Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/DOrRrbHwEc-EJ-JPUMCQGBp1DIU.roa
File: DOrRrbHwEc-EJ-JPUMCQGBp1DIU.roa (raw, json)
Hash identifier: 9Sytn0mf5lTPyTgcGYOXoIiKtZ8Sv8126PovCK+JvHQ=
Subject key identifier: 0C:EA:D1:AD:B1:F0:11:CF:84:27:E2:4F:50:C0:90:18:1A:75:0C:85
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 01851C9ABF3364DF3D6BC64F2FCE4EA085E1
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/DOrRrbHwEc-EJ-JPUMCQGBp1DIU.roa
Signing time: Fri 16 Dec 2022 20:23:01 +0000
ROA not before: Fri 16 Dec 2022 20:23:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 91.193.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1c:9a:bf:33:64:df:3d:6b:c6:4f:2f:ce:4e:a0:85:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Dec 16 20:23:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cead1adb1f011cf8427e24f50c090181a750c85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d0:03:65:98:48:2b:36:ee:b7:83:5e:03:a8:
10:22:78:c7:22:0b:5f:aa:6a:2b:d8:d8:0e:6b:58:
c5:d8:8e:4c:ae:5c:a9:a5:5d:ed:a9:82:b9:f7:0f:
95:94:55:b8:2e:e5:86:95:68:65:a0:86:20:d4:40:
66:1e:e7:e4:13:57:d1:58:3a:3d:66:35:1c:9a:91:
3f:fb:85:60:4b:b0:f1:9c:fb:a9:b3:72:3a:bf:b7:
24:88:84:04:bd:3d:0a:cd:55:c0:86:71:90:1c:80:
c3:25:a9:2a:cd:6e:30:19:5b:1e:40:20:12:81:94:
eb:97:63:e1:0e:f0:85:67:a8:07:b6:f8:35:b1:59:
3f:eb:76:5b:60:2c:78:16:93:15:09:10:d4:22:2b:
23:6b:33:09:76:27:ff:1f:12:77:44:db:84:54:9b:
37:03:dc:07:4d:54:31:86:48:66:c1:79:3c:05:f3:
bb:8b:3e:a1:cb:04:40:c5:47:c7:3e:a0:2e:e8:48:
76:68:bc:b9:be:8b:63:c4:87:09:9c:30:02:76:19:
b3:ce:69:25:c6:81:82:8e:ca:42:25:08:ac:4d:c0:
aa:16:23:d7:4d:14:d3:29:88:01:59:bf:d3:9a:06:
1a:a4:ca:dd:20:3f:90:9d:3d:2c:8a:e0:a8:31:b4:
51:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:EA:D1:AD:B1:F0:11:CF:84:27:E2:4F:50:C0:90:18:1A:75:0C:85
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/DOrRrbHwEc-EJ-JPUMCQGBp1DIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.233.0/24
Signature Algorithm: sha256WithRSAEncryption
12:62:ff:b9:69:37:88:09:5d:7a:56:8a:74:a9:82:6e:17:2c:
10:f9:49:74:5c:b2:7c:3b:d8:dc:c5:f7:73:bc:69:27:97:88:
9e:ea:22:92:91:d3:f2:cf:59:8b:01:e3:a6:2e:04:96:01:29:
81:fa:4c:b8:b7:60:ee:da:af:31:b9:d9:37:a5:24:70:64:f7:
40:69:29:5b:a4:ea:81:3a:70:4a:7c:59:f7:bc:89:72:fc:b9:
be:09:31:3c:2a:66:72:51:35:e2:15:62:66:f6:ce:71:71:42:
ad:67:a1:ac:fa:b5:46:21:e4:6d:b0:13:e0:b4:63:43:73:31:
28:30:04:d4:17:f2:f9:0d:02:74:57:b8:23:bb:4d:2f:c8:c1:
7f:23:62:73:12:bd:ac:da:fb:31:17:9d:35:da:3a:a3:b2:41:
8d:87:59:ff:66:65:07:18:f9:6a:b6:21:a7:8c:d7:1a:cb:2e:
1a:a5:7e:1c:42:80:a7:7b:97:75:86:81:58:6d:d4:b0:6b:40:
89:d7:c3:e3:c7:5f:5e:7d:3b:81:e8:2f:ce:cc:d8:57:be:69:
02:ae:be:b1:20:5f:4e:cd:78:e3:14:15:ae:42:90:0d:08:97:
5e:fc:ac:b3:5e:ee:60:87:0e:ee:8e:c5:5c:53:6a:95:3c:a8:
41:4e:27:21
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUcmr8zZN89a8ZPL85OoIXhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjZGNjOGJjZGI2Yzc0NGFjZGY0M2RkNzJkNjhkMjA0NTFh
MTc5ZjYwHhcNMjIxMjE2MjAyMzAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwY2VhZDFhZGIxZjAxMWNmODQyN2UyNGY1MGMwOTAxODFhNzUwYzg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodADZZhIKzbut4NeA6gQInjHIgtf
qmor2NgOa1jF2I5MrlyppV3tqYK59w+VlFW4LuWGlWhloIYg1EBmHufkE1fRWDo9
ZjUcmpE/+4VgS7DxnPups3I6v7ckiIQEvT0KzVXAhnGQHIDDJakqzW4wGVseQCAS
gZTrl2PhDvCFZ6gHtvg1sVk/63ZbYCx4FpMVCRDUIisjazMJdif/HxJ3RNuEVJs3
A9wHTVQxhkhmwXk8BfO7iz6hywRAxUfHPqAu6Eh2aLy5votjxIcJnDACdhmzzmkl
xoGCjspCJQisTcCqFiPXTRTTKYgBWb/TmgYapMrdID+QnT0siuCoMbRRZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAzq0a2x8BHPhCfiT1DAkBgadQyFMB8GA1UdIwQY
MBaAFDzcyLzbbHRKzfQ91y1o0gRRoXn2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUE56SXZOdHNkRXJOOUQzWExXalNCRkdoZWZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8zNTY4MjYtZmMxMC00YWE5LTk2YTQt
NjM3YjM3MWRhOGU2LzEvRE9yUnJiSHdFYy1FSi1KUFVNQ1FHQnAxRElVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8zNTY4MjYtZmMxMC00YWE5LTk2YTQtNjM3YjM3MWRhOGU2
LzEvUE56SXZOdHNkRXJOOUQzWExXalNCRkdoZWZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8HpMA0G
CSqGSIb3DQEBCwUAA4IBAQASYv+5aTeICV16Vop0qYJuFywQ+Ul0XLJ8O9jcxfdz
vGknl4ie6iKSkdPyz1mLAeOmLgSWASmB+ky4t2Du2q8xudk3pSRwZPdAaSlbpOqB
OnBKfFn3vIly/Lm+CTE8KmZyUTXiFWJm9s5xcUKtZ6Gs+rVGIeRtsBPgtGNDczEo
MATUF/L5DQJ0V7gju00vyMF/I2JzEr2s2vsxF5012jqjskGNh1n/ZmUHGPlqtiGn
jNcayy4apX4cQoCne5d1hoFYbdSwa0CJ18Pjx19efTuB6C/OzNhXvmkCrr6xIF9O
zXjjFBWuQpANCJde/KyzXu5ghw7ujsVcU2qVPKhBTich
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:28 2023 by rpki-client on console-ams.rpki-client.org