Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/hINoOo5NeMpj2WQCw19C5X1Jn7Y.roa
File: hINoOo5NeMpj2WQCw19C5X1Jn7Y.roa (raw, json)
Hash identifier: 2+/nkOI4xX2VK9w7Zo9evIU5c+R3oseaMNTcyizHZO4=
Subject key identifier: 84:83:68:3A:8E:4D:78:CA:63:D9:64:02:C3:5F:42:E5:7D:49:9F:B6
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 31A5FE
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/hINoOo5NeMpj2WQCw19C5X1Jn7Y.roa
Signing time: Sat 05 Feb 2022 19:12:14 +0000
ROA not before: Sat 05 Feb 2022 19:12:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.232.99.0/24 maxlen: 24
91.232.103.0/24 maxlen: 24
91.231.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3253758 (0x31a5fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Feb 5 19:12:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8483683a8e4d78ca63d96402c35f42e57d499fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:78:8f:4e:9a:4c:77:4e:40:90:61:24:40:f1:
0a:4e:0d:c1:5f:71:65:05:b9:f7:a0:af:a8:57:c9:
fe:29:2b:5c:3b:5c:67:91:6c:07:52:f6:f3:88:e9:
0a:2d:4c:08:82:a6:24:9b:82:00:b3:2e:5b:84:90:
d6:e4:16:b2:56:e2:fe:f0:36:d6:bf:66:44:ff:d9:
b8:80:b4:d8:5a:49:fa:e1:f4:e7:73:28:ce:5e:39:
f3:ad:73:e8:72:0c:ad:64:35:07:d3:2a:b8:2d:07:
5e:d3:07:a8:64:6d:a1:f1:f4:c1:23:07:63:8d:66:
02:95:65:de:0c:e2:86:09:19:a3:14:ef:d4:2e:bb:
c2:b6:49:56:bc:92:07:89:ec:6a:95:c7:ec:12:23:
f7:f9:ea:a7:01:e0:27:60:d6:f6:03:2c:45:6d:29:
f5:5b:db:d2:1d:5a:63:7a:ab:58:49:30:c5:38:b2:
6e:96:68:c8:65:41:99:10:c6:b0:ff:d4:81:b5:94:
c2:6d:db:a9:3a:ef:8c:93:04:76:6f:25:b6:d5:20:
af:d4:70:ab:ce:a9:89:9e:76:d3:10:71:7b:95:af:
93:08:4f:a7:78:b6:97:79:35:95:4d:63:55:66:41:
21:cf:c0:a6:30:f5:07:50:55:ca:9b:cb:0d:bb:3a:
ed:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:83:68:3A:8E:4D:78:CA:63:D9:64:02:C3:5F:42:E5:7D:49:9F:B6
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/hINoOo5NeMpj2WQCw19C5X1Jn7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
91.232.99.0/24
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
34:d0:74:06:99:8b:84:9c:0c:6b:45:80:e9:fb:33:3f:a9:ac:
3d:b9:e1:9a:69:2b:8c:76:04:a3:99:93:6b:cc:c5:71:af:7a:
c0:c2:f7:20:32:40:1a:30:53:83:f7:da:35:e2:12:2a:85:bd:
17:4b:30:51:d2:ca:45:32:05:a9:cc:39:48:24:a8:92:86:b0:
0f:16:c4:60:2b:3f:ee:72:42:23:74:d6:33:2e:32:ff:9a:bd:
1e:51:34:f5:14:2d:f9:3a:8d:3a:df:7f:a8:6e:47:76:16:0a:
21:ac:0b:10:bd:0d:e5:4a:6b:d7:dd:35:a6:1d:8b:8e:76:16:
88:ed:1a:68:8d:20:eb:1c:99:79:27:59:65:82:03:bd:e2:26:
79:d6:5c:17:94:ab:2c:e8:49:14:0e:20:f9:7b:31:e2:4a:ac:
fc:a3:21:cc:d3:31:50:f5:cb:ba:d3:79:33:d7:e7:18:92:9c:
b0:c5:9c:a5:78:2e:fe:30:d0:d1:f7:51:47:0f:d0:2f:f0:5e:
13:c6:08:78:30:55:48:ef:2d:2c:90:e2:6e:c0:1c:84:d1:11:
ad:31:ac:7c:9b:72:87:3f:b9:56:5b:c2:c4:9b:50:c2:42:36:
8a:92:44:17:2e:88:16:c3:dc:49:ac:7b:93:71:28:4b:91:40:
70:88:ec:f6
-----BEGIN CERTIFICATE-----
MIIE+jCCA+KgAwIBAgIDMaX+MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGUz
MTYzMTgyNDdkMjExODQxZjk2MjBhOWExMTMwMDEwZGRiNDg2ZjIwHhcNMjIwMjA1
MTkxMjE0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4NDgzNjgzYThlNGQ3
OGNhNjNkOTY0MDJjMzVmNDJlNTdkNDk5ZmI2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArHiPTppMd05AkGEkQPEKTg3BX3FlBbn3oK+oV8n+KStcO1xn
kWwHUvbziOkKLUwIgqYkm4IAsy5bhJDW5BayVuL+8DbWv2ZE/9m4gLTYWkn64fTn
cyjOXjnzrXPocgytZDUH0yq4LQde0weoZG2h8fTBIwdjjWYClWXeDOKGCRmjFO/U
LrvCtklWvJIHiexqlcfsEiP3+eqnAeAnYNb2AyxFbSn1W9vSHVpjeqtYSTDFOLJu
lmjIZUGZEMaw/9SBtZTCbdupOu+MkwR2byW21SCv1HCrzqmJnnbTEHF7la+TCE+n
eLaXeTWVTWNVZkEhz8CmMPUHUFXKm8sNuzrtoQIDAQABo4ICFTCCAhEwHQYDVR0O
BBYEFISDaDqOTXjKY9lkAsNfQuV9SZ+2MB8GA1UdIwQYMBaAFOMWMYJH0hGEH5Yg
qaETABDdtIbyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
NHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1LzEv
aElOb09vNU5lTXBqMldRQ3cxOUM1WDFKbjdZLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9l
ZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1LzEvNHhZeGdrZlNFWVFm
bGlDcG9STUFFTjIwaHZJLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsG
CCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAW+ecAwQAW+hjAwQAW+hnMA0GCSqG
SIb3DQEBCwUAA4IBAQA00HQGmYuEnAxrRYDp+zM/qaw9ueGaaSuMdgSjmZNrzMVx
r3rAwvcgMkAaMFOD99o14hIqhb0XSzBR0spFMgWpzDlIJKiShrAPFsRgKz/uckIj
dNYzLjL/mr0eUTT1FC35Oo0633+obkd2FgohrAsQvQ3lSmvX3TWmHYuOdhaI7Rpo
jSDrHJl5J1llggO94iZ51lwXlKss6EkUDiD5ezHiSqz8oyHM0zFQ9cu603kz1+cY
kpywxZyleC7+MNDR91FHD9Av8F4Txgh4MFVI7y0skOJuwByE0RGtMax8m3KHP7lW
W8LEm1DCQjaKkkQXLogWw9xJrHuTcShLkUBwiOz2
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org