Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/e1zx6VPbaDbhx4W_Z2eyVSqZuyA.roa
File: e1zx6VPbaDbhx4W_Z2eyVSqZuyA.roa (raw, json)
Hash identifier: aUfrsBlhGJ6B9WFG3EWMJoKJaoTJGd2fM454sF8OSvM=
Subject key identifier: 7B:5C:F1:E9:53:DB:68:36:E1:C7:85:BF:67:67:B2:55:2A:99:BB:20
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 0AF60DE5
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/e1zx6VPbaDbhx4W_Z2eyVSqZuyA.roa
Signing time: Sat 01 Jan 2022 15:03:17 +0000
ROA not before: Sat 01 Jan 2022 15:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.91.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183897573 (0xaf60de5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: Jan 1 15:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b5cf1e953db6836e1c785bf6767b2552a99bb20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4c:ca:46:c2:81:bb:0f:ea:5a:4c:cb:87:41:
17:a3:63:15:97:2c:7e:d1:3d:45:32:5f:c5:52:b6:
37:e6:e9:80:9d:77:d5:76:99:ae:79:0f:fa:ec:90:
09:35:a9:39:b4:41:a4:94:b3:eb:64:24:6e:25:be:
93:99:e4:ce:2e:4c:72:f9:c0:e4:01:d4:1d:9a:51:
56:48:0b:7a:e7:76:d3:02:e6:31:34:85:b7:fc:b1:
88:f8:5b:46:21:21:f0:27:b8:7c:e4:d6:73:2b:03:
1a:78:a8:73:0b:5d:a8:58:20:2c:db:b5:43:f6:63:
c4:76:9b:d2:3e:94:6b:0d:47:ff:4b:d9:c6:94:b4:
8b:ff:77:63:9b:45:68:9a:89:c2:77:ca:dc:04:d0:
f2:c7:7d:4c:c2:f6:ae:2a:4f:53:b6:85:d9:f4:a4:
e3:09:ac:34:53:03:b5:95:c7:f0:6b:c2:d0:ae:28:
e6:dd:81:16:e7:8c:6e:1e:68:c2:ac:d0:71:3d:d4:
e7:37:19:83:f7:34:7a:0a:08:de:e4:40:c5:58:46:
42:d6:96:01:47:2f:85:51:44:f3:8f:c4:7d:82:79:
fb:4e:ad:c9:c7:b7:c0:13:21:f2:33:db:ab:7e:25:
ac:c6:f1:07:86:dc:a8:8f:63:24:5a:3b:25:aa:74:
f9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:5C:F1:E9:53:DB:68:36:E1:C7:85:BF:67:67:B2:55:2A:99:BB:20
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/e1zx6VPbaDbhx4W_Z2eyVSqZuyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.204.0/22
Signature Algorithm: sha256WithRSAEncryption
51:d4:73:22:ac:7b:5f:bb:86:43:40:f3:95:1f:16:3f:2e:e7:
02:64:b4:f2:86:60:71:19:31:cb:e9:42:a4:26:41:3f:a8:b0:
e0:7e:25:7e:99:ae:df:1d:b0:23:dc:e2:e7:bc:ac:9e:c0:41:
38:81:41:c5:45:36:a1:95:bf:68:b0:6a:1b:24:ca:87:34:60:
e7:91:40:5e:24:ed:6a:72:10:39:41:e8:d3:6e:8a:37:be:8c:
1f:ed:6a:87:6c:71:eb:9f:47:f4:77:ee:c8:66:d7:87:c2:79:
54:43:10:22:57:63:b4:ed:3e:6d:25:b7:ab:f4:d5:4a:6a:f3:
e8:d9:52:ff:dc:41:50:90:51:9a:bd:db:09:04:0d:7b:c4:99:
0f:3d:72:7a:30:0a:29:00:fd:12:cb:b5:81:9d:f1:70:a1:c8:
7f:ac:a5:2d:28:94:a5:54:eb:31:c8:33:ce:85:df:72:60:6a:
c7:48:2d:09:1a:32:b3:50:9a:31:35:aa:3d:68:ba:8d:c9:0e:
90:00:00:ff:3a:e3:2a:11:7f:24:2c:4a:c9:46:f6:a6:78:c2:
da:cd:f3:b3:da:ef:29:b8:52:e4:52:61:3c:f4:9b:59:25:28:
4b:80:c0:8b:8b:87:23:4b:2a:de:fb:f1:8c:50:0d:56:7c:4f:
4f:2d:e8:64
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECvYN5TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZmFmMGJmOTNmYzQzODFmZmY3ZTdhYTg2YjQwNzZjMDMzMjQyZmZhMB4XDTIyMDEw
MTE1MDMxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2I1Y2YxZTk1M2Ri
NjgzNmUxYzc4NWJmNjc2N2IyNTUyYTk5YmIyMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALlMykbCgbsP6lpMy4dBF6NjFZcsftE9RTJfxVK2N+bpgJ13
1XaZrnkP+uyQCTWpObRBpJSz62QkbiW+k5nkzi5McvnA5AHUHZpRVkgLeud20wLm
MTSFt/yxiPhbRiEh8Ce4fOTWcysDGniocwtdqFggLNu1Q/ZjxHab0j6Uaw1H/0vZ
xpS0i/93Y5tFaJqJwnfK3ATQ8sd9TML2ripPU7aF2fSk4wmsNFMDtZXH8GvC0K4o
5t2BFueMbh5owqzQcT3U5zcZg/c0egoI3uRAxVhGQtaWAUcvhVFE84/EfYJ5+06t
yce3wBMh8jPbq34lrMbxB4bcqI9jJFo7Jap0+SMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR7XPHpU9toNuHHhb9nZ7JVKpm7IDAfBgNVHSMEGDAWgBSfrwv5P8Q4H/9+
eqhrQHbAMyQv+jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L242OEwtVF9FT0JfX2ZucW9hMEIyd0RNa0xfby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGIvYTRmZjMzLWIyOTAtNDMwNy1hZmM4LWY1MjBhN2Q3MWVmNS8x
L2Uxeng2VlBiYURiaHg0V19aMmV5VlNxWnV5QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGIv
YTRmZjMzLWIyOTAtNDMwNy1hZmM4LWY1MjBhN2Q3MWVmNS8xL242OEwtVF9FT0Jf
X2ZucW9hMEIyd0RNa0xfby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEArlbzDANBgkqhkiG9w0BAQsFAAOC
AQEAUdRzIqx7X7uGQ0DzlR8WPy7nAmS08oZgcRkxy+lCpCZBP6iw4H4lfpmu3x2w
I9zi57ysnsBBOIFBxUU2oZW/aLBqGyTKhzRg55FAXiTtanIQOUHo026KN76MH+1q
h2xx659H9HfuyGbXh8J5VEMQIldjtO0+bSW3q/TVSmrz6NlS/9xBUJBRmr3bCQQN
e8SZDz1yejAKKQD9Esu1gZ3xcKHIf6ylLSiUpVTrMcgzzoXfcmBqx0gtCRoys1Ca
MTWqPWi6jckOkAAA/zrjKhF/JCxKyUb2pnjC2s3zs9rvKbhS5FJhPPSbWSUoS4DA
i4uHI0sq3vvxjFANVnxPTy3oZA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:12 2023 by rpki-client on console-fra.rpki-client.org