Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/311fe5-3885-4c3f-8ca0-9bcf6cadaad6/1/zH_bJ6klpoakrtrpDS_QThZqAOs.roa
File: zH_bJ6klpoakrtrpDS_QThZqAOs.roa (raw, json)
Hash identifier: gRe0uhcXD1LtSqPlPjMLV3l44BAWaQk+UUp8dBpl1Lo=
Subject key identifier: CC:7F:DB:27:A9:25:A6:86:A4:AE:DA:E9:0D:2F:D0:4E:16:6A:00:EB
Certificate issuer: /CN=3576dfd9bc98c613b84327d34062075acc56272f
Certificate serial: B61ECB
Authority key identifier: 35:76:DF:D9:BC:98:C6:13:B8:43:27:D3:40:62:07:5A:CC:56:27:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NXbf2byYxhO4QyfTQGIHWsxWJy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/311fe5-3885-4c3f-8ca0-9bcf6cadaad6/1/zH_bJ6klpoakrtrpDS_QThZqAOs.roa
Signing time: Sat 01 Jan 2022 02:52:05 +0000
ROA not before: Sat 01 Jan 2022 02:52:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58075
IP address blocks: 91.210.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11935435 (0xb61ecb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3576dfd9bc98c613b84327d34062075acc56272f
Validity
Not Before: Jan 1 02:52:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc7fdb27a925a686a4aedae90d2fd04e166a00eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:37:8a:89:53:f1:24:ed:c0:4f:11:0e:ce:6a:
44:7b:21:a7:00:53:48:c7:0d:18:8b:da:a7:c0:31:
33:1c:0b:1d:87:4a:50:92:78:54:1d:1a:da:c1:84:
9c:bc:ad:37:6f:57:dc:0b:ee:66:ff:de:9b:6c:51:
03:f7:1f:f4:04:66:1e:25:c2:d8:23:e5:54:22:6a:
25:b5:03:ff:53:b7:af:eb:0a:9c:69:3f:81:a8:b3:
ff:0c:b0:a5:4c:b9:69:61:d6:53:bd:02:fb:4d:eb:
a0:a9:ce:0b:71:62:00:aa:a5:45:23:fa:4b:9a:df:
86:e3:d0:1c:b9:e2:d6:25:80:7c:cd:b3:d5:b9:65:
b5:aa:32:53:2f:6a:ca:55:09:85:76:6e:be:ee:56:
b7:8e:a2:4f:d6:1d:4f:ed:cc:59:52:3f:6e:73:ad:
bd:7c:5e:0b:d3:26:fb:5a:45:f4:1d:42:e4:95:69:
6a:c3:4f:e6:4e:e0:78:49:30:6b:a0:9d:aa:8e:35:
d6:f8:07:bf:8e:b5:ca:83:68:13:a0:77:07:49:0c:
0d:d1:ee:d0:28:69:a7:5a:4c:9a:4c:bc:ca:5e:d3:
69:bd:e1:fa:48:4e:66:d0:f4:07:c1:b6:33:3b:21:
5e:4d:af:14:3a:d6:f2:9d:bc:59:4e:4a:fb:d2:3e:
f2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7F:DB:27:A9:25:A6:86:A4:AE:DA:E9:0D:2F:D0:4E:16:6A:00:EB
X509v3 Authority Key Identifier:
keyid:35:76:DF:D9:BC:98:C6:13:B8:43:27:D3:40:62:07:5A:CC:56:27:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NXbf2byYxhO4QyfTQGIHWsxWJy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/311fe5-3885-4c3f-8ca0-9bcf6cadaad6/1/zH_bJ6klpoakrtrpDS_QThZqAOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/311fe5-3885-4c3f-8ca0-9bcf6cadaad6/1/NXbf2byYxhO4QyfTQGIHWsxWJy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.125.0/24
Signature Algorithm: sha256WithRSAEncryption
28:8a:fd:79:04:1e:82:df:c8:80:9a:68:04:d2:28:ef:dc:d5:
fe:7d:3e:1c:28:5c:fe:56:2f:cf:6b:f1:30:df:70:1d:67:97:
90:58:48:7f:fe:21:28:fb:b5:77:08:5c:f9:c1:18:f7:23:dd:
ce:86:fb:d4:e9:0f:94:62:bd:03:ad:78:7d:12:eb:a2:4f:f1:
a6:75:03:b9:40:9a:1b:8d:17:55:bf:5d:e3:68:9e:1e:4d:7f:
a0:e1:6d:d1:af:6d:db:39:b0:3c:d2:e0:f6:15:7d:29:5d:0f:
d4:e4:7a:9e:3c:18:00:b7:1f:4c:86:ee:20:7a:98:92:a5:81:
8a:3c:f3:e2:d7:23:86:66:6c:7f:0f:cd:3a:e3:ec:e7:af:28:
60:69:69:48:14:83:26:9a:74:37:23:99:32:9a:84:00:93:2f:
c3:3c:15:68:0e:ae:12:57:eb:39:a8:09:4c:8e:6b:49:ee:9b:
22:b5:a8:83:11:7e:ca:db:83:b3:5c:9f:bf:53:8e:01:fb:ea:
5c:f0:64:dc:31:2d:7a:d0:d7:46:d7:1a:f8:cc:a8:6c:88:ed:
eb:51:d4:47:eb:59:5b:bd:f8:bf:1b:0c:f2:a7:bd:18:a7:ab:
44:8d:1c:59:17:b4:40:c1:84:a1:b5:31:fe:e1:94:e2:21:93:
ec:52:ec:b2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEALYeyzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NTc2ZGZkOWJjOThjNjEzYjg0MzI3ZDM0MDYyMDc1YWNjNTYyNzJmMB4XDTIyMDEw
MTAyNTIwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoY2M3ZmRiMjdhOTI1
YTY4NmE0YWVkYWU5MGQyZmQwNGUxNjZhMDBlYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKY3iolT8STtwE8RDs5qRHshpwBTSMcNGIvap8AxMxwLHYdK
UJJ4VB0a2sGEnLytN29X3AvuZv/em2xRA/cf9ARmHiXC2CPlVCJqJbUD/1O3r+sK
nGk/gaiz/wywpUy5aWHWU70C+03roKnOC3FiAKqlRSP6S5rfhuPQHLni1iWAfM2z
1blltaoyUy9qylUJhXZuvu5Wt46iT9YdT+3MWVI/bnOtvXxeC9Mm+1pF9B1C5JVp
asNP5k7geEkwa6Cdqo411vgHv461yoNoE6B3B0kMDdHu0Chpp1pMmky8yl7Tab3h
+khOZtD0B8G2MzshXk2vFDrW8p28WU5K+9I+8scCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTMf9snqSWmhqSu2ukNL9BOFmoA6zAfBgNVHSMEGDAWgBQ1dt/ZvJjGE7hD
J9NAYgdazFYnLzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05YYmYyYnlZeGhPNFF5ZlRRR0lIV3N4V0p5OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWMvMzExZmU1LTM4ODUtNGMzZi04Y2EwLTliY2Y2Y2FkYWFkNi8x
L3pIX2JKNmtscG9ha3J0cnBEU19RVGhacUFPcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMv
MzExZmU1LTM4ODUtNGMzZi04Y2EwLTliY2Y2Y2FkYWFkNi8xL05YYmYyYnlZeGhP
NFF5ZlRRR0lIV3N4V0p5OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvSfTANBgkqhkiG9w0BAQsFAAOC
AQEAKIr9eQQegt/IgJpoBNIo79zV/n0+HChc/lYvz2vxMN9wHWeXkFhIf/4hKPu1
dwhc+cEY9yPdzob71OkPlGK9A614fRLrok/xpnUDuUCaG40XVb9d42ieHk1/oOFt
0a9t2zmwPNLg9hV9KV0P1OR6njwYALcfTIbuIHqYkqWBijzz4tcjhmZsfw/NOuPs
568oYGlpSBSDJpp0NyOZMpqEAJMvwzwVaA6uElfrOagJTI5rSe6bIrWogxF+ytuD
s1yfv1OOAfvqXPBk3DEtetDXRtca+MyobIjt61HUR+tZW734vxsM8qe9GKerRI0c
WRe0QMGEobUx/uGU4iGT7FLssg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:00 2024 by rpki-client on console-ams.rpki-client.org