Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/mC2xK73VkCEd4_59glk4Bh256V8.roa
File: mC2xK73VkCEd4_59glk4Bh256V8.roa (raw, json)
Hash identifier: Ne07z6ZJ/CfDOR8YvaepIdv59FY2PoufmdTFobYojP8=
Subject key identifier: 98:2D:B1:2B:BD:D5:90:21:1D:E3:FE:7D:82:59:38:06:1D:B9:E9:5F
Certificate issuer: /CN=34cb956ec3a14f6f5e4b76d54342fa98d59c77a6
Certificate serial: 037676A5
Authority key identifier: 34:CB:95:6E:C3:A1:4F:6F:5E:4B:76:D5:43:42:FA:98:D5:9C:77:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NMuVbsOhT29eS3bVQ0L6mNWcd6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/mC2xK73VkCEd4_59glk4Bh256V8.roa
Signing time: Sat 01 Jan 2022 06:52:26 +0000
ROA not before: Sat 01 Jan 2022 06:52:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211600
IP address blocks: 91.195.150.0/23 maxlen: 23
2001:678:2e0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58095269 (0x37676a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34cb956ec3a14f6f5e4b76d54342fa98d59c77a6
Validity
Not Before: Jan 1 06:52:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=982db12bbdd590211de3fe7d825938061db9e95f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6d:de:cf:6b:0f:25:db:89:f0:bc:63:bb:50:
c3:13:64:6b:76:18:d0:e4:0a:4a:12:17:6e:5b:2b:
0b:ae:e4:d8:75:fc:18:b4:ba:14:83:cc:99:48:ea:
84:5a:7e:ef:e7:d0:c2:9d:2c:f7:92:fe:56:77:94:
56:10:56:d0:a0:c1:2a:5a:48:9f:f0:3e:b0:aa:d8:
86:36:af:38:07:c3:aa:b9:22:9d:08:60:ea:61:7b:
cd:25:ae:44:75:7b:80:63:9c:1a:33:68:09:0b:35:
3b:07:b5:09:e7:54:66:df:92:c0:08:31:78:66:4b:
46:88:48:0f:c0:82:22:56:31:96:39:ba:aa:2e:12:
e9:70:32:32:f7:91:37:ab:14:1d:4b:a2:7d:83:d7:
69:d8:97:da:c9:79:eb:e7:96:5a:15:b1:99:cf:07:
bc:ef:ff:2d:e1:c2:50:0a:12:5e:9a:59:44:77:ae:
b8:b6:0d:cd:11:9e:39:6d:0b:02:e3:c8:0e:d8:aa:
7c:c8:53:cd:26:17:75:20:c6:bb:cc:36:1d:4e:07:
16:fa:f0:48:54:58:b7:06:ce:df:87:bc:0a:31:40:
85:be:4b:55:f5:2a:ad:a1:93:1b:29:59:8a:d2:ab:
5d:ab:0c:f3:a8:12:1c:4d:30:04:c6:e6:9a:d0:bc:
13:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:2D:B1:2B:BD:D5:90:21:1D:E3:FE:7D:82:59:38:06:1D:B9:E9:5F
X509v3 Authority Key Identifier:
keyid:34:CB:95:6E:C3:A1:4F:6F:5E:4B:76:D5:43:42:FA:98:D5:9C:77:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NMuVbsOhT29eS3bVQ0L6mNWcd6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/mC2xK73VkCEd4_59glk4Bh256V8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/14f9f5-25d7-45e8-bc24-9a688080a579/1/NMuVbsOhT29eS3bVQ0L6mNWcd6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.150.0/23
IPv6:
2001:678:2e0::/48
Signature Algorithm: sha256WithRSAEncryption
75:cd:59:53:5d:5f:3a:e0:93:8b:fa:e6:47:45:53:a5:12:af:
42:a2:d8:27:02:42:70:26:d2:71:80:9e:e1:dd:22:59:b5:7b:
02:4d:8c:4a:2f:04:f5:a4:ea:a8:66:c7:c5:7f:1c:86:2f:28:
16:68:20:68:8d:ad:43:22:49:ed:32:b8:5d:82:53:ea:0c:3a:
26:6e:79:44:fb:8c:29:fd:cc:5d:7b:d0:cd:1e:c9:b0:be:d8:
ad:f9:db:9e:0c:1f:bc:77:9e:e2:43:f1:3a:68:4e:8c:4e:ea:
a9:ad:1e:8b:dc:3f:bd:12:8b:05:65:1e:2d:0f:f8:07:c7:19:
e5:2d:b7:f3:ca:b3:1c:d5:9d:b7:d4:1e:bb:5f:be:d6:22:69:
63:f2:84:1f:71:f4:24:e3:9c:c0:78:48:0c:41:a3:f3:c9:1c:
f0:cf:07:61:34:67:97:89:da:d8:c3:f4:1c:8a:ed:de:33:fd:
88:25:40:85:e1:1d:7d:15:27:dd:34:f7:7d:bd:85:49:5d:c8:
dc:26:2d:56:91:b8:9b:8a:d7:95:22:fb:ba:67:c3:d1:4b:a6:
3a:7e:30:f9:2b:3f:e8:9d:a5:1f:a0:dd:f3:0f:45:43:cf:38:
ba:a1:7c:e7:11:62:7a:3b:4f:5a:4e:5e:eb:9a:67:6e:32:57:
77:1a:50:89
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEA3Z2pTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NGNiOTU2ZWMzYTE0ZjZmNWU0Yjc2ZDU0MzQyZmE5OGQ1OWM3N2E2MB4XDTIyMDEw
MTA2NTIyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTgyZGIxMmJiZGQ1
OTAyMTFkZTNmZTdkODI1OTM4MDYxZGI5ZTk1ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALRt3s9rDyXbifC8Y7tQwxNka3YY0OQKShIXblsrC67k2HX8
GLS6FIPMmUjqhFp+7+fQwp0s95L+VneUVhBW0KDBKlpIn/A+sKrYhjavOAfDqrki
nQhg6mF7zSWuRHV7gGOcGjNoCQs1Owe1CedUZt+SwAgxeGZLRohID8CCIlYxljm6
qi4S6XAyMveRN6sUHUuifYPXadiX2sl56+eWWhWxmc8HvO//LeHCUAoSXppZRHeu
uLYNzRGeOW0LAuPIDtiqfMhTzSYXdSDGu8w2HU4HFvrwSFRYtwbO34e8CjFAhb5L
VfUqraGTGylZitKrXasM86gSHE0wBMbmmtC8E8MCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBSYLbErvdWQIR3j/n2CWTgGHbnpXzAfBgNVHSMEGDAWgBQ0y5Vuw6FPb15L
dtVDQvqY1Zx3pjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05NdVZic09oVDI5ZVMzYlZRMEw2bU5XY2Q2WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmEvMTRmOWY1LTI1ZDctNDVlOC1iYzI0LTlhNjg4MDgwYTU3OS8x
L21DMnhLNzNWa0NFZDRfNTlnbGs0QmgyNTZWOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmEv
MTRmOWY1LTI1ZDctNDVlOC1iYzI0LTlhNjg4MDgwYTU3OS8xL05NdVZic09oVDI5
ZVMzYlZRMEw2bU5XY2Q2WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAVvDljAPBAIAAjAJAwcAIAEGeALg
MA0GCSqGSIb3DQEBCwUAA4IBAQB1zVlTXV864JOL+uZHRVOlEq9CotgnAkJwJtJx
gJ7h3SJZtXsCTYxKLwT1pOqoZsfFfxyGLygWaCBoja1DIkntMrhdglPqDDombnlE
+4wp/cxde9DNHsmwvtit+dueDB+8d57iQ/E6aE6MTuqprR6L3D+9EosFZR4tD/gH
xxnlLbfzyrMc1Z231B67X77WImlj8oQfcfQk45zAeEgMQaPzyRzwzwdhNGeXidrY
w/Qciu3eM/2IJUCF4R19FSfdNPd9vYVJXcjcJi1WkbibiteVIvu6Z8PRS6Y6fjD5
Kz/onaUfoN3zD0VDzzi6oXznEWJ6O09aTl7rmmduMld3GlCJ
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:09 2025 by rpki-client