Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/snlxONbmKNbpxreLdw5Xc3TUOYg.roa
File: snlxONbmKNbpxreLdw5Xc3TUOYg.roa (raw, json)
Hash identifier: 6NKqaa9TLP35vKgVBz7dPEDRNTn8F74xthf1m8vFq+I=
Subject key identifier: B2:79:71:38:D6:E6:28:D6:E9:C6:B7:8B:77:0E:57:73:74:D4:39:88
Certificate issuer: /CN=237f7db033314c473cda194e0df79f1c375da3f4
Certificate serial: 0C4C45B6
Authority key identifier: 23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/snlxONbmKNbpxreLdw5Xc3TUOYg.roa
Signing time: Tue 12 Apr 2022 10:16:38 +0000
ROA not before: Tue 12 Apr 2022 10:16:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6453
IP address blocks: 91.140.128.0/17 maxlen: 17
194.54.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206325174 (0xc4c45b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237f7db033314c473cda194e0df79f1c375da3f4
Validity
Not Before: Apr 12 10:16:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2797138d6e628d6e9c6b78b770e577374d43988
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5b:c3:72:e4:60:46:be:2b:67:a2:68:b5:c7:
d8:ed:c7:b4:84:37:50:3b:37:ae:a2:38:09:0e:a9:
0d:e0:a0:7c:03:a4:56:9a:96:81:10:df:f9:d4:b2:
17:2f:85:cf:77:12:44:68:d3:c4:76:3e:e7:57:e7:
53:0d:52:72:4e:cf:c7:f1:ef:24:a0:5f:89:0e:f5:
73:11:4c:b0:4d:3d:ab:db:70:c6:fc:8e:dd:c0:c1:
42:30:54:0d:3a:aa:ad:be:a2:8e:5b:7c:5e:97:81:
f9:e2:6f:61:e4:db:46:c4:71:81:80:e5:eb:ee:6c:
ce:d5:5d:b5:6d:28:27:28:e4:20:09:2d:ff:18:0b:
7b:22:e0:81:e5:b8:ee:22:cc:26:af:af:2e:4e:0f:
37:a2:aa:58:2a:d3:e5:90:eb:e0:2d:c9:d6:73:53:
31:e0:ec:e3:de:97:e3:4f:f6:35:91:a0:b1:75:56:
fe:aa:c9:1b:bf:8f:cf:4d:72:19:d2:0b:32:0b:88:
37:d3:9b:3a:44:e3:2a:74:00:1d:6b:f2:cc:a3:45:
55:75:21:29:22:88:5e:5f:c4:13:eb:5f:be:f4:12:
dc:11:72:1e:c1:ca:7b:f4:cd:76:d1:3e:cb:bc:4c:
eb:6c:dd:f7:d7:60:0b:e6:d8:e2:87:96:0e:6f:f4:
50:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:79:71:38:D6:E6:28:D6:E9:C6:B7:8B:77:0E:57:73:74:D4:39:88
X509v3 Authority Key Identifier:
keyid:23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/snlxONbmKNbpxreLdw5Xc3TUOYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/I399sDMxTEc82hlODfefHDddo_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.140.128.0/17
194.54.192.0/18
Signature Algorithm: sha256WithRSAEncryption
21:7b:43:68:31:6e:7e:ad:bb:9d:65:a3:2f:2e:49:b5:b5:21:
74:d1:90:7a:f4:66:20:05:ec:ea:8f:14:42:66:b0:3e:73:29:
f7:df:4b:1a:2c:61:9a:f3:0c:ec:13:c4:20:64:10:af:ae:6c:
52:b0:3c:49:c0:9b:73:d7:4b:6a:a0:ca:51:fb:a6:b5:21:b0:
56:09:04:9c:6c:7e:d8:6f:54:7e:40:5c:59:34:48:02:1d:ea:
05:29:bc:9c:d6:5f:c1:6a:71:f8:b5:ed:b3:1e:fb:b2:23:ed:
b8:e8:af:0f:97:fa:8b:f4:20:3e:2d:e5:96:20:21:f1:e7:e5:
68:84:95:a6:d0:25:82:d3:eb:e3:0a:d9:86:d3:1c:99:9e:be:
a2:2e:9d:7d:e2:ba:b6:c3:1c:cb:36:08:7e:25:92:b9:86:c9:
2b:d6:0b:cc:5d:96:ea:7a:ce:6f:15:a0:28:0b:2e:83:1e:db:
ed:20:4f:ff:6a:c4:f8:20:66:46:65:86:6f:58:f2:8e:a9:b7:
0b:c1:a0:f6:83:ad:3a:95:92:b7:52:d5:66:a8:a0:6c:34:7b:
1c:28:5c:32:7f:ba:3c:72:74:83:0d:46:9e:d5:d0:f5:9f:9e:
a1:8f:ee:65:80:2f:e5:a9:6d:2b:07:6d:69:ac:ef:e4:37:5d:
c8:6f:ac:4e
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEDExFtjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MzdmN2RiMDMzMzE0YzQ3M2NkYTE5NGUwZGY3OWYxYzM3NWRhM2Y0MB4XDTIyMDQx
MjEwMTYzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjI3OTcxMzhkNmU2
MjhkNmU5YzZiNzhiNzcwZTU3NzM3NGQ0Mzk4ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALhbw3LkYEa+K2eiaLXH2O3HtIQ3UDs3rqI4CQ6pDeCgfAOk
VpqWgRDf+dSyFy+Fz3cSRGjTxHY+51fnUw1Sck7Px/HvJKBfiQ71cxFMsE09q9tw
xvyO3cDBQjBUDTqqrb6ijlt8XpeB+eJvYeTbRsRxgYDl6+5sztVdtW0oJyjkIAkt
/xgLeyLggeW47iLMJq+vLk4PN6KqWCrT5ZDr4C3J1nNTMeDs496X40/2NZGgsXVW
/qrJG7+Pz01yGdILMguIN9ObOkTjKnQAHWvyzKNFVXUhKSKIXl/EE+tfvvQS3BFy
HsHKe/TNdtE+y7xM62zd99dgC+bY4oeWDm/0UHECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSyeXE41uYo1unGt4t3DldzdNQ5iDAfBgNVHSMEGDAWgBQjf32wMzFMRzza
GU4N958cN12j9DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0kzOTlzRE14VEVjODJobE9EZmVmSERkZG9fUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODgvZWVmNTU3LTBlMTAtNDBjZS1hNDhmLWVlMDYwMzk0OWY5My8x
L3NubHhPTmJtS05icHhyZUxkdzVYYzNUVU9ZZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODgv
ZWVmNTU3LTBlMTAtNDBjZS1hNDhmLWVlMDYwMzk0OWY5My8xL0kzOTlzRE14VEVj
ODJobE9EZmVmSERkZG9fUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEB1uMgAMEBsI2wDANBgkqhkiG9w0B
AQsFAAOCAQEAIXtDaDFufq27nWWjLy5JtbUhdNGQevRmIAXs6o8UQmawPnMp999L
GixhmvMM7BPEIGQQr65sUrA8ScCbc9dLaqDKUfumtSGwVgkEnGx+2G9UfkBcWTRI
Ah3qBSm8nNZfwWpx+LXtsx77siPtuOivD5f6i/QgPi3lliAh8eflaISVptAlgtPr
4wrZhtMcmZ6+oi6dfeK6tsMcyzYIfiWSuYbJK9YLzF2W6nrObxWgKAsugx7b7SBP
/2rE+CBmRmWGb1jyjqm3C8Gg9oOtOpWSt1LVZqigbDR7HChcMn+6PHJ0gw1GntXQ
9Z+eoY/uZYAv5altKwdtaazv5DddyG+sTg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:58 2024 by rpki-client on console-fra.rpki-client.org