Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/1FRQXSvpHAcqhR_D-UzUCHXWkDQ.roa
File: 1FRQXSvpHAcqhR_D-UzUCHXWkDQ.roa (raw, json)
Hash identifier: biJBhybE3NDMTkvKACg39ZPqJ0QjaypUlcL+0U3rHMI=
Subject key identifier: D4:54:50:5D:2B:E9:1C:07:2A:85:1F:C3:F9:4C:D4:08:75:D6:90:34
Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Certificate serial: 03CD54
Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/1FRQXSvpHAcqhR_D-UzUCHXWkDQ.roa
Signing time: Mon 07 Mar 2022 08:02:43 +0000
ROA not before: Mon 07 Mar 2022 08:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42936
IP address blocks: 91.193.64.0/22 maxlen: 22
2001:67c:13c8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249172 (0x3cd54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Validity
Not Before: Mar 7 08:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d454505d2be91c072a851fc3f94cd40875d69034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b4:ea:93:43:f5:50:14:f3:05:82:ed:c2:de:
95:e3:74:76:58:c1:ad:4f:9e:72:26:53:44:dc:6a:
ec:9d:cf:5b:62:e6:96:9b:17:68:5e:2c:8a:78:64:
c9:da:1c:a9:44:e7:21:5f:52:69:30:b0:0a:5e:27:
a2:9b:43:f2:b6:67:dd:94:47:78:d4:db:d4:86:ff:
71:c2:98:c8:8b:a8:8d:a3:da:2b:08:ac:2a:57:8c:
00:ff:d4:4f:e8:de:f1:84:a7:56:5e:e7:e8:e4:eb:
bd:72:38:25:40:3f:84:5f:d1:ad:23:85:68:76:24:
ac:ad:aa:79:24:55:a6:75:03:22:ed:47:b0:8a:ae:
86:69:f2:42:4a:92:d8:38:28:c0:d3:50:ec:bb:2c:
05:cc:9c:ea:a6:c6:9f:a6:3d:b4:d8:49:22:ea:4a:
e8:7d:38:a7:a1:d7:96:2b:ca:ef:ff:41:da:09:28:
23:99:2c:26:f7:c1:3f:fc:c1:24:8b:53:44:50:ac:
71:e7:91:05:4f:75:be:f7:11:a8:82:ba:ac:c6:50:
15:8c:2e:84:cd:14:30:67:37:d0:82:d0:3e:f8:41:
2e:e1:7e:45:d0:34:58:57:a7:c2:5a:86:ec:1b:b5:
fb:0a:a3:0f:70:e2:16:2f:42:53:5b:f5:24:67:30:
fc:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:54:50:5D:2B:E9:1C:07:2A:85:1F:C3:F9:4C:D4:08:75:D6:90:34
X509v3 Authority Key Identifier:
keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/1FRQXSvpHAcqhR_D-UzUCHXWkDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.64.0/22
IPv6:
2001:67c:13c8::/48
Signature Algorithm: sha256WithRSAEncryption
35:6c:16:c6:06:b8:d1:7c:e8:8b:df:7f:f1:ae:30:ea:7b:95:
42:b5:b7:b2:6b:76:81:36:7a:bf:c7:42:b1:bb:2c:09:0c:2f:
70:ba:45:d7:c1:d3:6e:4f:a2:f0:41:fa:55:4a:d3:ef:dc:44:
b1:1f:65:24:22:20:da:a6:68:24:24:9d:05:ed:0e:5a:d1:e2:
59:83:54:16:d9:7e:bc:62:0b:5a:47:01:1b:03:17:1a:ce:b7:
02:18:de:7b:4c:c1:a7:c2:4d:64:44:7a:0b:94:a3:1f:fe:59:
8a:f6:70:c6:19:22:d4:7e:6d:94:6e:f7:73:1d:51:19:44:e2:
c2:32:ee:ba:87:04:6d:fd:13:73:f1:70:c8:42:02:b2:82:90:
1f:b3:d8:c9:20:63:e4:15:58:b7:11:f1:d7:12:1b:5f:17:a8:
0f:3e:7f:86:c3:f0:cf:16:0b:e9:94:c0:f5:f7:6b:cb:ac:7c:
47:99:a1:86:28:ca:5c:d4:3f:00:c3:3b:f5:33:a5:56:f7:07:
c6:0f:64:0e:69:62:cf:6c:71:f1:72:ec:2a:f1:ce:3a:84:bf:
0f:0e:98:21:7f:4c:58:f8:95:b1:18:e1:ee:8c:9f:d1:9b:18:
28:9a:5d:76:ed:39:c4:bc:dc:c9:07:ab:61:69:44:c1:83:aa:
d3:b2:f4:cd
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIDA81UMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDVj
ZDM3OWNlZGNkYzIwZjA4NzVjNGIwOGI5NGI0MTE2MWIzZThjMDMwHhcNMjIwMzA3
MDgwMjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhkNDU0NTA1ZDJiZTkx
YzA3MmE4NTFmYzNmOTRjZDQwODc1ZDY5MDM0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzrTqk0P1UBTzBYLtwt6V43R2WMGtT55yJlNE3Grsnc9bYuaW
mxdoXiyKeGTJ2hypROchX1JpMLAKXieim0PytmfdlEd41NvUhv9xwpjIi6iNo9or
CKwqV4wA/9RP6N7xhKdWXufo5Ou9cjglQD+EX9GtI4VodiSsrap5JFWmdQMi7Uew
iq6GafJCSpLYOCjA01DsuywFzJzqpsafpj202Eki6krofTinodeWK8rv/0HaCSgj
mSwm98E//MEki1NEUKxx55EFT3W+9xGogrqsxlAVjC6EzRQwZzfQgtA++EEu4X5F
0DRYV6fCWobsG7X7CqMPcOIWL0JTW/UkZzD8RwIDAQABo4ICGjCCAhYwHQYDVR0O
BBYEFNRUUF0r6RwHKoUfw/lM1Ah11pA0MB8GA1UdIwQYMBaAFFzTec7c3CDwh1xL
CLlLQRYbPowDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WE5ONXp0emNJUENIWEVzSXVVdEJGaHMtakFNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iYS9mM2NjYTQtZjZiZi00NzM0LWFiYmQtMDk2NDQ2NGMxNzUxLzEv
MUZSUVhTdnBIQWNxaFJfRC1VelVDSFhXa0RRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9m
M2NjYTQtZjZiZi00NzM0LWFiYmQtMDk2NDQ2NGMxNzUxLzEvWE5ONXp0emNJUENI
WEVzSXVVdEJGaHMtakFNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAG
CCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCW8FAMA8EAgACMAkDBwAgAQZ8E8gw
DQYJKoZIhvcNAQELBQADggEBADVsFsYGuNF86Ivff/GuMOp7lUK1t7JrdoE2er/H
QrG7LAkML3C6RdfB025PovBB+lVK0+/cRLEfZSQiINqmaCQknQXtDlrR4lmDVBbZ
frxiC1pHARsDFxrOtwIY3ntMwafCTWREeguUox/+WYr2cMYZItR+bZRu93MdURlE
4sIy7rqHBG39E3PxcMhCArKCkB+z2MkgY+QVWLcR8dcSG18XqA8+f4bD8M8WC+mU
wPX3a8usfEeZoYYoylzUPwDDO/UzpVb3B8YPZA5pYs9scfFy7CrxzjqEvw8OmCF/
TFj4lbEY4e6Mn9GbGCiaXXbtOcS83MkHq2FpRMGDqtOy9M0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:32 2024 by rpki-client on console-fra.rpki-client.org