Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/91431a-b50d-4d50-a6d6-f17f095dd3af/1/a3AISJ3EDv4oXrZjzQprua8bpWM.roa
File: a3AISJ3EDv4oXrZjzQprua8bpWM.roa (raw, json)
Hash identifier: KWKg+IyNcLiIvthJhBxxJnI2xL7RI80c+xhx9D2FNyo=
Subject key identifier: 6B:70:08:48:9D:C4:0E:FE:28:5E:B6:63:CD:0A:6B:B9:AF:1B:A5:63
Certificate issuer: /CN=9426d309d0db02df1d7e04bbb39313bd1df13358
Certificate serial: FEE9
Authority key identifier: 94:26:D3:09:D0:DB:02:DF:1D:7E:04:BB:B3:93:13:BD:1D:F1:33:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCbTCdDbAt8dfgS7s5MTvR3xM1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/91431a-b50d-4d50-a6d6-f17f095dd3af/1/a3AISJ3EDv4oXrZjzQprua8bpWM.roa
Signing time: Fri 27 May 2022 15:51:13 +0000
ROA not before: Fri 27 May 2022 15:51:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42934
IP address blocks: 91.209.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65257 (0xfee9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9426d309d0db02df1d7e04bbb39313bd1df13358
Validity
Not Before: May 27 15:51:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b7008489dc40efe285eb663cd0a6bb9af1ba563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:62:4e:ff:18:02:84:0e:6a:06:a3:3f:53:d1:
c9:39:21:33:93:1a:fd:ef:04:96:c3:c0:33:33:61:
46:a9:77:07:37:0e:8c:bf:46:fd:33:39:55:79:87:
e5:82:6e:39:76:5b:0e:49:d0:29:af:5c:14:22:28:
df:36:ba:7c:94:00:bd:fb:a4:e2:5b:ab:b9:3b:35:
92:d7:ed:c6:c1:7e:db:96:2e:55:4d:4a:52:b1:3e:
0b:b0:b5:ac:92:7b:a5:0b:da:b1:25:d0:90:76:9c:
a7:b9:9d:8d:5f:f4:7d:00:82:65:5e:a8:bb:c6:11:
3e:45:4a:d6:10:a0:d3:a2:0e:5c:3d:6e:64:f4:26:
28:84:3a:c4:98:fd:f1:75:e8:1c:b6:66:16:35:2e:
6d:f7:e0:55:ff:b1:b7:d3:f2:b0:fa:18:d5:6a:58:
07:02:c9:85:04:ea:c8:68:98:8f:df:b0:9e:94:7a:
5d:b2:55:24:b6:4d:15:ad:83:8f:38:f4:e7:6c:c6:
13:60:c1:fc:06:a2:68:d3:e2:14:7a:af:bc:22:36:
f7:af:a2:2b:d8:7b:2d:e5:20:30:c1:fb:53:d9:ae:
40:0a:6a:a8:57:cb:28:bf:4f:58:ba:72:f6:f8:23:
5e:a5:fe:c9:a8:f2:00:38:37:16:fb:7d:08:27:57:
9b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:70:08:48:9D:C4:0E:FE:28:5E:B6:63:CD:0A:6B:B9:AF:1B:A5:63
X509v3 Authority Key Identifier:
keyid:94:26:D3:09:D0:DB:02:DF:1D:7E:04:BB:B3:93:13:BD:1D:F1:33:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCbTCdDbAt8dfgS7s5MTvR3xM1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/91431a-b50d-4d50-a6d6-f17f095dd3af/1/a3AISJ3EDv4oXrZjzQprua8bpWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/91431a-b50d-4d50-a6d6-f17f095dd3af/1/lCbTCdDbAt8dfgS7s5MTvR3xM1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.255.0/24
Signature Algorithm: sha256WithRSAEncryption
33:ae:e0:8d:82:e3:78:fb:d5:82:c5:70:c7:f9:17:1e:48:21:
94:95:d8:01:cc:f1:c0:48:c9:e1:f8:aa:fa:77:a5:18:5c:87:
fb:c5:cd:d2:6c:b0:e8:21:ab:ee:e8:1b:2c:42:65:e7:e7:ec:
ba:22:75:2e:e1:37:9c:f0:87:aa:fb:f2:c5:6b:b4:f1:a2:94:
9b:2b:40:be:2e:db:a8:87:a4:b5:d0:0b:22:85:00:bd:80:9d:
46:72:d6:49:c2:4d:1f:e0:98:cd:62:52:61:7e:46:df:60:33:
8c:40:57:76:21:b8:74:91:20:6e:43:e2:00:f4:f7:03:1b:fb:
09:75:49:0e:90:09:11:15:d6:a6:a9:15:be:ee:25:ca:c9:b5:
a7:11:4c:e8:40:46:e1:e6:fd:09:e6:98:74:f7:56:4c:94:0c:
47:70:cf:2f:be:08:52:02:31:ab:ac:2f:a3:06:65:41:b2:98:
25:1c:0e:80:81:88:3f:22:96:85:ea:fd:d9:72:88:87:b2:ad:
87:d3:a3:1c:3f:bd:9f:5d:34:aa:4a:26:7a:03:4b:02:be:72:
2f:c6:a2:cd:70:97:b3:c3:fc:6a:ec:da:f2:19:a0:68:55:87:
9f:be:ca:8f:2b:a3:61:fb:7d:50:7f:05:34:b6:54:67:f0:d5:
38:b2:bb:cb
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAP7pMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDk0
MjZkMzA5ZDBkYjAyZGYxZDdlMDRiYmIzOTMxM2JkMWRmMTMzNTgwHhcNMjIwNTI3
MTU1MTEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2YjcwMDg0ODlkYzQw
ZWZlMjg1ZWI2NjNjZDBhNmJiOWFmMWJhNTYzMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAqWJO/xgChA5qBqM/U9HJOSEzkxr97wSWw8AzM2FGqXcHNw6M
v0b9MzlVeYflgm45dlsOSdApr1wUIijfNrp8lAC9+6TiW6u5OzWS1+3GwX7bli5V
TUpSsT4LsLWsknulC9qxJdCQdpynuZ2NX/R9AIJlXqi7xhE+RUrWEKDTog5cPW5k
9CYohDrEmP3xdegctmYWNS5t9+BV/7G30/Kw+hjValgHAsmFBOrIaJiP37CelHpd
slUktk0VrYOPOPTnbMYTYMH8BqJo0+IUeq+8Ijb3r6Ir2Hst5SAwwftT2a5ACmqo
V8sov09YunL2+CNepf7JqPIAODcW+30IJ1ebSwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGtwCEidxA7+KF62Y80Ka7mvG6VjMB8GA1UdIwQYMBaAFJQm0wnQ2wLfHX4E
u7OTE70d8TNYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
bENiVENkRGJBdDhkZmdTN3M1TVR2UjN4TTFnLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC84Zi85MTQzMWEtYjUwZC00ZDUwLWE2ZDYtZjE3ZjA5NWRkM2FmLzEv
YTNBSVNKM0VEdjRvWHJaanpRcHJ1YThicFdNLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi85
MTQzMWEtYjUwZC00ZDUwLWE2ZDYtZjE3ZjA5NWRkM2FmLzEvbENiVENkRGJBdDhk
ZmdTN3M1TVR2UjN4TTFnLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9H/MA0GCSqGSIb3DQEBCwUAA4IB
AQAzruCNguN4+9WCxXDH+RceSCGUldgBzPHASMnh+Kr6d6UYXIf7xc3SbLDoIavu
6BssQmXn5+y6InUu4Tec8Ieq+/LFa7TxopSbK0C+Ltuoh6S10AsihQC9gJ1GctZJ
wk0f4JjNYlJhfkbfYDOMQFd2Ibh0kSBuQ+IA9PcDG/sJdUkOkAkRFdamqRW+7iXK
ybWnEUzoQEbh5v0J5ph091ZMlAxHcM8vvghSAjGrrC+jBmVBspglHA6AgYg/IpaF
6v3ZcoiHsq2H06McP72fXTSqSiZ6A0sCvnIvxqLNcJezw/xq7NryGaBoVYefvsqP
K6Nh+31QfwU0tlRn8NU4srvL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:32 2024 by rpki-client on console-ams.rpki-client.org