Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2ee71b-8ffe-4eb6-9434-cf3c1a79e634/1/AndtYZna8dymhmF8qDs7UQNLewc.roa
File: AndtYZna8dymhmF8qDs7UQNLewc.roa (raw, json)
Hash identifier: Iq6alJ40AsWpZODx9m1DxQSg16tx667r6NeYZMrF8hM=
Subject key identifier: 02:77:6D:61:99:DA:F1:DC:A6:86:61:7C:A8:3B:3B:51:03:4B:7B:07
Certificate issuer: /CN=10b43613535ffaa73d9acc503c71a28fa17b3839
Certificate serial: 8206
Authority key identifier: 10:B4:36:13:53:5F:FA:A7:3D:9A:CC:50:3C:71:A2:8F:A1:7B:38:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ELQ2E1Nf-qc9msxQPHGij6F7ODk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2ee71b-8ffe-4eb6-9434-cf3c1a79e634/1/AndtYZna8dymhmF8qDs7UQNLewc.roa
Signing time: Thu 19 May 2022 19:05:01 +0000
ROA not before: Thu 19 May 2022 19:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49772
IP address blocks: 91.213.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33286 (0x8206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10b43613535ffaa73d9acc503c71a28fa17b3839
Validity
Not Before: May 19 19:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02776d6199daf1dca686617ca83b3b51034b7b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:80:5a:e3:50:ec:d7:59:b8:2f:b4:d5:fb:8e:
d7:ae:38:29:81:c8:7e:1c:7f:d2:75:de:f7:a1:d7:
df:bd:39:04:cf:6a:4a:5f:d7:76:10:34:dd:fd:dd:
0b:f5:84:65:15:ec:e8:c3:30:30:01:52:7a:7b:bf:
bc:2b:34:a1:76:57:db:6e:69:98:d7:ec:b5:d6:fe:
8f:72:29:c2:5d:36:1e:03:4c:a5:02:35:76:90:1e:
14:60:f1:1d:d0:68:b6:2e:58:45:68:a2:3e:a1:08:
11:7f:72:1a:f3:3d:b9:f1:9d:b4:eb:bd:0b:52:ee:
7f:14:49:89:12:d6:8c:88:c9:3e:8e:68:6d:77:52:
43:95:d0:7a:d1:47:b1:9a:84:b9:16:fb:d1:a5:b6:
11:b3:04:ee:51:9e:fe:6c:84:29:ad:a6:1e:77:72:
d2:51:1d:a2:dd:28:13:1f:fc:07:9e:50:0e:22:a5:
20:db:87:09:de:e2:1e:96:71:24:73:be:e9:ce:33:
00:88:e6:4c:f7:31:0a:31:b3:4d:c9:ff:1b:c5:a0:
89:29:4b:c3:8e:f4:13:4f:6e:c5:af:9e:bd:10:f6:
62:3e:e9:86:f4:8b:c9:70:dd:6b:15:3b:f1:03:46:
ff:23:42:ad:5e:11:05:ce:ec:ea:4b:9f:5b:6b:cf:
11:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:77:6D:61:99:DA:F1:DC:A6:86:61:7C:A8:3B:3B:51:03:4B:7B:07
X509v3 Authority Key Identifier:
keyid:10:B4:36:13:53:5F:FA:A7:3D:9A:CC:50:3C:71:A2:8F:A1:7B:38:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ELQ2E1Nf-qc9msxQPHGij6F7ODk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2ee71b-8ffe-4eb6-9434-cf3c1a79e634/1/AndtYZna8dymhmF8qDs7UQNLewc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2ee71b-8ffe-4eb6-9434-cf3c1a79e634/1/ELQ2E1Nf-qc9msxQPHGij6F7ODk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.210.0/24
Signature Algorithm: sha256WithRSAEncryption
96:36:02:bc:da:78:2d:ae:9e:3b:6a:2c:2b:e4:e9:4b:9d:d8:
b0:f6:86:0b:9e:8f:b4:89:87:e4:f0:43:84:d5:d3:34:c6:45:
f9:5f:18:0b:78:48:3c:dc:5d:e3:e9:ea:43:f3:ec:77:4b:bb:
20:2d:6c:7f:ab:8a:56:2f:13:6e:53:ab:f7:42:d0:cf:3c:45:
66:8c:d6:d7:2a:79:07:27:b1:34:06:89:e0:8a:62:05:eb:3f:
de:9f:49:6e:2d:7e:92:51:70:70:a9:6e:b1:dd:f2:ac:13:c6:
39:ce:50:18:65:41:45:4e:8d:19:9d:17:75:cd:9b:00:3e:49:
b4:e2:9b:2c:28:69:87:3f:58:6e:ee:86:32:6f:60:94:b2:e8:
0b:da:06:00:76:8b:55:0e:f8:98:da:ca:65:6b:f7:f6:ec:05:
30:5a:70:0d:ef:2a:b9:47:10:5a:04:ed:53:aa:1a:5c:02:f8:
40:87:06:b4:b3:ac:9a:9e:a6:c0:d9:1b:51:87:81:9c:99:9c:
cd:2f:53:25:b4:73:39:9c:bb:36:ea:24:10:40:cc:78:8b:4a:
ec:ec:79:85:e3:36:aa:3d:dd:5e:15:80:c3:9f:2b:47:93:e2:
c8:b6:17:d9:95:65:1b:d9:5c:b1:9b:31:a9:ce:34:62:0f:e9:
e9:82:35:5d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAIIGMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDEw
YjQzNjEzNTM1ZmZhYTczZDlhY2M1MDNjNzFhMjhmYTE3YjM4MzkwHhcNMjIwNTE5
MTkwNTAxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwMjc3NmQ2MTk5ZGFm
MWRjYTY4NjYxN2NhODNiM2I1MTAzNGI3YjA3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvoBa41Ds11m4L7TV+47Xrjgpgch+HH/Sdd73odffvTkEz2pK
X9d2EDTd/d0L9YRlFezowzAwAVJ6e7+8KzShdlfbbmmY1+y11v6PcinCXTYeA0yl
AjV2kB4UYPEd0Gi2LlhFaKI+oQgRf3Ia8z258Z20670LUu5/FEmJEtaMiMk+jmht
d1JDldB60UexmoS5FvvRpbYRswTuUZ7+bIQpraYed3LSUR2i3SgTH/wHnlAOIqUg
24cJ3uIelnEkc77pzjMAiOZM9zEKMbNNyf8bxaCJKUvDjvQTT27Fr569EPZiPumG
9IvJcN1rFTvxA0b/I0KtXhEFzuzqS59ba88RGQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFAJ3bWGZ2vHcpoZhfKg7O1EDS3sHMB8GA1UdIwQYMBaAFBC0NhNTX/qnPZrM
UDxxoo+hezg5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
RUxRMkUxTmYtcWM5bXN4UVBIR2lqNkY3T0RrLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84OC8yZWU3MWItOGZmZS00ZWI2LTk0MzQtY2YzYzFhNzllNjM0LzEv
QW5kdFlabmE4ZHltaG1GOHFEczdVUU5MZXdjLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8y
ZWU3MWItOGZmZS00ZWI2LTk0MzQtY2YzYzFhNzllNjM0LzEvRUxRMkUxTmYtcWM5
bXN4UVBIR2lqNkY3T0RrLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9XSMA0GCSqGSIb3DQEBCwUAA4IB
AQCWNgK82ngtrp47aiwr5OlLndiw9oYLno+0iYfk8EOE1dM0xkX5XxgLeEg83F3j
6epD8+x3S7sgLWx/q4pWLxNuU6v3QtDPPEVmjNbXKnkHJ7E0BongimIF6z/en0lu
LX6SUXBwqW6x3fKsE8Y5zlAYZUFFTo0ZnRd1zZsAPkm04pssKGmHP1hu7oYyb2CU
sugL2gYAdotVDviY2spla/f27AUwWnAN7yq5RxBaBO1TqhpcAvhAhwa0s6yanqbA
2RtRh4GcmZzNL1MltHM5nLs26iQQQMx4i0rs7HmF4zaqPd1eFYDDnytHk+LIthfZ
lWUb2VyxmzGpzjRiD+npgjVd
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:37 2023 by rpki-client on console-ams.rpki-client.org