Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/3997ea-204a-4efd-85d6-2d7fd0fb22ce/1/f9BepMBXX5ze2Vm9Se_7vifY2mQ.roa
File: f9BepMBXX5ze2Vm9Se_7vifY2mQ.roa (raw, json)
Hash identifier: 9L2b2Z4+Yz1HYlZIUjpzbj9uKNMfHKsSo/FNTz81npI=
Subject key identifier: 7F:D0:5E:A4:C0:57:5F:9C:DE:D9:59:BD:49:EF:FB:BE:27:D8:DA:64
Certificate issuer: /CN=4bd2b3f31a6b0a5d7c0698a37796a51d7b0cb6a4
Certificate serial: 073B0AB0
Authority key identifier: 4B:D2:B3:F3:1A:6B:0A:5D:7C:06:98:A3:77:96:A5:1D:7B:0C:B6:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S9Kz8xprCl18Bpijd5alHXsMtqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/3997ea-204a-4efd-85d6-2d7fd0fb22ce/1/f9BepMBXX5ze2Vm9Se_7vifY2mQ.roa
Signing time: Sat 01 Jan 2022 07:02:25 +0000
ROA not before: Sat 01 Jan 2022 07:02:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205132
IP address blocks: 91.216.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121309872 (0x73b0ab0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bd2b3f31a6b0a5d7c0698a37796a51d7b0cb6a4
Validity
Not Before: Jan 1 07:02:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fd05ea4c0575f9cded959bd49effbbe27d8da64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:81:b8:ad:9f:80:03:f7:86:4e:62:06:d5:7c:
30:9b:1d:d4:3e:0f:9c:b2:7c:b9:8f:a1:11:fb:c3:
89:64:14:3b:3a:8e:a7:d4:3c:ca:a6:a7:6d:50:02:
15:5a:fa:d5:42:3f:6c:df:43:34:7b:87:6c:73:2f:
f9:8e:1b:03:70:48:6d:d0:a9:12:4b:ef:bf:cb:62:
dd:a7:af:cc:80:c3:eb:4b:56:cf:e9:72:e2:af:8c:
01:7a:cb:05:6f:e1:6d:f5:54:f1:66:93:58:e0:02:
b8:27:ce:ef:d5:2a:1a:15:ee:89:aa:f7:4d:8f:52:
23:f5:b1:ee:2e:73:aa:a6:35:24:24:0f:3e:2a:2f:
86:96:05:26:85:28:46:25:31:e3:8f:a4:e1:66:92:
0f:19:e9:68:e9:0d:9f:9e:10:fc:5e:4d:81:8c:dd:
69:07:f8:ff:25:10:2b:85:eb:b0:95:fe:5d:b9:27:
7f:4e:23:17:f5:b6:d3:2a:91:60:75:1c:17:b7:c9:
9c:34:3e:15:d2:58:23:66:f7:8a:dc:3a:c9:ac:8a:
34:7e:a9:7c:51:72:b2:b3:bd:88:8a:ed:d4:93:49:
47:85:80:4b:4d:58:fe:98:2e:f2:d3:1d:e0:2a:dd:
79:ee:73:de:c4:a6:1d:e2:01:31:66:2c:49:b0:90:
1c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:D0:5E:A4:C0:57:5F:9C:DE:D9:59:BD:49:EF:FB:BE:27:D8:DA:64
X509v3 Authority Key Identifier:
keyid:4B:D2:B3:F3:1A:6B:0A:5D:7C:06:98:A3:77:96:A5:1D:7B:0C:B6:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S9Kz8xprCl18Bpijd5alHXsMtqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3997ea-204a-4efd-85d6-2d7fd0fb22ce/1/f9BepMBXX5ze2Vm9Se_7vifY2mQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3997ea-204a-4efd-85d6-2d7fd0fb22ce/1/S9Kz8xprCl18Bpijd5alHXsMtqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.174.0/24
Signature Algorithm: sha256WithRSAEncryption
20:6a:dc:5a:02:8f:ab:41:49:5f:51:9a:e8:56:87:16:50:9a:
d0:37:db:be:12:b2:f1:70:28:ec:9f:b3:84:93:4b:ee:f3:4e:
be:db:2b:ba:1c:6f:21:7d:7f:40:0d:2f:c7:fa:4d:e3:cf:60:
08:ea:cb:53:3b:fd:d8:89:78:0c:65:3e:e4:89:77:6b:60:92:
57:56:94:eb:63:a9:ea:2d:97:5a:89:66:46:fe:40:fc:8d:c7:
54:3e:9c:5c:a3:43:63:82:31:09:f1:19:a9:a1:4e:a5:5d:69:
99:1a:36:05:fc:b3:a1:d6:16:76:86:2a:3b:b4:5a:a3:18:b0:
d0:0b:6c:f9:1f:fd:db:57:24:08:e3:78:70:63:01:9f:11:b0:
a7:18:83:59:52:cd:d2:4d:84:46:5e:46:dc:8e:3f:28:72:f1:
51:dd:4f:8a:d4:96:5b:1d:00:3e:27:f9:38:4d:b1:e3:c0:25:
3a:25:61:e9:94:03:fe:ff:70:8d:9b:69:ff:f7:16:df:32:0e:
4a:9e:0a:c7:df:80:e2:45:28:aa:1b:9f:df:4d:8c:29:11:56:
7f:b0:8f:7b:d7:f9:94:30:97:9d:e0:ca:14:7a:8c:e2:cc:e4:
76:a6:67:d4:a3:47:40:7b:27:e6:6a:c6:10:67:76:72:62:3e:
2b:03:c7:d4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBzsKsDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
YmQyYjNmMzFhNmIwYTVkN2MwNjk4YTM3Nzk2YTUxZDdiMGNiNmE0MB4XDTIyMDEw
MTA3MDIyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2ZkMDVlYTRjMDU3
NWY5Y2RlZDk1OWJkNDllZmZiYmUyN2Q4ZGE2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK+BuK2fgAP3hk5iBtV8MJsd1D4PnLJ8uY+hEfvDiWQUOzqO
p9Q8yqanbVACFVr61UI/bN9DNHuHbHMv+Y4bA3BIbdCpEkvvv8ti3aevzIDD60tW
z+ly4q+MAXrLBW/hbfVU8WaTWOACuCfO79UqGhXuiar3TY9SI/Wx7i5zqqY1JCQP
PiovhpYFJoUoRiUx44+k4WaSDxnpaOkNn54Q/F5NgYzdaQf4/yUQK4XrsJX+Xbkn
f04jF/W20yqRYHUcF7fJnDQ+FdJYI2b3itw6yayKNH6pfFFysrO9iIrt1JNJR4WA
S01Y/pgu8tMd4Crdee5z3sSmHeIBMWYsSbCQHBUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR/0F6kwFdfnN7ZWb1J7/u+J9jaZDAfBgNVHSMEGDAWgBRL0rPzGmsKXXwG
mKN3lqUdewy2pDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1M5S3o4eHByQ2wxOEJwaWpkNWFsSFhzTXRxUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODcvMzk5N2VhLTIwNGEtNGVmZC04NWQ2LTJkN2ZkMGZiMjJjZS8x
L2Y5QmVwTUJYWDV6ZTJWbTlTZV83dmlmWTJtUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcv
Mzk5N2VhLTIwNGEtNGVmZC04NWQ2LTJkN2ZkMGZiMjJjZS8xL1M5S3o4eHByQ2wx
OEJwaWpkNWFsSFhzTXRxUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvYrjANBgkqhkiG9w0BAQsFAAOC
AQEAIGrcWgKPq0FJX1Ga6FaHFlCa0DfbvhKy8XAo7J+zhJNL7vNOvtsruhxvIX1/
QA0vx/pN489gCOrLUzv92Il4DGU+5Il3a2CSV1aU62Op6i2XWolmRv5A/I3HVD6c
XKNDY4IxCfEZqaFOpV1pmRo2BfyzodYWdoYqO7Raoxiw0Ats+R/921ckCON4cGMB
nxGwpxiDWVLN0k2ERl5G3I4/KHLxUd1PitSWWx0APif5OE2x48AlOiVh6ZQD/v9w
jZtp//cW3zIOSp4Kx9+A4kUoqhuf302MKRFWf7CPe9f5lDCXneDKFHqM4szkdqZn
1KNHQHsn5mrGEGd2cmI+KwPH1A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:43 2024 by rpki-client on console-ams.rpki-client.org