Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/J1Prg_q5FdLFDa3Wq3p6sR7Vurg.roa
File: J1Prg_q5FdLFDa3Wq3p6sR7Vurg.roa (raw, json)
Hash identifier: fhwtnmDcxxvcOCtsP9cfCfIkx7C9L/baYFA8Vl5Ry+k=
Subject key identifier: 27:53:EB:83:FA:B9:15:D2:C5:0D:AD:D6:AB:7A:7A:B1:1E:D5:BA:B8
Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Certificate serial: 19AC3D05
Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/J1Prg_q5FdLFDa3Wq3p6sR7Vurg.roa
Signing time: Sat 01 Jan 2022 05:52:40 +0000
ROA not before: Sat 01 Jan 2022 05:52:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209667
IP address blocks: 89.223.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430718213 (0x19ac3d05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff
Validity
Not Before: Jan 1 05:52:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2753eb83fab915d2c50dadd6ab7a7ab11ed5bab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:01:2c:da:9f:f3:41:f4:37:3f:50:e6:c7:10:
cc:2f:5b:23:46:a1:1f:ed:25:b1:76:b8:92:d7:54:
53:95:be:84:5a:82:bb:08:00:6e:26:c5:98:ab:be:
4c:4a:d9:a1:87:c8:06:3f:3a:eb:72:3c:74:6c:03:
c9:9f:b3:c1:a3:15:b3:dd:9d:71:ae:01:ac:4c:98:
3a:81:9b:ce:e2:37:17:c4:95:11:4a:4a:cc:8d:8b:
eb:75:6d:70:89:41:a0:d9:34:f5:0c:08:46:a4:2b:
a2:be:47:04:7c:89:16:ad:37:75:68:5f:a5:46:20:
7b:32:1e:63:c4:01:0f:37:ca:47:51:43:57:2d:f0:
51:ae:0e:d4:5d:93:e9:13:f2:82:02:22:19:2c:83:
76:60:f6:ad:18:fd:3d:46:1f:8a:43:63:b3:5f:97:
cf:0a:ac:8b:08:3c:00:81:1d:ca:a9:5c:aa:c1:44:
14:56:52:32:d6:c5:f7:1c:e9:a3:14:e0:7e:e5:c9:
7d:db:97:ed:0f:67:5f:ae:7c:61:e5:7a:e2:64:93:
3d:ce:cd:56:4c:17:45:6d:20:1b:fc:36:14:bc:fa:
31:02:ac:40:58:70:e0:96:6f:05:5c:3d:b2:bc:a1:
0f:1d:0f:15:d2:3a:d7:42:72:2d:90:f1:2a:f5:47:
ed:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:53:EB:83:FA:B9:15:D2:C5:0D:AD:D6:AB:7A:7A:B1:1E:D5:BA:B8
X509v3 Authority Key Identifier:
keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/J1Prg_q5FdLFDa3Wq3p6sR7Vurg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.223.96.0/24
Signature Algorithm: sha256WithRSAEncryption
81:61:dc:40:68:ea:65:f0:41:b7:ff:f4:bc:21:a9:8a:07:3e:
54:6f:48:20:aa:df:67:40:f6:80:54:5b:05:2e:f4:05:83:8c:
da:ad:dc:63:14:b6:22:14:e6:e1:e6:a9:3f:b2:9a:8a:a3:ae:
54:67:36:9a:63:21:a7:4c:4f:f3:62:96:ab:aa:0c:50:2e:4c:
93:97:f2:0d:c6:70:76:73:02:f4:c1:9c:15:ec:f1:fa:f7:4f:
e9:4a:d1:76:3c:e0:72:2e:bf:15:5b:0d:5e:61:22:f4:2b:17:
af:56:45:5d:c4:46:5d:4d:56:a0:66:bc:d4:5c:a8:f9:12:ac:
0b:aa:b9:43:2e:8b:da:f9:02:ef:51:d5:4a:40:42:45:c0:9b:
fc:84:f5:2c:8e:06:82:72:39:4a:ad:f8:ad:ab:83:3e:b9:9b:
04:b5:30:df:0f:00:f0:b7:e2:84:a4:e0:2e:18:67:ca:ef:23:
e1:3f:2d:46:8c:6b:f3:65:ae:f7:a6:ff:11:f0:87:2c:60:38:
85:45:f6:fb:e8:4b:b2:7e:6b:23:b1:79:fd:02:bd:d3:af:32:
06:ed:9e:00:41:2c:ca:b9:35:ab:62:66:49:21:74:49:64:7d:
16:0a:83:4d:c6:23:19:77:a1:f0:a3:0f:aa:e7:01:fe:40:dd:
23:14:db:cc
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGaw9BTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
ZDgzMTNlNDFlNjQ2YTA5Y2QwMWUyZTZmNDczOWQzYmQyMzZjNGZmMB4XDTIyMDEw
MTA1NTI0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjc1M2ViODNmYWI5
MTVkMmM1MGRhZGQ2YWI3YTdhYjExZWQ1YmFiODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALcBLNqf80H0Nz9Q5scQzC9bI0ahH+0lsXa4ktdUU5W+hFqC
uwgAbibFmKu+TErZoYfIBj8663I8dGwDyZ+zwaMVs92dca4BrEyYOoGbzuI3F8SV
EUpKzI2L63VtcIlBoNk09QwIRqQror5HBHyJFq03dWhfpUYgezIeY8QBDzfKR1FD
Vy3wUa4O1F2T6RPyggIiGSyDdmD2rRj9PUYfikNjs1+Xzwqsiwg8AIEdyqlcqsFE
FFZSMtbF9xzpoxTgfuXJfduX7Q9nX658YeV64mSTPc7NVkwXRW0gG/w2FLz6MQKs
QFhw4JZvBVw9sryhDx0PFdI610JyLZDxKvVH7ZUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQnU+uD+rkV0sUNrdarenqxHtW6uDAfBgNVHSMEGDAWgBTNgxPkHmRqCc0B
4ub0c5070jbE/zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3pZTVQ1QjVrYWduTkFlTG05SE9kTzlJMnhQOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmUvMzQ2NWYzLTAzYzItNGVhYS1hNjc0LTg4NjJiNTE3MzE3Yy8x
L0oxUHJnX3E1RmRMRkRhM1dxM3A2c1I3VnVyZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUv
MzQ2NWYzLTAzYzItNGVhYS1hNjc0LTg4NjJiNTE3MzE3Yy8xL3pZTVQ1QjVrYWdu
TkFlTG05SE9kTzlJMnhQOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFnfYDANBgkqhkiG9w0BAQsFAAOC
AQEAgWHcQGjqZfBBt//0vCGpigc+VG9IIKrfZ0D2gFRbBS70BYOM2q3cYxS2IhTm
4eapP7KaiqOuVGc2mmMhp0xP82KWq6oMUC5Mk5fyDcZwdnMC9MGcFezx+vdP6UrR
djzgci6/FVsNXmEi9CsXr1ZFXcRGXU1WoGa81Fyo+RKsC6q5Qy6L2vkC71HVSkBC
RcCb/IT1LI4GgnI5Sq34rauDPrmbBLUw3w8A8LfihKTgLhhnyu8j4T8tRoxr82Wu
96b/EfCHLGA4hUX2++hLsn5rI7F5/QK9068yBu2eAEEsyrk1q2JmSSF0SWR9FgqD
TcYjGXeh8KMPqucB/kDdIxTbzA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:02 2024 by rpki-client on console-fra.rpki-client.org