Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/74d876-05a8-4b10-90e2-c9da030af326/1/rC1DbJoFAABMKRgNV8YYt513bdg.roa
File: rC1DbJoFAABMKRgNV8YYt513bdg.roa (raw, json)
Hash identifier: 3dvdUvmvUN94cNtdZqaLJI9aHa7p7PZdNDUsXvUiZZI=
Subject key identifier: AC:2D:43:6C:9A:05:00:00:4C:29:18:0D:57:C6:18:B7:9D:77:6D:D8
Certificate issuer: /CN=6bcbdb6fd39e76f00484012e13146b218755c3fb
Certificate serial: 052344E8
Authority key identifier: 6B:CB:DB:6F:D3:9E:76:F0:04:84:01:2E:13:14:6B:21:87:55:C3:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a8vbb9OedvAEhAEuExRrIYdVw_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/74d876-05a8-4b10-90e2-c9da030af326/1/rC1DbJoFAABMKRgNV8YYt513bdg.roa
Signing time: Sat 01 Jan 2022 15:05:11 +0000
ROA not before: Sat 01 Jan 2022 15:05:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57136
IP address blocks: 91.212.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86197480 (0x52344e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bcbdb6fd39e76f00484012e13146b218755c3fb
Validity
Not Before: Jan 1 15:05:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac2d436c9a0500004c29180d57c618b79d776dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:09:e8:30:86:b6:50:7d:59:5e:26:53:fe:a6:
08:40:5a:24:a6:97:28:e1:60:a0:53:19:56:af:22:
76:cf:b9:1e:9f:98:0b:a7:c8:78:24:5d:65:68:d1:
b5:f1:5a:98:15:fa:a3:9d:39:a4:b6:91:ed:f3:66:
6d:1c:20:dc:cb:70:5d:06:c4:dd:ed:34:30:dc:fe:
ca:2d:f0:3b:8b:53:cf:d4:be:6e:d7:4a:ea:ec:08:
0d:c6:58:d5:00:81:db:e6:fe:6c:d3:78:3d:0b:a3:
b2:d5:41:08:72:5f:e3:04:7c:21:be:f5:15:a0:80:
34:ac:f8:56:75:18:e6:a1:fa:f8:02:0f:50:a8:e7:
e3:30:eb:19:90:6c:b7:8c:ca:bd:79:56:aa:17:cb:
d5:b7:bd:07:02:c3:62:1a:f4:4a:41:6d:43:aa:98:
1e:6c:b0:b9:bb:84:cc:53:14:f7:84:2c:4a:30:af:
57:ab:4c:6d:5b:86:6b:a8:ca:f0:39:1c:aa:7b:3a:
22:bd:6f:ee:c7:08:3e:2b:de:ad:ef:2f:51:08:5a:
08:b3:f2:7e:fc:24:27:ec:8c:3d:d9:86:dd:87:c0:
d4:61:0b:20:a2:90:de:12:e3:a7:0f:44:48:b7:08:
6a:28:71:ae:84:8a:ef:ac:56:09:d1:4c:01:5b:b6:
42:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:2D:43:6C:9A:05:00:00:4C:29:18:0D:57:C6:18:B7:9D:77:6D:D8
X509v3 Authority Key Identifier:
keyid:6B:CB:DB:6F:D3:9E:76:F0:04:84:01:2E:13:14:6B:21:87:55:C3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8vbb9OedvAEhAEuExRrIYdVw_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/74d876-05a8-4b10-90e2-c9da030af326/1/rC1DbJoFAABMKRgNV8YYt513bdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/74d876-05a8-4b10-90e2-c9da030af326/1/a8vbb9OedvAEhAEuExRrIYdVw_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.192.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:b1:01:61:06:d8:f8:d5:b4:2c:ab:b8:d2:98:fd:da:aa:db:
b3:0a:52:4a:95:c7:91:35:5d:49:81:7d:47:f1:66:6b:db:f4:
4c:17:55:c7:ed:90:be:f2:79:34:44:5d:ad:4c:d3:c0:80:05:
ed:bc:13:43:b2:6f:f3:a3:14:0e:10:f3:83:ba:1a:b1:7d:0c:
3c:93:55:a5:cf:d1:d0:d0:ca:f3:73:6d:ee:c6:7f:ea:79:66:
d0:c4:07:1c:f5:b7:67:b9:2a:e1:60:23:ab:ac:93:51:7f:c2:
3c:e6:54:75:08:ae:70:19:7c:c9:22:1c:dc:ac:ce:0f:b1:fc:
33:5e:b2:af:f0:bd:88:21:6d:7c:35:87:b7:d7:6a:e2:4b:65:
b0:cc:88:e9:4d:bb:ef:8c:8e:48:28:47:15:55:a4:0e:9b:bc:
2a:2b:72:80:76:be:6d:7a:ed:9b:f5:9b:2e:63:46:0f:a6:df:
24:2c:9f:ba:4b:16:ba:dc:a5:8a:57:ea:41:d3:a3:1d:88:17:
4f:73:55:ae:20:6f:35:c2:df:4a:2f:4a:58:83:23:86:89:65:
44:29:4a:20:1f:2c:94:53:ab:df:81:44:2f:51:fa:a4:82:16:
8c:10:13:52:b7:2b:73:b2:70:bc:ec:8f:87:dd:96:d8:28:5d:
28:ba:ab:c6
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBSNE6DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
YmNiZGI2ZmQzOWU3NmYwMDQ4NDAxMmUxMzE0NmIyMTg3NTVjM2ZiMB4XDTIyMDEw
MTE1MDUxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWMyZDQzNmM5YTA1
MDAwMDRjMjkxODBkNTdjNjE4Yjc5ZDc3NmRkODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANMJ6DCGtlB9WV4mU/6mCEBaJKaXKOFgoFMZVq8ids+5Hp+Y
C6fIeCRdZWjRtfFamBX6o505pLaR7fNmbRwg3MtwXQbE3e00MNz+yi3wO4tTz9S+
btdK6uwIDcZY1QCB2+b+bNN4PQujstVBCHJf4wR8Ib71FaCANKz4VnUY5qH6+AIP
UKjn4zDrGZBst4zKvXlWqhfL1be9BwLDYhr0SkFtQ6qYHmywubuEzFMU94QsSjCv
V6tMbVuGa6jK8Dkcqns6Ir1v7scIPivere8vUQhaCLPyfvwkJ+yMPdmG3YfA1GEL
IKKQ3hLjpw9ESLcIaihxroSK76xWCdFMAVu2QpkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSsLUNsmgUAAEwpGA1Xxhi3nXdt2DAfBgNVHSMEGDAWgBRry9tv05528ASE
AS4TFGshh1XD+zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2E4dmJiOU9lZHZBRWhBRXVFeFJySVlkVndfcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjIvNzRkODc2LTA1YTgtNGIxMC05MGUyLWM5ZGEwMzBhZjMyNi8x
L3JDMURiSm9GQUFCTUtSZ05WOFlZdDUxM2JkZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIv
NzRkODc2LTA1YTgtNGIxMC05MGUyLWM5ZGEwMzBhZjMyNi8xL2E4dmJiOU9lZHZB
RWhBRXVFeFJySVlkVndfcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvUwDANBgkqhkiG9w0BAQsFAAOC
AQEAy7EBYQbY+NW0LKu40pj92qrbswpSSpXHkTVdSYF9R/Fma9v0TBdVx+2QvvJ5
NERdrUzTwIAF7bwTQ7Jv86MUDhDzg7oasX0MPJNVpc/R0NDK83Nt7sZ/6nlm0MQH
HPW3Z7kq4WAjq6yTUX/CPOZUdQiucBl8ySIc3KzOD7H8M16yr/C9iCFtfDWHt9dq
4ktlsMyI6U2774yOSChHFVWkDpu8KitygHa+bXrtm/WbLmNGD6bfJCyfuksWutyl
ilfqQdOjHYgXT3NVriBvNcLfSi9KWIMjhollRClKIB8slFOr34FEL1H6pIIWjBAT
Urcrc7JwvOyPh92W2ChdKLqrxg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:21 2024 by rpki-client on console-ams.rpki-client.org