Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/m5ANEBRRFHRXq3crG0ajxhg-tuk.roa
File: m5ANEBRRFHRXq3crG0ajxhg-tuk.roa (raw, json)
Hash identifier: eXDlqZIm4jhr2up7U2YpuHnJdBzbwdhOElXujOryjZ8=
Subject key identifier: 9B:90:0D:10:14:51:14:74:57:AB:77:2B:1B:46:A3:C6:18:3E:B6:E9
Certificate issuer: /CN=0d6bad3f3dd0ac556f3f7a80d1c69b9fd964dd6c
Certificate serial: 015CFE13
Authority key identifier: 0D:6B:AD:3F:3D:D0:AC:55:6F:3F:7A:80:D1:C6:9B:9F:D9:64:DD:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DWutPz3QrFVvP3qA0cabn9lk3Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/m5ANEBRRFHRXq3crG0ajxhg-tuk.roa
Signing time: Sat 01 Jan 2022 11:57:06 +0000
ROA not before: Sat 01 Jan 2022 11:57:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57854
IP address blocks: 91.235.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22871571 (0x15cfe13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d6bad3f3dd0ac556f3f7a80d1c69b9fd964dd6c
Validity
Not Before: Jan 1 11:57:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b900d101451147457ab772b1b46a3c6183eb6e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7a:4e:ce:c7:48:e9:1a:4a:01:d1:e5:38:24:
41:29:a4:a1:32:b4:89:56:a4:8c:f8:5c:61:af:e1:
78:9c:af:b7:27:bd:89:75:f6:ae:ed:c5:42:9a:69:
fd:63:f3:66:90:8c:ee:e6:bd:10:c0:00:ec:fb:de:
fc:fe:37:9e:31:5a:e5:2d:3d:72:45:d7:18:d3:ed:
57:89:37:95:05:18:68:7a:4d:b1:35:14:eb:62:9d:
01:fe:f8:7e:41:35:35:66:a1:42:21:30:7f:31:03:
14:d0:2e:50:cd:9a:c6:24:0e:e3:4e:50:4e:30:1f:
c5:f5:7e:17:8c:8c:81:99:1c:ca:73:89:be:b7:cf:
8c:2d:1e:55:fc:de:b2:27:7b:4f:f5:85:65:8e:3f:
6f:af:8f:9c:bb:a4:31:dc:91:84:1c:dc:7c:da:3d:
25:a3:dd:84:9c:67:fd:74:20:3f:e9:4c:a2:64:14:
73:ca:35:db:a6:ee:fa:d8:16:04:52:20:e0:f0:8a:
f1:0c:8c:14:12:34:59:6e:47:d9:86:54:6a:e7:7e:
04:db:aa:4d:1f:54:09:78:eb:2d:20:28:0d:8b:0c:
55:1e:bb:65:3b:f5:96:05:67:52:d4:aa:b6:65:09:
02:01:83:0e:a8:00:bb:8a:ba:4b:fc:be:cc:7a:0f:
b5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:90:0D:10:14:51:14:74:57:AB:77:2B:1B:46:A3:C6:18:3E:B6:E9
X509v3 Authority Key Identifier:
keyid:0D:6B:AD:3F:3D:D0:AC:55:6F:3F:7A:80:D1:C6:9B:9F:D9:64:DD:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DWutPz3QrFVvP3qA0cabn9lk3Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/m5ANEBRRFHRXq3crG0ajxhg-tuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/DWutPz3QrFVvP3qA0cabn9lk3Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.242.0/24
Signature Algorithm: sha256WithRSAEncryption
51:6d:83:03:13:10:b7:d6:de:5a:18:b9:a9:7b:68:9c:de:ff:
cd:28:ed:74:8b:76:19:fd:1a:12:d0:68:98:af:40:ed:de:f2:
63:d2:61:6e:5c:26:15:35:9d:87:d4:8b:6c:04:3c:08:5d:1d:
3b:98:59:68:b8:e3:cf:e6:75:c9:14:59:71:3d:9b:24:5b:86:
7d:25:2c:6d:dd:68:1d:61:a8:45:f1:29:ad:ea:0c:49:17:41:
fb:46:c2:93:3c:45:7c:7b:1e:7e:4e:a5:a2:1f:b5:0b:95:55:
0c:f2:3b:11:58:bb:6f:c7:db:ef:0e:eb:c0:ae:ed:e0:27:22:
d1:be:27:f1:3c:fc:1f:bc:14:f8:da:7e:f0:37:18:46:70:a9:
58:1a:c2:bc:f1:24:76:fa:b0:f4:ea:65:76:a6:ea:bf:45:4c:
f3:01:42:d6:6b:d9:3d:64:c8:0b:36:b4:49:e5:cb:e7:60:4b:
d6:c2:77:6a:23:04:e6:ea:37:af:b1:87:fa:ba:11:a7:6d:a7:
aa:a8:6e:db:fd:78:51:7c:1d:2d:f3:d4:fb:ee:1c:90:ae:7e:
39:63:50:62:5a:4e:1b:d0:5a:da:7a:ab:84:7b:85:b3:02:ef:
09:f6:55:1b:bb:f2:2b:b7:5b:dc:58:8d:13:f0:64:7d:6c:5e:
93:ee:5a:ad
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAVz+EzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZDZiYWQzZjNkZDBhYzU1NmYzZjdhODBkMWM2OWI5ZmQ5NjRkZDZjMB4XDTIyMDEw
MTExNTcwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWI5MDBkMTAxNDUx
MTQ3NDU3YWI3NzJiMWI0NmEzYzYxODNlYjZlOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALt6Ts7HSOkaSgHR5TgkQSmkoTK0iVakjPhcYa/heJyvtye9
iXX2ru3FQppp/WPzZpCM7ua9EMAA7Pve/P43njFa5S09ckXXGNPtV4k3lQUYaHpN
sTUU62KdAf74fkE1NWahQiEwfzEDFNAuUM2axiQO405QTjAfxfV+F4yMgZkcynOJ
vrfPjC0eVfzesid7T/WFZY4/b6+PnLukMdyRhBzcfNo9JaPdhJxn/XQgP+lMomQU
c8o126bu+tgWBFIg4PCK8QyMFBI0WW5H2YZUaud+BNuqTR9UCXjrLSAoDYsMVR67
ZTv1lgVnUtSqtmUJAgGDDqgAu4q6S/y+zHoPtccCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSbkA0QFFEUdFerdysbRqPGGD626TAfBgNVHSMEGDAWgBQNa60/PdCsVW8/
eoDRxpuf2WTdbDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RXdXRQejNRckZWdlAzcUEwY2FibjlsazNXdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTMvYWNhNzM2LTQwODgtNDgwYi1hZjVmLTg5YjZjMjE5ZDkwYi8x
L201QU5FQlJSRkhSWHEzY3JHMGFqeGhnLXR1ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTMv
YWNhNzM2LTQwODgtNDgwYi1hZjVmLTg5YjZjMjE5ZDkwYi8xL0RXdXRQejNRckZW
dlAzcUEwY2FibjlsazNXdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvr8jANBgkqhkiG9w0BAQsFAAOC
AQEAUW2DAxMQt9beWhi5qXtonN7/zSjtdIt2Gf0aEtBomK9A7d7yY9JhblwmFTWd
h9SLbAQ8CF0dO5hZaLjjz+Z1yRRZcT2bJFuGfSUsbd1oHWGoRfEpreoMSRdB+0bC
kzxFfHsefk6loh+1C5VVDPI7EVi7b8fb7w7rwK7t4Cci0b4n8Tz8H7wU+Np+8DcY
RnCpWBrCvPEkdvqw9Opldqbqv0VM8wFC1mvZPWTICza0SeXL52BL1sJ3aiME5uo3
r7GH+roRp22nqqhu2/14UXwdLfPU++4ckK5+OWNQYlpOG9Ba2nqrhHuFswLvCfZV
G7vyK7db3FiNE/BkfWxek+5arQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:35 2023 by rpki-client on console-fra.rpki-client.org