Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/3JLVdZPNzNJeVQdobaO1u6BZEPU.roa
File: 3JLVdZPNzNJeVQdobaO1u6BZEPU.roa (raw, json)
Hash identifier: Fr+f7w1pEeDMK3k4C7hpaZ2YkogdEGKF9LjuTB3AYu4=
Subject key identifier: DC:92:D5:75:93:CD:CC:D2:5E:55:07:68:6D:A3:B5:BB:A0:59:10:F5
Certificate issuer: /CN=5134d1320645644e2eaf3685879d693f72522c76
Certificate serial: 048426B2
Authority key identifier: 51:34:D1:32:06:45:64:4E:2E:AF:36:85:87:9D:69:3F:72:52:2C:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTTRMgZFZE4urzaFh51pP3JSLHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/3JLVdZPNzNJeVQdobaO1u6BZEPU.roa
Signing time: Sat 01 Jan 2022 06:53:23 +0000
ROA not before: Sat 01 Jan 2022 06:53:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 91.194.104.0/23 maxlen: 24
91.194.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75769522 (0x48426b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5134d1320645644e2eaf3685879d693f72522c76
Validity
Not Before: Jan 1 06:53:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc92d57593cdccd25e5507686da3b5bba05910f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:91:54:5c:45:af:27:62:b0:55:86:14:b4:e1:
24:2b:2c:ab:00:8a:81:1e:2f:2d:bf:f6:ba:6f:bd:
31:df:b3:97:4b:cf:b5:72:4a:d4:3d:2d:58:8c:8f:
cf:a4:8e:eb:c3:f8:fc:86:c7:6a:9e:2a:c1:6e:9f:
1d:a2:ab:62:5c:1f:13:7e:0e:5b:16:61:8b:16:dd:
fa:85:ca:7b:43:19:74:15:69:25:79:5f:5a:ab:b6:
1a:dd:7c:91:a7:0b:c6:a3:40:47:0a:d9:8d:4f:6a:
24:f0:3f:c7:c3:ea:af:a7:25:86:75:29:40:30:80:
50:9e:a4:27:84:29:23:65:4c:56:24:e1:d3:fe:78:
c1:92:09:46:57:de:f5:86:6b:be:50:bf:55:79:37:
ef:3b:a1:59:3d:07:71:1b:2e:e8:67:a5:fb:ac:1d:
79:b8:9d:c6:1e:e8:bf:63:19:de:31:60:fb:13:d1:
47:31:d4:70:3e:cc:9e:74:45:7f:13:60:f2:fe:ce:
5b:04:1d:7f:be:c5:80:5d:56:83:e8:a1:07:cf:a1:
f5:b4:a1:3d:d2:08:57:7e:7b:56:49:57:f5:20:43:
f6:c5:14:47:d8:ea:25:05:48:1e:10:81:9f:bb:52:
fa:ff:6c:21:ed:02:87:90:9d:8b:7e:ac:e2:9b:84:
58:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:92:D5:75:93:CD:CC:D2:5E:55:07:68:6D:A3:B5:BB:A0:59:10:F5
X509v3 Authority Key Identifier:
keyid:51:34:D1:32:06:45:64:4E:2E:AF:36:85:87:9D:69:3F:72:52:2C:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTTRMgZFZE4urzaFh51pP3JSLHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/3JLVdZPNzNJeVQdobaO1u6BZEPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/UTTRMgZFZE4urzaFh51pP3JSLHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.25.0/24
91.194.104.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:df:f2:19:0a:25:e1:2c:ca:4c:ca:7b:8d:ac:4f:0f:52:2d:
5a:4f:86:92:9b:6a:87:d7:41:75:0f:52:e2:67:cc:5d:7e:8f:
2d:20:24:38:67:34:59:b4:38:c8:0c:93:64:31:fa:4e:86:03:
1c:e9:1f:f6:ec:62:e7:f4:e4:1c:2c:d6:3a:a2:b6:f8:6a:27:
0a:0f:1b:d6:36:b8:35:0a:03:31:16:f3:d8:7f:6b:1c:19:19:
6f:9d:54:d0:26:2e:e3:be:a6:74:1c:cc:89:c4:bd:c1:9a:b5:
58:ad:18:d3:9f:f7:93:02:c2:9b:9b:67:30:3c:80:bd:a7:05:
ab:86:8c:92:9c:18:70:cb:6c:85:d5:72:f2:66:ba:22:8a:e8:
fc:ff:0f:bd:08:4e:1b:1f:5b:d5:e3:73:bd:e5:15:e9:8a:9c:
2c:ee:b7:b9:b7:e2:ad:43:89:c2:27:2f:38:58:74:b8:af:93:
42:9a:b0:8a:a0:70:47:80:d9:c3:ca:a4:7f:56:fb:a6:54:87:
db:f2:16:c4:05:0c:45:2b:fa:b4:8f:9f:8d:0d:ab:1d:93:1d:
64:68:be:e3:a7:e2:78:96:95:7f:a8:5a:56:bc:e6:4e:b4:7f:
b0:f3:73:3f:8c:13:20:5c:8b:4b:59:53:6d:44:9b:ec:33:89:
83:b0:d8:45
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBIQmsjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MTM0ZDEzMjA2NDU2NDRlMmVhZjM2ODU4NzlkNjkzZjcyNTIyYzc2MB4XDTIyMDEw
MTA2NTMyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGM5MmQ1NzU5M2Nk
Y2NkMjVlNTUwNzY4NmRhM2I1YmJhMDU5MTBmNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKiRVFxFrydisFWGFLThJCssqwCKgR4vLb/2um+9Md+zl0vP
tXJK1D0tWIyPz6SO68P4/IbHap4qwW6fHaKrYlwfE34OWxZhixbd+oXKe0MZdBVp
JXlfWqu2Gt18kacLxqNARwrZjU9qJPA/x8Pqr6clhnUpQDCAUJ6kJ4QpI2VMViTh
0/54wZIJRlfe9YZrvlC/VXk37zuhWT0HcRsu6Gel+6wdebidxh7ov2MZ3jFg+xPR
RzHUcD7MnnRFfxNg8v7OWwQdf77FgF1Wg+ihB8+h9bShPdIIV357VklX9SBD9sUU
R9jqJQVIHhCBn7tS+v9sIe0Ch5Cdi36s4puEWBECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTcktV1k83M0l5VB2hto7W7oFkQ9TAfBgNVHSMEGDAWgBRRNNEyBkVkTi6v
NoWHnWk/clIsdjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1VUVFJNZ1pGWkU0dXJ6YUZoNTFwUDNKU0xIWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2EvOWZiMWQ3LTg0MjQtNGM4NC1iMGNiLTJmNTFlY2QxYWEwZS8x
LzNKTFZkWlBOek5KZVZRZG9iYU8xdTZCWkVQVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Ev
OWZiMWQ3LTg0MjQtNGM4NC1iMGNiLTJmNTFlY2QxYWEwZS8xL1VUVFJNZ1pGWkU0
dXJ6YUZoNTFwUDNKU0xIWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvCGQMEAVvCaDANBgkqhkiG9w0B
AQsFAAOCAQEAbN/yGQol4SzKTMp7jaxPD1ItWk+Gkptqh9dBdQ9S4mfMXX6PLSAk
OGc0WbQ4yAyTZDH6ToYDHOkf9uxi5/TkHCzWOqK2+GonCg8b1ja4NQoDMRbz2H9r
HBkZb51U0CYu476mdBzMicS9wZq1WK0Y05/3kwLCm5tnMDyAvacFq4aMkpwYcMts
hdVy8ma6Ioro/P8PvQhOGx9b1eNzveUV6YqcLO63ubfirUOJwicvOFh0uK+TQpqw
iqBwR4DZw8qkf1b7plSH2/IWxAUMRSv6tI+fjQ2rHZMdZGi+46fieJaVf6haVrzm
TrR/sPNzP4wTIFyLS1lTbUSb7DOJg7DYRQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:19 2024 by rpki-client on console-ams.rpki-client.org