Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/pb2RiMNCkW0wAIX7GkgeLHky6RM.roa
File: pb2RiMNCkW0wAIX7GkgeLHky6RM.roa (raw, json)
Hash identifier: faY/aEbdikSHqMp/iAr+whZmXgt9tvfyCDlVf8jAV9Y=
Subject key identifier: A5:BD:91:88:C3:42:91:6D:30:00:85:FB:1A:48:1E:2C:79:32:E9:13
Certificate issuer: /CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95
Certificate serial: 0507E977
Authority key identifier: 2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/pb2RiMNCkW0wAIX7GkgeLHky6RM.roa
Signing time: Sat 01 Jan 2022 08:56:45 +0000
ROA not before: Sat 01 Jan 2022 08:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43477
IP address blocks: 91.198.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84404599 (0x507e977)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95
Validity
Not Before: Jan 1 08:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5bd9188c342916d300085fb1a481e2c7932e913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7b:7f:b7:a8:8b:cc:63:a9:be:83:ba:2a:29:
a6:40:3a:e8:6b:31:1c:e4:72:17:17:b5:bb:04:46:
a5:06:31:9c:de:16:6f:f9:4b:d9:58:a7:b8:d1:d5:
26:8d:d8:eb:d2:73:14:d6:e8:5e:ef:61:a0:4e:42:
5b:91:d5:15:0a:ef:33:fd:a3:12:fb:58:ef:fc:88:
3f:0e:28:d4:b8:61:7b:8c:ce:de:c8:7a:9a:85:5e:
9f:26:51:e0:d6:c2:d0:fc:b4:7e:77:f1:5f:3a:fc:
4f:fa:23:67:61:5d:48:a8:7c:cd:1d:f3:13:ee:6b:
1b:50:da:79:99:51:8d:49:f1:5e:50:66:6f:50:8d:
a9:45:4b:2f:25:f5:f0:31:f0:4d:24:d1:c7:ae:27:
5c:3d:21:d1:85:22:a3:7b:c4:61:4a:4e:98:cf:bd:
0a:5e:cc:0a:68:46:52:48:79:62:78:1d:29:27:e3:
a3:57:32:d8:75:65:fa:83:e5:9b:2f:0f:19:31:57:
aa:b3:d5:66:bf:69:1c:0c:05:8c:79:20:51:03:4c:
ae:7c:08:da:00:33:64:37:c1:0e:3f:3c:17:ce:eb:
e8:11:53:20:33:de:63:21:61:f0:7b:72:7b:4b:e0:
7f:82:b6:7f:72:eb:16:30:30:bb:88:2e:1b:03:a9:
42:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:BD:91:88:C3:42:91:6D:30:00:85:FB:1A:48:1E:2C:79:32:E9:13
X509v3 Authority Key Identifier:
keyid:2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/pb2RiMNCkW0wAIX7GkgeLHky6RM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/Kz1duQDggbIT6h8HHsXAA0em_ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.173.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:02:22:ed:fd:44:5d:4c:a7:4d:e7:a1:59:45:77:ba:b9:6f:
ee:d5:94:6c:bf:71:4c:ba:b3:fa:9c:42:d2:12:59:b8:52:08:
f8:2b:b4:12:82:d8:39:51:4d:88:4f:ce:98:a6:10:a9:22:1b:
0a:ed:35:c0:49:96:fb:5b:2d:d8:33:d2:08:f0:b1:3a:8d:81:
8b:86:50:cd:f0:12:ab:06:ce:fe:b1:a3:3a:28:78:a0:52:a1:
2a:eb:98:87:b9:30:82:09:48:c1:a1:d7:23:ed:e0:6a:6e:a9:
c9:2b:59:ce:04:e0:1a:e8:72:63:df:dd:ac:03:3b:db:b0:02:
74:e4:21:dd:54:d0:5c:e1:d8:b7:73:90:af:74:6c:dc:24:62:
84:6c:3e:64:f2:f6:cd:76:8e:31:3e:6e:9f:12:16:3a:f6:98:
14:e8:bf:3c:5a:2d:28:f9:b0:fb:7b:92:22:fa:d9:3c:45:db:
8d:0e:b3:22:44:dd:ec:65:17:d1:99:5b:aa:3b:ce:d2:80:e8:
95:74:19:f4:c3:f1:42:63:3e:65:1b:de:56:68:3b:11:f9:e2:
9e:b8:b3:41:29:23:0b:7e:cf:50:b3:17:b7:fe:1b:46:6c:97:
f6:94:a5:ad:0b:53:86:3c:bb:b5:fb:7d:cb:f2:8e:84:5f:ce:
52:d4:f4:c0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBQfpdzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YjNkNWRiOTAwZTA4MWIyMTNlYTFmMDcxZWM1YzAwMzQ3YTZmZDk1MB4XDTIyMDEw
MTA4NTY0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTViZDkxODhjMzQy
OTE2ZDMwMDA4NWZiMWE0ODFlMmM3OTMyZTkxMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALd7f7eoi8xjqb6DuioppkA66GsxHORyFxe1uwRGpQYxnN4W
b/lL2VinuNHVJo3Y69JzFNboXu9hoE5CW5HVFQrvM/2jEvtY7/yIPw4o1Lhhe4zO
3sh6moVenyZR4NbC0Py0fnfxXzr8T/ojZ2FdSKh8zR3zE+5rG1DaeZlRjUnxXlBm
b1CNqUVLLyX18DHwTSTRx64nXD0h0YUio3vEYUpOmM+9Cl7MCmhGUkh5YngdKSfj
o1cy2HVl+oPlmy8PGTFXqrPVZr9pHAwFjHkgUQNMrnwI2gAzZDfBDj88F87r6BFT
IDPeYyFh8Htye0vgf4K2f3LrFjAwu4guGwOpQg0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSlvZGIw0KRbTAAhfsaSB4seTLpEzAfBgNVHSMEGDAWgBQrPV25AOCBshPq
HwcexcADR6b9lTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0t6MWR1UURnZ2JJVDZoOEhIc1hBQTBlbV9aVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvNjVmOGUyLWY0ZWQtNDI0ZC05YjkxLTQ3ZGQwYzA0YjU1MC8x
L3BiMlJpTU5Da1cwd0FJWDdHa2dlTEhreTZSTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
NjVmOGUyLWY0ZWQtNDI0ZC05YjkxLTQ3ZGQwYzA0YjU1MC8xL0t6MWR1UURnZ2JJ
VDZoOEhIc1hBQTBlbV9aVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvGrTANBgkqhkiG9w0BAQsFAAOC
AQEACgIi7f1EXUynTeehWUV3urlv7tWUbL9xTLqz+pxC0hJZuFII+Cu0EoLYOVFN
iE/OmKYQqSIbCu01wEmW+1st2DPSCPCxOo2Bi4ZQzfASqwbO/rGjOih4oFKhKuuY
h7kwgglIwaHXI+3gam6pyStZzgTgGuhyY9/drAM727ACdOQh3VTQXOHYt3OQr3Rs
3CRihGw+ZPL2zXaOMT5unxIWOvaYFOi/PFotKPmw+3uSIvrZPEXbjQ6zIkTd7GUX
0ZlbqjvO0oDolXQZ9MPxQmM+ZRveVmg7EfninrizQSkjC37PULMXt/4bRmyX9pSl
rQtThjy7tft9y/KOhF/OUtT0wA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:41 2024 by rpki-client on console-ams.rpki-client.org