Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/L00-pBw0lLuxBxe5nScojBUsytw.roa
File: L00-pBw0lLuxBxe5nScojBUsytw.roa (raw, json)
Hash identifier: XvhqI+oWkTrAYEXbhDlZsWzbwarL23+tFtD9p9nQMoM=
Subject key identifier: 2F:4D:3E:A4:1C:34:94:BB:B1:07:17:B9:9D:27:28:8C:15:2C:CA:DC
Certificate issuer: /CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Certificate serial: 855F
Authority key identifier: 1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/L00-pBw0lLuxBxe5nScojBUsytw.roa
Signing time: Mon 14 Feb 2022 23:54:50 +0000
ROA not before: Mon 14 Feb 2022 23:54:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 91.200.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34143 (0x855f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e00a55f9d7b75396b4bfa13e78960a5a12f4ef5
Validity
Not Before: Feb 14 23:54:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f4d3ea41c3494bbb10717b99d27288c152ccadc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2d:09:9a:ba:dd:77:74:72:8f:ab:0f:48:0c:
b0:96:68:ed:bf:0b:04:c9:95:7d:d3:81:e2:ef:e3:
32:59:c0:9f:74:32:07:80:a7:2d:0b:b8:68:7f:14:
90:81:37:46:0a:a3:a2:f9:ff:c5:4c:66:b8:32:90:
67:b9:d9:f7:e6:8d:2f:dc:00:d5:2b:f3:c8:bf:7c:
df:24:0a:19:fe:b5:0f:4a:ee:35:ce:24:98:86:2c:
88:4f:bc:a9:67:d8:75:65:f9:7b:37:84:ae:a2:fc:
78:a9:b2:6b:fb:c0:d8:bf:cd:f1:81:7a:b6:5a:2b:
36:5e:3c:b6:65:58:83:f5:a6:53:02:51:72:b0:70:
a5:8d:48:58:ab:24:e8:fd:f8:66:3c:03:1c:d4:a5:
16:bd:a1:f9:7e:d9:5f:00:85:1d:bc:a6:76:34:0c:
d2:da:6a:57:35:cb:3c:1e:71:f1:cf:bc:3e:1d:60:
8b:de:e4:7c:6a:f9:d6:56:18:76:de:36:ff:eb:ea:
92:d7:03:dd:55:81:96:d3:7c:8a:f9:98:77:38:b6:
4b:db:51:45:d7:8d:6c:0c:f1:4b:17:15:39:ae:5c:
33:eb:4b:db:df:9d:47:2c:e5:8b:72:76:f9:8d:e2:
19:29:d7:f3:bf:85:44:0a:ad:42:3d:d3:0b:51:23:
ce:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4D:3E:A4:1C:34:94:BB:B1:07:17:B9:9D:27:28:8C:15:2C:CA:DC
X509v3 Authority Key Identifier:
keyid:1E:00:A5:5F:9D:7B:75:39:6B:4B:FA:13:E7:89:60:A5:A1:2F:4E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgClX517dTlrS_oT54lgpaEvTvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/L00-pBw0lLuxBxe5nScojBUsytw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/681526-863d-4698-b125-cf7edf3f5eac/1/HgClX517dTlrS_oT54lgpaEvTvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.147.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:d9:06:44:ba:ae:5b:a1:a9:de:aa:ff:f1:0f:f9:fc:6f:10:
6b:f3:07:64:4f:e2:6e:ae:8a:22:be:60:3b:2c:8c:2c:44:39:
78:9b:7e:2b:d5:7a:fa:91:d2:32:30:1c:1d:21:ca:f9:0f:93:
c0:30:85:f8:fc:09:be:98:23:7f:f4:64:40:7d:eb:99:8b:b2:
0e:21:bb:c7:be:6a:7e:aa:b5:fe:58:31:8b:88:b8:25:55:eb:
1f:9e:65:81:e8:7b:a6:dc:85:a9:ec:cc:bf:ae:9b:a5:2a:2b:
0e:23:9a:3e:56:b1:15:fc:af:f9:78:d3:98:d2:c9:2f:0a:36:
d9:30:34:6c:2f:31:48:8e:75:17:2a:f8:2a:8a:c6:89:45:99:
08:5b:64:4f:bf:98:2f:96:20:9f:52:fe:e5:56:3b:b4:a6:dd:
f3:df:22:09:0f:3f:50:5f:e5:43:d2:58:3d:fb:e0:c2:32:22:
ce:8d:84:c5:3d:1f:21:ca:dd:60:92:b8:ae:6b:92:27:6c:76:
a8:2a:02:76:a7:79:ba:8b:20:7c:df:b5:ef:3e:ff:d8:42:7e:
3c:0e:be:2b:d0:f7:85:d3:09:4b:fa:20:0e:e0:fe:a5:0a:4a:
b0:1e:f9:e5:6d:ed:c8:82:bf:4d:cf:c8:1e:24:0a:6d:b9:59:
73:45:6a:81
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAIVfMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDFl
MDBhNTVmOWQ3Yjc1Mzk2YjRiZmExM2U3ODk2MGE1YTEyZjRlZjUwHhcNMjIwMjE0
MjM1NDUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygyZjRkM2VhNDFjMzQ5
NGJiYjEwNzE3Yjk5ZDI3Mjg4YzE1MmNjYWRjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzS0Jmrrdd3Ryj6sPSAywlmjtvwsEyZV904Hi7+MyWcCfdDIH
gKctC7hofxSQgTdGCqOi+f/FTGa4MpBnudn35o0v3ADVK/PIv3zfJAoZ/rUPSu41
ziSYhiyIT7ypZ9h1Zfl7N4Suovx4qbJr+8DYv83xgXq2Wis2Xjy2ZViD9aZTAlFy
sHCljUhYqyTo/fhmPAMc1KUWvaH5ftlfAIUdvKZ2NAzS2mpXNcs8HnHxz7w+HWCL
3uR8avnWVhh23jb/6+qS1wPdVYGW03yK+Zh3OLZL21FF141sDPFLFxU5rlwz60vb
351HLOWLcnb5jeIZKdfzv4VECq1CPdMLUSPOJwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFC9NPqQcNJS7sQcXuZ0nKIwVLMrcMB8GA1UdIwQYMBaAFB4ApV+de3U5a0v6
E+eJYKWhL071MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
SGdDbFg1MTdkVGxyU19vVDU0bGdwYUV2VHZVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84NS82ODE1MjYtODYzZC00Njk4LWIxMjUtY2Y3ZWRmM2Y1ZWFjLzEv
TDAwLXBCdzBsTHV4QnhlNW5TY29qQlVzeXR3LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS82
ODE1MjYtODYzZC00Njk4LWIxMjUtY2Y3ZWRmM2Y1ZWFjLzEvSGdDbFg1MTdkVGxy
U19vVDU0bGdwYUV2VHZVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8iTMA0GCSqGSIb3DQEBCwUAA4IB
AQA+2QZEuq5boaneqv/xD/n8bxBr8wdkT+JurooivmA7LIwsRDl4m34r1Xr6kdIy
MBwdIcr5D5PAMIX4/Am+mCN/9GRAfeuZi7IOIbvHvmp+qrX+WDGLiLglVesfnmWB
6Hum3IWp7My/rpulKisOI5o+VrEV/K/5eNOY0skvCjbZMDRsLzFIjnUXKvgqisaJ
RZkIW2RPv5gvliCfUv7lVju0pt3z3yIJDz9QX+VD0lg9++DCMiLOjYTFPR8hyt1g
kriua5InbHaoKgJ2p3m6iyB837XvPv/YQn48Dr4r0PeF0wlL+iAO4P6lCkqwHvnl
be3Igr9Nz8geJAptuVlzRWqB
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:24:59 2025 by rpki-client