Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/x4wiCnBCoyAlHGM0fcy-paTcysE.roa
File: x4wiCnBCoyAlHGM0fcy-paTcysE.roa (raw, json)
Hash identifier: jSr2VeFizA9M6TyD1q0B86U5rVkVZcSlTq/Shq2/xRQ=
Subject key identifier: C7:8C:22:0A:70:42:A3:20:25:1C:63:34:7D:CC:BE:A5:A4:DC:CA:C1
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B662A93
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/x4wiCnBCoyAlHGM0fcy-paTcysE.roa
Signing time: Sat 01 Jan 2022 10:02:38 +0000
ROA not before: Sat 01 Jan 2022 10:02:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33973
IP address blocks: 91.120.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459680403 (0x1b662a93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c78c220a7042a320251c63347dccbea5a4dccac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b1:6f:29:cd:c0:ae:ec:bc:9c:67:94:40:6e:
f2:27:dc:8d:20:26:8e:1d:d6:12:21:c9:53:8a:46:
df:5c:83:23:14:46:b0:aa:7a:c9:9a:cc:b0:e3:03:
7a:03:a3:a1:93:50:36:34:a4:0c:a2:1f:61:55:72:
e6:4e:cd:6b:f1:be:e7:64:be:d5:8c:3b:17:72:6e:
02:68:ec:b9:be:30:11:6e:f1:0c:99:7b:a7:28:7a:
f2:9f:1f:44:6c:5e:93:b0:54:e8:a0:5a:49:e8:1c:
3b:fd:61:cd:52:3f:e0:dc:45:47:8d:df:6a:3f:98:
27:7a:55:f0:6e:8e:e2:37:20:6c:6b:8c:b7:f8:09:
67:3d:ca:bf:80:24:42:e9:77:5b:1f:57:f5:a2:4e:
59:7f:0d:98:ca:d2:e7:0f:8a:48:e4:f1:46:c8:7c:
7e:26:43:78:37:9b:5d:b7:a2:dd:fc:b7:db:9f:4c:
05:66:e3:99:20:c0:99:de:1f:4a:d5:e8:79:ff:dd:
43:db:87:ec:b1:50:e0:2c:00:66:6e:58:4a:49:8a:
09:0f:64:5e:70:2a:47:ea:eb:d6:fc:a6:f1:87:26:
4a:5e:d3:8b:f8:2b:37:0b:ef:1e:86:c0:dc:d2:25:
7b:18:82:cb:2e:f1:ea:cb:98:e2:ae:88:cb:24:95:
e7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:8C:22:0A:70:42:A3:20:25:1C:63:34:7D:CC:BE:A5:A4:DC:CA:C1
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/x4wiCnBCoyAlHGM0fcy-paTcysE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.120.43.0/24
Signature Algorithm: sha256WithRSAEncryption
16:3a:92:9a:52:a1:dd:be:f2:20:a5:52:cb:8e:e3:64:3d:7f:
c2:9f:ef:7f:b3:65:cf:61:7d:48:6b:16:66:ff:49:5b:91:fc:
5a:85:63:ba:ef:45:55:1c:f7:52:95:1b:fa:f5:78:c7:85:1f:
ba:30:e3:e0:83:a6:94:0f:d7:a2:82:87:56:31:26:29:4a:3a:
c3:07:43:9f:36:dc:cc:d8:67:41:b6:88:a7:34:95:60:84:5f:
58:3f:65:ea:d4:20:3d:fc:f3:e4:e7:29:37:8d:83:44:26:e1:
88:fc:d7:88:1a:9d:9f:f9:e7:24:ff:01:85:29:45:77:1d:9f:
b0:20:15:7c:53:cc:06:7c:7a:0b:37:b9:ea:17:b3:31:c6:19:
06:53:9c:bb:fc:c9:b7:77:a1:c7:40:a5:ea:db:1e:c5:7c:9c:
53:cd:a8:7f:4e:26:09:60:ec:97:5c:32:7d:3a:64:6d:e8:84:
60:30:0c:43:df:f3:43:f7:ab:91:79:ba:d7:f4:85:02:97:53:
a9:3e:47:56:bd:b8:4a:3b:36:38:32:7c:54:d1:9c:d7:43:b6:
2d:f4:66:cb:d6:92:56:06:20:da:01:fc:94:5a:00:f0:c2:9f:
62:54:2d:af:12:eb:b2:8f:32:dc:c8:4b:31:f5:11:05:5f:f9:
c0:c2:ee:f0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEG2YqkzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
MDJkYWM2MDVmNDY1OTcxOGMwYTE1ZTFmNzMyY2JkNGY0OGFhZTdiMB4XDTIyMDEw
MTEwMDIzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzc4YzIyMGE3MDQy
YTMyMDI1MWM2MzM0N2RjY2JlYTVhNGRjY2FjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMuxbynNwK7svJxnlEBu8ifcjSAmjh3WEiHJU4pG31yDIxRG
sKp6yZrMsOMDegOjoZNQNjSkDKIfYVVy5k7Na/G+52S+1Yw7F3JuAmjsub4wEW7x
DJl7pyh68p8fRGxek7BU6KBaSegcO/1hzVI/4NxFR43faj+YJ3pV8G6O4jcgbGuM
t/gJZz3Kv4AkQul3Wx9X9aJOWX8NmMrS5w+KSOTxRsh8fiZDeDebXbei3fy3259M
BWbjmSDAmd4fStXoef/dQ9uH7LFQ4CwAZm5YSkmKCQ9kXnAqR+rr1vym8YcmSl7T
i/grNwvvHobA3NIlexiCyy7x6suY4q6IyySV5wUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTHjCIKcEKjICUcYzR9zL6lpNzKwTAfBgNVHSMEGDAWgBTwLaxgX0ZZcYwK
FeH3MsvU9IquezAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzhDMnNZRjlHV1hHTUNoWGg5ekxMMVBTS3Jucy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGQvZTkwOTc2LTNkZDEtNDcxNi1iYmY2LTI5MmFlNDZlNjMwMi8x
L3g0d2lDbkJDb3lBbEhHTTBmY3ktcGFUY3lzRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGQv
ZTkwOTc2LTNkZDEtNDcxNi1iYmY2LTI5MmFlNDZlNjMwMi8xLzhDMnNZRjlHV1hH
TUNoWGg5ekxMMVBTS3Jucy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFt4KzANBgkqhkiG9w0BAQsFAAOC
AQEAFjqSmlKh3b7yIKVSy47jZD1/wp/vf7Nlz2F9SGsWZv9JW5H8WoVjuu9FVRz3
UpUb+vV4x4UfujDj4IOmlA/XooKHVjEmKUo6wwdDnzbczNhnQbaIpzSVYIRfWD9l
6tQgPfzz5OcpN42DRCbhiPzXiBqdn/nnJP8BhSlFdx2fsCAVfFPMBnx6Cze56hez
McYZBlOcu/zJt3ehx0Cl6tsexXycU82of04mCWDsl1wyfTpkbeiEYDAMQ9/zQ/er
kXm61/SFApdTqT5HVr24Sjs2ODJ8VNGc10O2LfRmy9aSVgYg2gH8lFoA8MKfYlQt
rxLrso8y3MhLMfURBV/5wMLu8A==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:17 2023 by rpki-client on console-fra.rpki-client.org