Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b378a1-5b1b-4c89-8bc5-1c19949b96b6/1/H9HkT8G3uwqJyuQv2i6mjwWxX-c.roa
File: H9HkT8G3uwqJyuQv2i6mjwWxX-c.roa (raw, json)
Hash identifier: wXxY7Y9IhwUA6pJMntWt95nVgDhviZydAZMbKrtLABQ=
Subject key identifier: 1F:D1:E4:4F:C1:B7:BB:0A:89:CA:E4:2F:DA:2E:A6:8F:05:B1:5F:E7
Certificate issuer: /CN=fff604dc7892ba99f535296b9102d8d7a1844388
Certificate serial: 07122920
Authority key identifier: FF:F6:04:DC:78:92:BA:99:F5:35:29:6B:91:02:D8:D7:A1:84:43:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/__YE3HiSupn1NSlrkQLY16GEQ4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b378a1-5b1b-4c89-8bc5-1c19949b96b6/1/H9HkT8G3uwqJyuQv2i6mjwWxX-c.roa
Signing time: Sat 01 Jan 2022 01:01:10 +0000
ROA not before: Sat 01 Jan 2022 01:01:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49435
IP address blocks: 91.220.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118630688 (0x7122920)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fff604dc7892ba99f535296b9102d8d7a1844388
Validity
Not Before: Jan 1 01:01:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fd1e44fc1b7bb0a89cae42fda2ea68f05b15fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:62:f3:3a:3e:4e:8c:d7:e3:b2:88:66:d4:e0:
e8:48:98:4d:46:ac:86:95:e1:76:36:57:f9:5a:e0:
67:34:17:97:04:74:89:57:ce:58:b5:5c:74:b2:29:
c3:78:0a:ab:aa:6d:ce:9a:3e:66:78:d9:3a:df:7a:
6b:c9:55:2f:68:9d:a1:45:12:1d:da:ad:58:33:fc:
27:03:1c:04:61:1f:3b:6f:ce:4d:17:7a:06:8d:62:
ee:1f:5f:00:50:ee:5f:b4:2f:ac:c4:ee:1b:39:32:
bd:c1:e1:d0:2e:d9:6d:78:9e:4a:e1:b8:1c:b9:3c:
12:5c:02:fb:bc:b4:11:34:79:ad:59:e2:f6:82:8c:
98:f3:c1:46:64:40:eb:04:aa:b8:5a:9f:0d:5b:de:
59:63:d7:a5:7b:fd:c4:4a:e9:77:1e:c9:cb:fd:f2:
71:77:43:d3:ae:06:b2:29:31:e1:64:ad:96:a6:47:
18:b3:a3:54:0d:63:54:f6:96:a7:12:d6:e8:aa:2d:
b0:69:44:da:89:a0:4f:32:16:f0:79:90:43:67:cb:
b8:c2:7f:cd:3e:ba:da:ad:12:6e:2f:87:90:78:44:
6a:35:2e:23:3b:73:c7:9b:29:da:4c:d4:0f:e0:d2:
d2:06:27:9a:05:c9:39:2d:ff:63:65:9f:4a:5e:9f:
8d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D1:E4:4F:C1:B7:BB:0A:89:CA:E4:2F:DA:2E:A6:8F:05:B1:5F:E7
X509v3 Authority Key Identifier:
keyid:FF:F6:04:DC:78:92:BA:99:F5:35:29:6B:91:02:D8:D7:A1:84:43:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/__YE3HiSupn1NSlrkQLY16GEQ4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b378a1-5b1b-4c89-8bc5-1c19949b96b6/1/H9HkT8G3uwqJyuQv2i6mjwWxX-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b378a1-5b1b-4c89-8bc5-1c19949b96b6/1/__YE3HiSupn1NSlrkQLY16GEQ4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.34.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d9:10:5c:bd:4c:00:23:42:a3:3a:e2:5e:e4:c3:2f:ab:62:
97:92:0b:79:93:e9:5a:28:2d:5e:e0:22:18:31:b3:bc:a7:8d:
ca:0e:77:23:6b:05:02:27:93:da:c5:8a:73:54:65:21:70:78:
b7:bd:e6:dd:b8:c3:7a:c8:ca:c0:56:3c:36:b3:5c:5a:dd:9a:
33:8c:0d:c9:9a:5d:3d:9c:9f:94:b1:c6:9a:38:ea:ab:1b:d4:
ef:14:79:40:93:7f:16:25:75:09:10:2c:dd:08:58:dc:12:a4:
7c:6b:af:ff:2c:33:51:7c:e1:47:15:56:32:67:fd:c4:4a:75:
c1:62:60:6c:75:a4:4d:e1:3a:7f:98:ae:6a:65:4f:c2:62:34:
3a:bf:80:cd:e5:37:14:b1:c8:95:4e:aa:54:00:ac:a7:61:b9:
e2:92:26:d2:f3:fe:3b:4e:74:9e:76:d6:b2:d8:ee:69:e1:c9:
98:ee:32:40:2b:e9:96:47:95:6b:d9:53:9d:88:d7:a0:64:c4:
f3:a0:49:d1:90:5b:2d:6d:4d:f0:53:eb:bb:17:28:42:db:aa:
15:cd:92:7a:62:c7:f9:37:f0:c7:56:96:70:df:a1:74:0b:3e:
93:2f:0a:79:38:42:d0:63:62:6e:59:c6:ec:2c:ac:c9:ff:d7:
b2:41:b4:36
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBxIpIDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ZmY2MDRkYzc4OTJiYTk5ZjUzNTI5NmI5MTAyZDhkN2ExODQ0Mzg4MB4XDTIyMDEw
MTAxMDExMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWZkMWU0NGZjMWI3
YmIwYTg5Y2FlNDJmZGEyZWE2OGYwNWIxNWZlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKxi8zo+TozX47KIZtTg6EiYTUashpXhdjZX+VrgZzQXlwR0
iVfOWLVcdLIpw3gKq6ptzpo+ZnjZOt96a8lVL2idoUUSHdqtWDP8JwMcBGEfO2/O
TRd6Bo1i7h9fAFDuX7QvrMTuGzkyvcHh0C7ZbXieSuG4HLk8ElwC+7y0ETR5rVni
9oKMmPPBRmRA6wSquFqfDVveWWPXpXv9xErpdx7Jy/3ycXdD064Gsikx4WStlqZH
GLOjVA1jVPaWpxLW6KotsGlE2omgTzIW8HmQQ2fLuMJ/zT662q0Sbi+HkHhEajUu
Iztzx5sp2kzUD+DS0gYnmgXJOS3/Y2WfSl6fjTsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQf0eRPwbe7ConK5C/aLqaPBbFf5zAfBgNVHSMEGDAWgBT/9gTceJK6mfU1
KWuRAtjXoYRDiDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L19fWUUzSGlTdXBuMU5TbHJrUUxZMTZHRVE0Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTkvYjM3OGExLTViMWItNGM4OS04YmM1LTFjMTk5NDliOTZiNi8x
L0g5SGtUOEczdXdxSnl1UXYyaTZtandXeFgtYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkv
YjM3OGExLTViMWItNGM4OS04YmM1LTFjMTk5NDliOTZiNi8xL19fWUUzSGlTdXBu
MU5TbHJrUUxZMTZHRVE0Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvcIjANBgkqhkiG9w0BAQsFAAOC
AQEAatkQXL1MACNCozriXuTDL6til5ILeZPpWigtXuAiGDGzvKeNyg53I2sFAieT
2sWKc1RlIXB4t73m3bjDesjKwFY8NrNcWt2aM4wNyZpdPZyflLHGmjjqqxvU7xR5
QJN/FiV1CRAs3QhY3BKkfGuv/ywzUXzhRxVWMmf9xEp1wWJgbHWkTeE6f5iuamVP
wmI0Or+AzeU3FLHIlU6qVACsp2G54pIm0vP+O050nnbWstjuaeHJmO4yQCvplkeV
a9lTnYjXoGTE86BJ0ZBbLW1N8FPruxcoQtuqFc2SemLH+Tfwx1aWcN+hdAs+ky8K
eThC0GNiblnG7Cysyf/XskG0Ng==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:19 2024 by rpki-client on console-ams.rpki-client.org