Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/344e2c-1c56-43ab-8108-eaf68b59e599/1/k2H7ffMx7-dWAO-Iluml8M43AVI.roa
File: k2H7ffMx7-dWAO-Iluml8M43AVI.roa (raw, json)
Hash identifier: shtidqDhaVgFaNtr18ebWe9uUt8EF2e4A0/Bix/FT7A=
Subject key identifier: 93:61:FB:7D:F3:31:EF:E7:56:00:EF:88:96:E9:A5:F0:CE:37:01:52
Certificate issuer: /CN=6cfd360736f1fa6c9770fcb48be594be609e5b3e
Certificate serial: 17713ADD
Authority key identifier: 6C:FD:36:07:36:F1:FA:6C:97:70:FC:B4:8B:E5:94:BE:60:9E:5B:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bP02Bzbx-myXcPy0i-WUvmCeWz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/344e2c-1c56-43ab-8108-eaf68b59e599/1/k2H7ffMx7-dWAO-Iluml8M43AVI.roa
Signing time: Sat 01 Jan 2022 16:02:52 +0000
ROA not before: Sat 01 Jan 2022 16:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44439
IP address blocks: 91.231.184.0/24 maxlen: 24
185.70.228.0/22 maxlen: 22
2a05:2cc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 393296605 (0x17713add)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cfd360736f1fa6c9770fcb48be594be609e5b3e
Validity
Not Before: Jan 1 16:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9361fb7df331efe75600ef8896e9a5f0ce370152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9a:eb:8d:0f:ea:6c:1a:86:5f:bc:03:4f:97:
1c:27:03:4f:36:91:52:c2:9e:f8:07:98:ec:fc:c2:
47:d9:88:3c:d0:c5:c7:cb:b7:27:d3:6b:73:36:bc:
94:c9:d7:df:d8:b3:28:ca:10:f8:3b:dc:60:4e:ac:
52:9c:65:80:2e:4d:c9:95:4e:78:d8:2c:30:b4:95:
36:d9:cd:d5:77:ed:cd:e3:4b:2a:61:39:3f:aa:17:
63:dc:2f:f7:3f:c6:f6:54:fd:6f:85:53:9c:a3:16:
af:6c:ae:80:f1:6f:73:98:b9:a4:64:77:c7:1a:21:
5b:ed:f1:42:1a:47:00:b0:b8:93:4d:1a:b5:02:e4:
9c:07:bc:42:2f:21:4f:50:06:0d:58:57:07:57:a9:
46:85:10:9b:7f:61:8b:b0:47:17:9a:ef:ab:4e:35:
3c:2b:89:98:23:5c:aa:e0:a4:73:b5:2e:b0:9f:46:
09:aa:01:0d:4f:6e:d4:f5:84:e6:5c:97:20:8a:8e:
90:c3:bc:f0:cd:89:82:f5:25:67:e9:a9:ee:b0:69:
bd:d7:3b:95:7a:10:89:86:82:5c:8e:4e:aa:38:d5:
d6:4b:41:b8:65:21:d8:c2:69:69:a3:25:60:40:16:
93:91:91:89:1b:18:9f:54:cc:f5:aa:dd:5c:49:5b:
0b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:61:FB:7D:F3:31:EF:E7:56:00:EF:88:96:E9:A5:F0:CE:37:01:52
X509v3 Authority Key Identifier:
keyid:6C:FD:36:07:36:F1:FA:6C:97:70:FC:B4:8B:E5:94:BE:60:9E:5B:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bP02Bzbx-myXcPy0i-WUvmCeWz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/344e2c-1c56-43ab-8108-eaf68b59e599/1/k2H7ffMx7-dWAO-Iluml8M43AVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/344e2c-1c56-43ab-8108-eaf68b59e599/1/bP02Bzbx-myXcPy0i-WUvmCeWz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.184.0/24
185.70.228.0/22
IPv6:
2a05:2cc0::/29
Signature Algorithm: sha256WithRSAEncryption
94:e6:d8:9e:d4:c5:1e:d5:92:b8:d1:2e:69:1c:6f:d2:6f:81:
ad:92:eb:01:2e:29:ad:18:20:c8:0f:58:8c:a0:3d:d6:72:58:
39:d2:59:a4:52:79:80:67:4a:dd:98:ab:f6:98:e1:9b:49:bd:
58:76:46:00:95:a2:96:af:57:32:09:cb:62:3d:b8:59:a0:54:
2b:6c:b2:34:c9:5b:9f:56:7b:fd:9b:f6:3c:69:9e:93:36:f6:
9d:c6:f9:3c:fe:c8:c2:81:52:c5:22:d9:82:c7:41:fc:31:e2:
cf:08:ad:8e:5e:99:58:36:e9:be:13:12:bc:2f:59:b9:4e:b8:
5f:cd:82:36:b7:97:b3:86:68:2c:f1:e7:ca:4a:be:84:8e:51:
3a:0e:fa:fe:10:2d:b7:69:bb:eb:0e:4b:18:ed:1a:b9:a2:4f:
40:62:0c:87:b7:3b:ad:b0:f9:47:84:ab:98:9e:70:b9:06:f5:
5b:b5:3c:6f:1e:48:ae:22:49:67:d6:13:e0:bf:04:b0:6e:55:
16:eb:5a:12:ab:cf:f9:a0:89:c0:69:2c:ec:78:ce:f3:b1:a6:
6d:0f:f9:79:c4:31:9d:59:54:8f:a7:14:b7:30:fe:21:69:06:
97:7f:dc:ba:36:0a:65:57:23:7d:47:75:44:d6:54:8f:56:d8:
25:f7:da:74
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEF3E63TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
Y2ZkMzYwNzM2ZjFmYTZjOTc3MGZjYjQ4YmU1OTRiZTYwOWU1YjNlMB4XDTIyMDEw
MTE2MDI1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTM2MWZiN2RmMzMx
ZWZlNzU2MDBlZjg4OTZlOWE1ZjBjZTM3MDE1MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANWa640P6mwahl+8A0+XHCcDTzaRUsKe+AeY7PzCR9mIPNDF
x8u3J9Nrcza8lMnX39izKMoQ+DvcYE6sUpxlgC5NyZVOeNgsMLSVNtnN1XftzeNL
KmE5P6oXY9wv9z/G9lT9b4VTnKMWr2yugPFvc5i5pGR3xxohW+3xQhpHALC4k00a
tQLknAe8Qi8hT1AGDVhXB1epRoUQm39hi7BHF5rvq041PCuJmCNcquCkc7UusJ9G
CaoBDU9u1PWE5lyXIIqOkMO88M2JgvUlZ+mp7rBpvdc7lXoQiYaCXI5OqjjV1ktB
uGUh2MJpaaMlYEAWk5GRiRsYn1TM9ardXElbC80CAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBSTYft98zHv51YA74iW6aXwzjcBUjAfBgNVHSMEGDAWgBRs/TYHNvH6bJdw
/LSL5ZS+YJ5bPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JQMDJCemJ4LW15WGNQeTBpLVdVdm1DZVd6NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvMzQ0ZTJjLTFjNTYtNDNhYi04MTA4LWVhZjY4YjU5ZTU5OS8x
L2sySDdmZk14Ny1kV0FPLUlsdW1sOE00M0FWSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
MzQ0ZTJjLTFjNTYtNDNhYi04MTA4LWVhZjY4YjU5ZTU5OS8xL2JQMDJCemJ4LW15
WGNQeTBpLVdVdm1DZVd6NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAFvnuAMEArlG5DANBAIAAjAHAwUD
KgUswDANBgkqhkiG9w0BAQsFAAOCAQEAlObYntTFHtWSuNEuaRxv0m+BrZLrAS4p
rRggyA9YjKA91nJYOdJZpFJ5gGdK3Zir9pjhm0m9WHZGAJWilq9XMgnLYj24WaBU
K2yyNMlbn1Z7/Zv2PGmekzb2ncb5PP7IwoFSxSLZgsdB/DHizwitjl6ZWDbpvhMS
vC9ZuU64X82CNreXs4ZoLPHnykq+hI5ROg76/hAtt2m76w5LGO0auaJPQGIMh7c7
rbD5R4SrmJ5wuQb1W7U8bx5IriJJZ9YT4L8EsG5VFutaEqvP+aCJwGks7HjO87Gm
bQ/5ecQxnVlUj6cUtzD+IWkGl3/cujYKZVcjfUd1RNZUj1bYJffadA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:55 2024 by rpki-client on console-ams.rpki-client.org