Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/682496-1d5e-402b-b6ed-8a946e9884ab/1/kUdiNO18_lurpM-55ZtipCpzK9k.roa
File: kUdiNO18_lurpM-55ZtipCpzK9k.roa (raw, json)
Hash identifier: mlreh9TrFSm9TKE08XfOmL9+3x4x9JsqTTtZUqL9bEo=
Subject key identifier: 91:47:62:34:ED:7C:FE:5B:AB:A4:CF:B9:E5:9B:62:A4:2A:73:2B:D9
Certificate issuer: /CN=d2e563ca014ee40b98d1e5ed7d9cc289156d443f
Certificate serial: 3D6C96
Authority key identifier: D2:E5:63:CA:01:4E:E4:0B:98:D1:E5:ED:7D:9C:C2:89:15:6D:44:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0uVjygFO5AuY0eXtfZzCiRVtRD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/682496-1d5e-402b-b6ed-8a946e9884ab/1/kUdiNO18_lurpM-55ZtipCpzK9k.roa
Signing time: Sat 01 Jan 2022 02:54:10 +0000
ROA not before: Sat 01 Jan 2022 02:54:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209235
IP address blocks: 91.199.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4025494 (0x3d6c96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2e563ca014ee40b98d1e5ed7d9cc289156d443f
Validity
Not Before: Jan 1 02:54:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91476234ed7cfe5baba4cfb9e59b62a42a732bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c0:67:79:c7:12:d1:c2:4b:95:fb:96:88:08:
c6:b7:a3:ab:a6:49:32:55:11:45:8f:34:e4:2e:f7:
40:ee:2e:4b:72:5e:cb:12:12:c7:60:eb:87:2a:c0:
31:78:bf:df:ea:4f:6d:e3:36:33:eb:15:e2:29:b7:
d9:31:69:3a:29:d3:96:64:56:95:90:7c:86:23:8d:
f8:04:76:96:16:ac:77:3c:ab:32:0a:e4:9c:c5:e1:
45:95:a0:d1:3a:52:3e:95:58:64:00:6c:03:50:01:
25:ad:59:bf:06:88:bd:64:d1:ab:98:d9:83:52:5c:
76:3f:e0:6d:e0:ed:9f:4a:45:c6:c3:a6:4f:f4:ea:
b6:2f:66:92:38:ee:07:eb:8a:9b:3b:15:45:ae:33:
93:14:31:36:ea:50:9b:81:8b:ff:ff:a1:67:99:15:
c6:7d:30:9a:d5:99:e7:bb:02:84:ee:24:cf:fa:be:
97:fc:92:a4:12:8c:8e:8e:60:ae:9c:d8:cf:dc:38:
9f:77:63:09:69:88:a5:f9:a2:d0:95:fe:c5:ef:e4:
87:29:11:74:d1:d2:21:db:39:91:32:55:83:99:b0:
a5:11:33:dc:25:e3:12:84:55:dc:ce:86:30:97:fe:
1e:81:02:6c:4e:59:07:67:97:67:ec:91:ca:0e:10:
0b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:47:62:34:ED:7C:FE:5B:AB:A4:CF:B9:E5:9B:62:A4:2A:73:2B:D9
X509v3 Authority Key Identifier:
keyid:D2:E5:63:CA:01:4E:E4:0B:98:D1:E5:ED:7D:9C:C2:89:15:6D:44:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0uVjygFO5AuY0eXtfZzCiRVtRD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/682496-1d5e-402b-b6ed-8a946e9884ab/1/kUdiNO18_lurpM-55ZtipCpzK9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/682496-1d5e-402b-b6ed-8a946e9884ab/1/0uVjygFO5AuY0eXtfZzCiRVtRD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.48.0/24
Signature Algorithm: sha256WithRSAEncryption
58:90:32:43:6b:a8:40:dc:d2:90:b5:b9:e1:62:05:0a:fb:7a:
b5:46:8f:ed:38:fa:c2:c0:cd:f6:d5:8a:6e:c0:1e:42:59:d9:
2a:19:99:ce:de:f5:6b:72:52:44:d7:12:f1:33:ab:1c:ac:a9:
51:dc:6f:7e:d7:15:52:00:72:e9:45:a1:8c:dd:93:80:c3:57:
8a:d8:05:82:f0:a9:b5:22:31:eb:fd:d3:b0:5f:08:a9:d9:93:
5e:66:8f:cf:73:3f:f3:a5:f2:b2:ab:0c:4f:8e:76:b9:e8:35:
fc:52:b3:92:d4:36:0c:11:2b:6e:e6:7a:30:f1:29:00:33:ce:
2f:67:50:31:e2:11:fc:22:bf:a8:46:13:14:3e:46:0e:18:92:
7c:21:7f:aa:48:be:bc:73:b4:ab:cf:db:f3:b3:df:5f:6e:17:
f5:81:8d:21:81:c0:2b:a0:9c:0b:ef:2a:99:46:2d:89:2d:6b:
b2:e6:41:22:bb:63:17:09:d4:87:aa:b8:eb:08:1f:ab:91:fd:
28:e7:98:3e:91:61:47:23:97:52:89:e7:46:3d:29:ab:f6:10:
a2:6a:67:b3:91:9c:3b:2b:dc:9d:e0:22:ec:25:d4:5a:d2:be:
75:e0:c4:ce:00:01:4d:ef:50:5c:6c:97:3a:5d:0e:e2:07:7f:
90:da:89:ef
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDPWyWMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQy
ZTU2M2NhMDE0ZWU0MGI5OGQxZTVlZDdkOWNjMjg5MTU2ZDQ0M2YwHhcNMjIwMTAx
MDI1NDEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg5MTQ3NjIzNGVkN2Nm
ZTViYWJhNGNmYjllNTliNjJhNDJhNzMyYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzsBneccS0cJLlfuWiAjGt6OrpkkyVRFFjzTkLvdA7i5Lcl7L
EhLHYOuHKsAxeL/f6k9t4zYz6xXiKbfZMWk6KdOWZFaVkHyGI434BHaWFqx3PKsy
CuScxeFFlaDROlI+lVhkAGwDUAElrVm/Boi9ZNGrmNmDUlx2P+Bt4O2fSkXGw6ZP
9Oq2L2aSOO4H64qbOxVFrjOTFDE26lCbgYv//6FnmRXGfTCa1ZnnuwKE7iTP+r6X
/JKkEoyOjmCunNjP3Difd2MJaYil+aLQlf7F7+SHKRF00dIh2zmRMlWDmbClETPc
JeMShFXczoYwl/4egQJsTlkHZ5dn7JHKDhALCwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFJFHYjTtfP5bq6TPueWbYqQqcyvZMB8GA1UdIwQYMBaAFNLlY8oBTuQLmNHl
7X2cwokVbUQ/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
MHVWanlnRk81QXVZMGVYdGZaekNpUlZ0UkQ4LmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9iZS82ODI0OTYtMWQ1ZS00MDJiLWI2ZWQtOGE5NDZlOTg4NGFiLzEv
a1VkaU5PMThfbHVycE0tNTVadGlwQ3B6SzlrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82
ODI0OTYtMWQ1ZS00MDJiLWI2ZWQtOGE5NDZlOTg4NGFiLzEvMHVWanlnRk81QXVZ
MGVYdGZaekNpUlZ0UkQ4LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8cwMA0GCSqGSIb3DQEBCwUAA4IB
AQBYkDJDa6hA3NKQtbnhYgUK+3q1Ro/tOPrCwM321YpuwB5CWdkqGZnO3vVrclJE
1xLxM6scrKlR3G9+1xVSAHLpRaGM3ZOAw1eK2AWC8Km1IjHr/dOwXwip2ZNeZo/P
cz/zpfKyqwxPjna56DX8UrOS1DYMEStu5now8SkAM84vZ1Ax4hH8Ir+oRhMUPkYO
GJJ8IX+qSL68c7Srz9vzs99fbhf1gY0hgcAroJwL7yqZRi2JLWuy5kEiu2MXCdSH
qrjrCB+rkf0o55g+kWFHI5dSiedGPSmr9hCiamezkZw7K9yd4CLsJdRa0r514MTO
AAFN71BcbJc6XQ7iB3+Q2onv
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-ams.rpki-client.org