Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/32eaa2-ccb9-48e1-962d-e3ea6494d4ea/1/6ykxJEcJaZzFGgWS3KlsYL4w7iA.roa
File: 6ykxJEcJaZzFGgWS3KlsYL4w7iA.roa (raw, json)
Hash identifier: Ulfdj3a5JkPW/pkWKYZ/hoimQHFGxM6rAsNcumm2iCE=
Subject key identifier: EB:29:31:24:47:09:69:9C:C5:1A:05:92:DC:A9:6C:60:BE:30:EE:20
Certificate issuer: /CN=384c679cbaf8c2ad7bd7e159086fdf0a27d2a284
Certificate serial: 01821A63CA19B176A4F5BD842E2CF9B34BEE
Authority key identifier: 38:4C:67:9C:BA:F8:C2:AD:7B:D7:E1:59:08:6F:DF:0A:27:D2:A2:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OExnnLr4wq171-FZCG_fCifSooQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/32eaa2-ccb9-48e1-962d-e3ea6494d4ea/1/6ykxJEcJaZzFGgWS3KlsYL4w7iA.roa
Signing time: Wed 20 Jul 2022 06:55:23 +0000
ROA not before: Wed 20 Jul 2022 06:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51816
IP address blocks: 91.220.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:63:ca:19:b1:76:a4:f5:bd:84:2e:2c:f9:b3:4b:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=384c679cbaf8c2ad7bd7e159086fdf0a27d2a284
Validity
Not Before: Jul 20 06:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb2931244709699cc51a0592dca96c60be30ee20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b3:39:bb:b6:c4:41:3f:37:d2:86:f5:73:bf:
10:e8:96:86:31:82:9d:27:ec:c4:95:ee:47:f9:f1:
be:9a:d4:be:78:9a:56:84:58:a1:d6:87:e5:3b:3d:
f6:f2:1d:a7:de:cb:a6:be:8c:2c:b5:30:58:1e:30:
19:c4:c9:85:1f:a3:bd:55:90:2a:09:1f:f6:19:d1:
c4:a3:51:b7:b7:be:57:d5:d7:b2:23:49:90:7c:28:
47:5f:bf:65:21:b1:c3:5b:ed:e1:55:1c:bf:cd:6d:
df:7b:b4:ad:14:8d:b4:27:b0:70:59:6e:0e:4e:b8:
5a:de:27:fa:47:f8:4b:eb:f2:6e:66:d6:f7:f6:a3:
2c:c9:0d:70:ea:1e:c6:ed:ac:ce:8b:e6:95:e5:7d:
0e:a4:bb:d8:6b:64:f0:8e:60:52:8f:a2:40:13:65:
95:af:24:b6:b8:72:f6:5e:46:ad:3e:d1:77:8f:02:
56:e4:33:89:0a:9f:89:a6:b6:2d:dd:2c:07:f6:2a:
e3:64:37:81:c3:36:ed:40:ec:4e:2f:9e:24:12:b2:
53:fa:f8:11:27:f8:49:b3:32:ec:7e:c2:72:af:e2:
c5:2e:9e:b0:84:5a:dc:db:03:97:86:c7:9a:f5:90:
d6:7e:1e:45:ba:c3:44:77:2c:21:d3:32:f7:ef:c2:
a7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:29:31:24:47:09:69:9C:C5:1A:05:92:DC:A9:6C:60:BE:30:EE:20
X509v3 Authority Key Identifier:
keyid:38:4C:67:9C:BA:F8:C2:AD:7B:D7:E1:59:08:6F:DF:0A:27:D2:A2:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OExnnLr4wq171-FZCG_fCifSooQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32eaa2-ccb9-48e1-962d-e3ea6494d4ea/1/6ykxJEcJaZzFGgWS3KlsYL4w7iA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/32eaa2-ccb9-48e1-962d-e3ea6494d4ea/1/OExnnLr4wq171-FZCG_fCifSooQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.107.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:7f:1c:d9:7f:8e:d2:bf:d4:d2:8c:42:2c:68:60:74:eb:6a:
8c:f8:b4:f1:27:23:89:3f:cf:07:5c:7d:6d:80:94:fb:dd:66:
76:ed:0d:51:7e:8c:ea:9f:36:d3:d5:b6:03:ce:4e:88:f8:02:
22:47:72:4b:2b:d3:8f:b6:2c:0d:b8:5a:42:26:8b:81:9b:f5:
ec:e7:ee:a7:cf:87:1a:32:35:77:df:4f:39:a3:ef:06:b8:4c:
e8:fd:e6:83:13:b5:cc:ea:98:55:46:b2:6d:f7:71:5e:13:2d:
c4:9e:82:ea:de:1d:31:63:17:68:47:cf:c6:c9:74:2b:3d:ed:
ba:26:91:bc:10:f9:1e:9d:d6:9a:5b:c2:31:b7:5c:a8:57:8b:
68:94:b3:cf:f7:47:4d:fd:a4:3e:f1:48:83:72:b6:eb:a3:40:
a2:9c:e4:bf:ae:00:6a:b1:81:4c:65:6b:a5:4e:2f:86:a3:d4:
a3:ed:7e:e5:20:07:a5:69:ab:ac:4e:5a:5e:1a:ce:43:b6:c9:
06:8c:3e:e9:ec:c4:14:91:3d:10:50:dc:d0:cb:0c:e8:c2:5c:
a4:db:d3:d3:ad:22:21:f5:89:b8:d7:2f:35:48:db:7f:b0:78:
0c:11:46:17:9c:09:af:57:6e:5a:6b:54:f4:a8:1f:8a:b2:1c:
3c:6e:41:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIaY8oZsXak9b2ELiz5s0vuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NGM2NzljYmFmOGMyYWQ3YmQ3ZTE1OTA4NmZkZjBhMjdk
MmEyODQwHhcNMjIwNzIwMDY1NTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjI5MzEyNDQ3MDk2OTljYzUxYTA1OTJkY2E5NmM2MGJlMzBlZTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLM5u7bEQT830ob1c78Q6JaGMYKd
J+zEle5H+fG+mtS+eJpWhFih1oflOz328h2n3sumvowstTBYHjAZxMmFH6O9VZAq
CR/2GdHEo1G3t75X1deyI0mQfChHX79lIbHDW+3hVRy/zW3fe7StFI20J7BwWW4O
Trha3if6R/hL6/JuZtb39qMsyQ1w6h7G7azOi+aV5X0OpLvYa2TwjmBSj6JAE2WV
ryS2uHL2XkatPtF3jwJW5DOJCp+JprYt3SwH9irjZDeBwzbtQOxOL54kErJT+vgR
J/hJszLsfsJyr+LFLp6whFrc2wOXhsea9ZDWfh5FusNEdywh0zL378Kn1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOspMSRHCWmcxRoFktypbGC+MO4gMB8GA1UdIwQY
MBaAFDhMZ5y6+MKte9fhWQhv3won0qKEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0V4bm5McjR3cTE3MS1GWkNHX2ZDaWZTb29RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zMmVhYTItY2NiOS00OGUxLTk2MmQt
ZTNlYTY0OTRkNGVhLzEvNnlreEpFY0phWnpGR2dXUzNLbHNZTDR3N2lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8zMmVhYTItY2NiOS00OGUxLTk2MmQtZTNlYTY0OTRkNGVh
LzEvT0V4bm5McjR3cTE3MS1GWkNHX2ZDaWZTb29RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9xrMA0G
CSqGSIb3DQEBCwUAA4IBAQB+fxzZf47Sv9TSjEIsaGB062qM+LTxJyOJP88HXH1t
gJT73WZ27Q1RfozqnzbT1bYDzk6I+AIiR3JLK9OPtiwNuFpCJouBm/Xs5+6nz4ca
MjV33085o+8GuEzo/eaDE7XM6phVRrJt93FeEy3EnoLq3h0xYxdoR8/GyXQrPe26
JpG8EPkendaaW8Ixt1yoV4tolLPP90dN/aQ+8UiDcrbro0CinOS/rgBqsYFMZWul
Ti+Go9Sj7X7lIAelaausTlpeGs5DtskGjD7p7MQUkT0QUNzQywzowlyk29PTrSIh
9Ym41y81SNt/sHgMEUYXnAmvV25aa1T0qB+Kshw8bkGc
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:55 2024 by rpki-client on console-ams.rpki-client.org