Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/46a1b0-10c0-4cf9-9502-10d1734d7b83/1/MJbKMLJ7xXTrKPFRi0-hWi94oYk.roa
File: MJbKMLJ7xXTrKPFRi0-hWi94oYk.roa (raw, json)
Hash identifier: e94Th5kwB1gjmfhMImwMZY7J0eMk67CTj5edvDqawzk=
Subject key identifier: 30:96:CA:30:B2:7B:C5:74:EB:28:F1:51:8B:4F:A1:5A:2F:78:A1:89
Certificate issuer: /CN=2d30c3070c6e61edc58a64f3233fa97fc5f5739b
Certificate serial: 06E3F236
Authority key identifier: 2D:30:C3:07:0C:6E:61:ED:C5:8A:64:F3:23:3F:A9:7F:C5:F5:73:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LTDDBwxuYe3FimTzIz-pf8X1c5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/46a1b0-10c0-4cf9-9502-10d1734d7b83/1/MJbKMLJ7xXTrKPFRi0-hWi94oYk.roa
Signing time: Sat 01 Jan 2022 10:02:26 +0000
ROA not before: Sat 01 Jan 2022 10:02:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8304
IP address blocks: 91.223.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115601974 (0x6e3f236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d30c3070c6e61edc58a64f3233fa97fc5f5739b
Validity
Not Before: Jan 1 10:02:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3096ca30b27bc574eb28f1518b4fa15a2f78a189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9c:97:4f:a8:0b:60:b4:3a:ec:f2:58:72:a7:
5c:65:b4:c4:f7:3e:bf:e3:be:c5:8f:02:69:e9:1e:
3a:e1:32:01:4d:48:f4:b2:26:0a:9a:41:ff:68:52:
8d:56:dc:75:90:ee:da:5c:69:ed:15:4a:ff:fa:88:
a7:36:38:4f:ab:5f:5b:ab:76:f4:6d:e6:d2:2e:f8:
fd:60:fe:e1:0f:74:8f:96:bd:3a:c5:ae:8b:71:0e:
dd:b7:58:90:65:cd:30:0e:c9:e9:5c:1a:82:44:14:
d9:82:fc:77:ba:c9:f1:9d:4a:4d:2a:74:83:1a:2f:
71:14:13:3e:cd:0c:fe:b8:7e:1c:81:bb:aa:97:3d:
c0:63:39:26:d1:6b:d4:f7:0a:6f:e0:e7:cd:d6:aa:
55:ee:dc:74:e2:ce:ca:e5:ab:25:5f:e2:69:03:74:
d2:b0:3d:e9:b4:3d:f5:27:0d:20:d0:b5:c2:72:0a:
2c:3f:50:93:5f:be:5c:c9:7f:ef:a0:93:dd:79:d4:
27:d1:ce:b4:9b:3f:a5:26:c6:e8:90:3a:3c:81:89:
e3:44:6a:e8:53:af:54:a4:03:59:41:e2:bd:db:2b:
e6:d1:5e:a6:5f:2f:1f:6c:ff:0a:38:42:27:c3:98:
d8:a8:5a:71:0f:f7:db:03:77:a6:4e:55:25:07:85:
76:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:96:CA:30:B2:7B:C5:74:EB:28:F1:51:8B:4F:A1:5A:2F:78:A1:89
X509v3 Authority Key Identifier:
keyid:2D:30:C3:07:0C:6E:61:ED:C5:8A:64:F3:23:3F:A9:7F:C5:F5:73:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTDDBwxuYe3FimTzIz-pf8X1c5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/46a1b0-10c0-4cf9-9502-10d1734d7b83/1/MJbKMLJ7xXTrKPFRi0-hWi94oYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/46a1b0-10c0-4cf9-9502-10d1734d7b83/1/LTDDBwxuYe3FimTzIz-pf8X1c5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.139.0/24
Signature Algorithm: sha256WithRSAEncryption
26:00:a9:a3:de:86:12:b8:ef:ba:c2:df:f4:b8:ee:85:26:9e:
a2:d6:c7:e1:78:75:7c:31:ff:82:a5:2b:c0:d7:0b:2e:2f:2f:
47:31:8f:9d:ce:19:ef:ab:de:a8:13:81:dc:9b:a1:1b:42:4d:
36:8b:32:24:f8:81:97:c8:5a:e2:b0:5d:92:26:d8:1e:d2:97:
8a:a7:f9:61:51:e0:63:3f:4d:44:ce:81:87:44:0f:d6:4f:fb:
83:bc:31:e4:b8:5d:77:b0:fc:af:80:97:07:07:ce:88:23:aa:
6d:00:d0:65:2c:0e:9b:e5:86:1b:8a:15:58:e6:2a:22:1e:73:
a1:9e:81:24:3b:8f:b1:6b:d2:f7:e0:2a:b8:e5:87:cd:e7:67:
d9:17:e8:1b:d0:2c:90:93:a5:99:bd:06:79:db:ac:4e:66:f3:
76:1f:0a:c8:7e:08:55:34:9a:70:97:c9:8d:e5:09:55:3c:9e:
c1:bf:7f:93:cc:b2:ae:31:a1:f7:ef:3f:72:de:99:92:ce:54:
96:45:fb:18:23:af:72:78:91:5a:a0:e3:7f:dc:53:12:fa:19:
ab:4c:4b:fa:29:2c:0d:d0:40:c5:74:ca:b0:65:bc:01:ed:8f:
56:a4:71:93:a6:4d:fd:91:45:5d:09:cb:28:61:90:9b:f2:99:
7f:66:84:7c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBuPyNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZDMwYzMwNzBjNmU2MWVkYzU4YTY0ZjMyMzNmYTk3ZmM1ZjU3MzliMB4XDTIyMDEw
MTEwMDIyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzA5NmNhMzBiMjdi
YzU3NGViMjhmMTUxOGI0ZmExNWEyZjc4YTE4OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALKcl0+oC2C0OuzyWHKnXGW0xPc+v+O+xY8CaekeOuEyAU1I
9LImCppB/2hSjVbcdZDu2lxp7RVK//qIpzY4T6tfW6t29G3m0i74/WD+4Q90j5a9
OsWui3EO3bdYkGXNMA7J6VwagkQU2YL8d7rJ8Z1KTSp0gxovcRQTPs0M/rh+HIG7
qpc9wGM5JtFr1PcKb+DnzdaqVe7cdOLOyuWrJV/iaQN00rA96bQ99ScNINC1wnIK
LD9Qk1++XMl/76CT3XnUJ9HOtJs/pSbG6JA6PIGJ40Rq6FOvVKQDWUHivdsr5tFe
pl8vH2z/CjhCJ8OY2KhacQ/32wN3pk5VJQeFdmcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQwlsowsnvFdOso8VGLT6FaL3ihiTAfBgNVHSMEGDAWgBQtMMMHDG5h7cWK
ZPMjP6l/xfVzmzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0xURERCd3h1WWUzRmltVHpJei1wZjhYMWM1cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTkvNDZhMWIwLTEwYzAtNGNmOS05NTAyLTEwZDE3MzRkN2I4My8x
L01KYktNTEo3eFhUcktQRlJpMC1oV2k5NG9Zay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTkv
NDZhMWIwLTEwYzAtNGNmOS05NTAyLTEwZDE3MzRkN2I4My8xL0xURERCd3h1WWUz
RmltVHpJei1wZjhYMWM1cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvfizANBgkqhkiG9w0BAQsFAAOC
AQEAJgCpo96GErjvusLf9LjuhSaeotbH4Xh1fDH/gqUrwNcLLi8vRzGPnc4Z76ve
qBOB3JuhG0JNNosyJPiBl8ha4rBdkibYHtKXiqf5YVHgYz9NRM6Bh0QP1k/7g7wx
5Lhdd7D8r4CXBwfOiCOqbQDQZSwOm+WGG4oVWOYqIh5zoZ6BJDuPsWvS9+AquOWH
zedn2RfoG9AskJOlmb0GedusTmbzdh8KyH4IVTSacJfJjeUJVTyewb9/k8yyrjGh
9+8/ct6Zks5UlkX7GCOvcniRWqDjf9xTEvoZq0xL+iksDdBAxXTKsGW8Ae2PVqRx
k6ZN/ZFFXQnLKGGQm/KZf2aEfA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:56 2023 by rpki-client on console-fra.rpki-client.org