Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/kJ0nNlzKZfzO8WVrevTuMBWDjVU.roa
File: kJ0nNlzKZfzO8WVrevTuMBWDjVU.roa (raw, json)
Hash identifier: abSFZ6nkHz/E35KLFI/Q1BqkPo1K8Qz9W+Z6K6kn+5o=
Subject key identifier: 90:9D:27:36:5C:CA:65:FC:CE:F1:65:6B:7A:F4:EE:30:15:83:8D:55
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 050F81A2
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/kJ0nNlzKZfzO8WVrevTuMBWDjVU.roa
Signing time: Thu 12 May 2022 03:16:02 +0000
ROA not before: Thu 12 May 2022 03:16:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 91.213.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84902306 (0x50f81a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: May 12 03:16:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=909d27365cca65fccef1656b7af4ee3015838d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:58:b2:08:9f:fb:26:28:04:b3:37:70:5f:5f:
01:65:3c:c9:a7:64:6b:3b:a4:6d:7c:9a:03:00:53:
bc:a0:c6:43:1f:d3:5b:a9:7d:4a:e4:8d:ba:ae:33:
db:50:af:b4:ef:2c:48:08:52:77:51:07:aa:70:4f:
36:25:21:c5:8e:27:f5:5e:2c:ce:8d:c5:a1:1b:76:
28:55:52:41:33:30:75:4c:d7:23:e6:ec:d7:5a:eb:
48:6a:ef:7b:5c:48:ab:8a:c7:e7:a2:2a:5e:51:e8:
b4:69:ce:bc:47:95:a1:3b:c7:dc:1a:b5:e7:ca:b3:
4d:81:73:61:3e:df:f7:25:76:9b:a0:ef:f9:39:a4:
2d:ce:e3:b2:4b:d2:d4:0b:dc:3c:46:1d:3a:58:81:
b1:22:3c:c5:ba:e9:84:83:fa:40:9d:7c:dc:37:5f:
a7:cb:fc:72:e1:4e:6b:4d:aa:b0:37:35:60:e3:30:
15:6e:ca:f7:3e:d2:db:c3:0a:ef:c1:18:87:bb:52:
b3:e5:af:10:d6:3f:d8:6f:30:f7:c5:6c:8a:c9:e4:
f1:b3:91:22:83:80:fb:5c:97:4d:05:86:0c:bd:81:
24:55:71:da:29:af:4b:6c:c4:a3:0d:0a:2c:89:01:
44:85:4e:fc:18:a0:30:01:b5:cc:88:00:a1:df:51:
37:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:9D:27:36:5C:CA:65:FC:CE:F1:65:6B:7A:F4:EE:30:15:83:8D:55
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/kJ0nNlzKZfzO8WVrevTuMBWDjVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.174.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:d8:86:6c:9e:4f:d2:ce:49:a9:f6:b4:72:7a:bd:90:69:f5:
01:df:15:a5:57:c1:43:af:ae:8f:a3:f3:a6:8e:c7:39:6d:f3:
fc:4e:10:8a:b7:62:28:f1:58:a2:b1:f6:70:8c:1a:bf:2d:dc:
de:0a:92:7e:13:45:96:38:8e:d8:a8:57:1c:7c:08:d9:37:68:
c9:06:46:cf:83:be:a9:88:5a:48:b8:10:a8:66:4f:b3:ea:7f:
57:b8:d1:29:47:dd:e3:ba:1f:a4:90:af:b4:b4:1d:5c:9d:38:
1b:61:23:da:76:e0:a7:9c:00:94:82:2e:0b:6a:c4:3b:32:dd:
2d:82:32:01:b5:ad:64:4d:ed:db:f1:60:d2:a7:cb:57:07:6e:
b3:b7:be:4a:bd:e1:c1:69:31:d1:86:f7:da:b0:f0:d0:3f:c7:
7c:fe:0d:6b:62:9a:b5:13:eb:eb:53:25:40:4b:1c:ff:6e:6e:
ee:0e:c9:fb:0d:88:bc:41:9a:85:dd:a0:04:e8:f4:2e:1b:49:
16:73:9a:8f:7f:59:f7:c0:53:cf:1d:e2:8f:ef:e0:f4:e9:32:
9b:ae:3b:83:b9:77:93:61:b7:55:de:e8:a6:e5:77:bb:8b:05:
c2:29:b8:ac:4e:4f:1a:1c:cc:47:79:29:14:99:05:2a:6f:f2:
2c:3d:f5:14
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBQ+BojANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZjQ3MzgzODljYjNiOTk4ZWM0ZmE2ZDQyNzJmOGRkNzk5ZmJjNGE5MB4XDTIyMDUx
MjAzMTYwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTA5ZDI3MzY1Y2Nh
NjVmY2NlZjE2NTZiN2FmNGVlMzAxNTgzOGQ1NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJJYsgif+yYoBLM3cF9fAWU8yadkazukbXyaAwBTvKDGQx/T
W6l9SuSNuq4z21CvtO8sSAhSd1EHqnBPNiUhxY4n9V4szo3FoRt2KFVSQTMwdUzX
I+bs11rrSGrve1xIq4rH56IqXlHotGnOvEeVoTvH3Bq158qzTYFzYT7f9yV2m6Dv
+TmkLc7jskvS1AvcPEYdOliBsSI8xbrphIP6QJ183Ddfp8v8cuFOa02qsDc1YOMw
FW7K9z7S28MK78EYh7tSs+WvENY/2G8w98Vsisnk8bORIoOA+1yXTQWGDL2BJFVx
2imvS2zEow0KLIkBRIVO/BigMAG1zIgAod9RN70CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQnSc2XMpl/M7xZWt69O4wFYONVTAfBgNVHSMEGDAWgBQfRzg4nLO5mOxP
ptQnL43XmfvEqTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0gwYzRPSnl6dVpqc1Q2YlVKeS1OMTVuN3hLay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvNTE3Njk0LWM4YTEtNDU4Yi05Y2YyLTZjN2U1Njg1ODkwYy8x
L2tKMG5ObHpLWmZ6TzhXVnJldlR1TUJXRGpWVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
NTE3Njk0LWM4YTEtNDU4Yi05Y2YyLTZjN2U1Njg1ODkwYy8xL0gwYzRPSnl6dVpq
c1Q2YlVKeS1OMTVuN3hLay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvVrjANBgkqhkiG9w0BAQsFAAOC
AQEAPtiGbJ5P0s5Jqfa0cnq9kGn1Ad8VpVfBQ6+uj6Pzpo7HOW3z/E4QirdiKPFY
orH2cIwavy3c3gqSfhNFljiO2KhXHHwI2TdoyQZGz4O+qYhaSLgQqGZPs+p/V7jR
KUfd47ofpJCvtLQdXJ04G2Ej2nbgp5wAlIIuC2rEOzLdLYIyAbWtZE3t2/Fg0qfL
Vwdus7e+Sr3hwWkx0Yb32rDw0D/HfP4Na2KatRPr61MlQEsc/25u7g7J+w2IvEGa
hd2gBOj0LhtJFnOaj39Z98BTzx3ij+/g9Okym647g7l3k2G3Vd7opuV3u4sFwim4
rE5PGhzMR3kpFJkFKm/yLD31FA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-ams.rpki-client.org