8-8950-4183-abc0-3382794049c2/1/IIn0F_A2KssXs73wqv6M1AHu04g.roa
File: IIn0F_A2KssXs73wqv6M1AHu04g.roa (raw, json)
Hash identifier: Wgxlt1Ie5F43RNJ71CCO8mrvG2SqJjTCD4zLJ+Yr5os=
Subject key identifier: 20:89:F4:17:F0:36:2A:CB:17:B3:BD:F0:AA:FE:8C:D4:01:EE:D3:88
Certificate issuer: /CN=306b468cc31ef3a3d081ac8f02b271e3147559bf
Certificate serial: 0184334FF9164FE10D1121111FEA8EBED757
Authority key identifier: 30:6B:46:8C:C3:1E:F3:A3:D0:81:AC:8F:02:B2:71:E3:14:75:59:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGtGjMMe86PQgayPArJx4xR1Wb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7e4ea8-8950-4183-abc0-3382794049c2/1/IIn0F_A2KssXs73wqv6M1AHu04g.roa
Signing time: Tue 01 Nov 2022 13:09:49 +0000
ROA not before: Tue 01 Nov 2022 13:09:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43732
IP address blocks: 91.198.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:33:4f:f9:16:4f:e1:0d:11:21:11:1f:ea:8e:be:d7:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=306b468cc31ef3a3d081ac8f02b271e3147559bf
Validity
Not Before: Nov 1 13:09:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2089f417f0362acb17b3bdf0aafe8cd401eed388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6c:55:05:48:96:40:b6:8a:d2:68:af:62:2f:
35:af:0a:bc:5b:52:e6:65:71:f7:cc:60:b7:78:4a:
ba:a8:50:59:9c:0b:33:4a:73:61:f9:54:6f:c6:7a:
41:5d:34:b6:58:24:21:f6:29:f4:6b:dc:c1:53:46:
bb:e6:17:2e:0a:bc:c9:12:07:38:0b:86:34:ca:be:
b0:06:b0:fd:a5:03:5b:da:48:32:38:4f:c6:3b:14:
1b:46:3a:36:57:b0:95:8b:aa:f4:e3:d2:34:df:cc:
e5:a9:28:3e:9a:c6:12:61:c2:5a:37:47:c5:d6:1b:
86:01:0b:40:35:57:3d:5b:55:fc:23:66:1a:45:fe:
a0:b9:76:28:f0:fd:54:86:8f:24:6d:f2:00:3e:91:
c7:9f:db:32:d7:99:2f:3e:35:27:d1:ce:d3:b1:d6:
a9:6e:fc:d1:79:92:cb:42:51:43:d0:49:c8:16:66:
c2:ee:9f:fc:fd:f4:11:53:9e:a4:b3:2b:d8:3a:49:
ab:53:39:1e:dd:0c:66:cd:59:2c:1d:8c:c2:dd:b8:
65:d6:78:64:57:e7:11:4b:35:1d:c3:85:7e:53:12:
49:e5:70:2e:34:b9:b0:9e:f7:b6:50:f0:e8:e2:2d:
9f:5f:4a:10:83:d4:a5:9d:8e:a3:9d:5e:b6:8e:a2:
e7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:89:F4:17:F0:36:2A:CB:17:B3:BD:F0:AA:FE:8C:D4:01:EE:D3:88
X509v3 Authority Key Identifier:
keyid:30:6B:46:8C:C3:1E:F3:A3:D0:81:AC:8F:02:B2:71:E3:14:75:59:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGtGjMMe86PQgayPArJx4xR1Wb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7e4ea8-8950-4183-abc0-3382794049c2/1/IIn0F_A2KssXs73wqv6M1AHu04g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7e4ea8-8950-4183-abc0-3382794049c2/1/MGtGjMMe86PQgayPArJx4xR1Wb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.132.0/24
Signature Algorithm: sha256WithRSAEncryption
71:1a:0e:e1:7a:6b:02:d4:3c:97:82:b6:95:a1:5a:71:eb:c1:
73:b0:8f:0a:04:12:31:1a:db:93:80:34:bf:ec:55:bb:01:ba:
d6:36:88:74:e8:5d:7e:da:1e:f6:ed:65:3e:f0:eb:6e:ea:2e:
6c:7c:c7:c4:4c:47:15:3c:14:ac:d8:f6:25:d4:02:cc:42:92:
c6:8b:47:af:21:e5:60:b5:0f:fc:75:5e:87:e1:39:47:f2:46:
1a:61:d3:cf:b4:6e:86:71:29:c3:e4:f4:ff:25:a0:40:51:40:
8e:c8:b3:65:58:b9:36:57:40:68:3e:07:1e:d8:46:15:ad:d3:
8c:e4:98:fe:3f:7b:76:a6:e8:36:9a:70:da:ff:d0:ed:49:86:
0c:2c:4a:49:c1:6b:42:51:28:41:2f:63:e6:d0:b8:d3:a4:0d:
9d:e7:9f:c3:ad:b5:cd:3b:7c:5c:c4:fa:01:00:80:7f:64:45:
fb:43:46:2d:4d:17:ab:b6:9e:20:36:ce:ff:25:8f:66:8d:52:
65:eb:b6:69:20:2d:c0:cf:ab:7d:d7:42:55:9a:af:d9:35:db:
f6:64:dc:ca:bf:a1:35:08:04:60:e2:98:4d:e5:b1:ee:6c:42:
15:13:54:15:cd:a9:b6:35:1b:b1:55:c6:ac:0f:97:45:fe:65:
8b:84:86:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQzT/kWT+ENESERH+qOvtdXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwNmI0NjhjYzMxZWYzYTNkMDgxYWM4ZjAyYjI3MWUzMTQ3
NTU5YmYwHhcNMjIxMTAxMTMwOTQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDg5ZjQxN2YwMzYyYWNiMTdiM2JkZjBhYWZlOGNkNDAxZWVkMzg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlmxVBUiWQLaK0mivYi81rwq8W1Lm
ZXH3zGC3eEq6qFBZnAszSnNh+VRvxnpBXTS2WCQh9in0a9zBU0a75hcuCrzJEgc4
C4Y0yr6wBrD9pQNb2kgyOE/GOxQbRjo2V7CVi6r049I038zlqSg+msYSYcJaN0fF
1huGAQtANVc9W1X8I2YaRf6guXYo8P1Uho8kbfIAPpHHn9sy15kvPjUn0c7Tsdap
bvzReZLLQlFD0EnIFmbC7p/8/fQRU56ksyvYOkmrUzke3QxmzVksHYzC3bhl1nhk
V+cRSzUdw4V+UxJJ5XAuNLmwnve2UPDo4i2fX0oQg9SlnY6jnV62jqLnQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCCJ9BfwNirLF7O98Kr+jNQB7tOIMB8GA1UdIwQY
MBaAFDBrRozDHvOj0IGsjwKyceMUdVm/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUd0R2pNTWU4NlBRZ2F5UEFySng0eFIxV2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC83ZTRlYTgtODk1MC00MTgzLWFiYzAt
MzM4Mjc5NDA0OWMyLzEvSUluMEZfQTJLc3NYczczd3F2Nk0xQUh1MDRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC83ZTRlYTgtODk1MC00MTgzLWFiYzAtMzM4Mjc5NDA0OWMy
LzEvTUd0R2pNTWU4NlBRZ2F5UEFySng0eFIxV2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8aEMA0G
CSqGSIb3DQEBCwUAA4IBAQBxGg7hemsC1DyXgraVoVpx68FzsI8KBBIxGtuTgDS/
7FW7AbrWNoh06F1+2h727WU+8Otu6i5sfMfETEcVPBSs2PYl1ALMQpLGi0evIeVg
tQ/8dV6H4TlH8kYaYdPPtG6GcSnD5PT/JaBAUUCOyLNlWLk2V0BoPgce2EYVrdOM
5Jj+P3t2pug2mnDa/9DtSYYMLEpJwWtCUShBL2Pm0LjTpA2d55/DrbXNO3xcxPoB
AIB/ZEX7Q0YtTRertp4gNs7/JY9mjVJl67ZpIC3Az6t910JVmq/ZNdv2ZNzKv6E1
CARg4phN5bHubEIVE1QVzam2NRuxVcasD5dF/mWLhIby
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:06 2024 by rpki-client on console-fra.rpki-client.org