Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/bM3_8bmE-ep4EiM-lc9uGLE6hDg.roa
File: bM3_8bmE-ep4EiM-lc9uGLE6hDg.roa (raw, json)
Hash identifier: NCQOhCc8GDP8RZZRuFuUlwbVR9HUUKsGLyYYa1qxvoo=
Subject key identifier: 6C:CD:FF:F1:B9:84:F9:EA:78:12:23:3E:95:CF:6E:18:B1:3A:84:38
Certificate issuer: /CN=54a14be619755eeeeb91fe2f62a1d4ee07861496
Certificate serial: 31D0FC
Authority key identifier: 54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/bM3_8bmE-ep4EiM-lc9uGLE6hDg.roa
Signing time: Thu 12 May 2022 20:32:02 +0000
ROA not before: Thu 12 May 2022 20:32:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48167
IP address blocks: 91.209.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3264764 (0x31d0fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54a14be619755eeeeb91fe2f62a1d4ee07861496
Validity
Not Before: May 12 20:32:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ccdfff1b984f9ea7812233e95cf6e18b13a8438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:01:1f:92:08:95:14:fc:5c:6d:f6:3f:98:a1:
99:ed:dd:1a:e3:c7:fd:ac:fa:65:cf:0b:fc:50:95:
50:48:d4:4b:42:a3:9b:bc:7a:1a:51:1c:21:8d:be:
80:0f:f3:0b:e8:0c:6e:12:7a:38:e1:79:c1:b8:44:
ee:35:7b:b5:39:cf:f9:c3:1f:b5:1f:24:9a:b6:41:
cd:cf:71:fc:6f:3b:13:7c:05:a8:92:63:90:3b:78:
ae:12:22:e0:b3:c3:2a:de:61:0c:7b:68:3c:30:8e:
bb:41:27:31:74:cd:4d:9c:df:6c:f6:dd:75:54:78:
16:07:4a:d1:5b:e0:2c:f4:5b:92:d9:6b:ff:15:cb:
3a:de:74:f2:00:07:62:51:60:f0:de:a0:2d:64:f1:
cc:d4:23:5c:69:f9:17:e1:90:01:64:5b:48:57:b4:
30:3a:5e:63:e9:2b:5e:12:d2:fe:a1:df:23:33:45:
5b:9b:f6:ea:e4:2a:0a:94:5d:72:c6:37:bc:ae:36:
09:82:a9:a9:d2:05:ac:58:4c:02:34:c1:c3:b7:d9:
16:c7:cf:cd:1a:65:47:61:52:0f:47:aa:8e:d8:f4:
ec:cf:4a:da:c5:cf:35:a1:c4:15:8b:da:97:5a:00:
4d:e6:51:34:14:9a:c1:de:10:78:a4:0b:28:fc:8a:
ab:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:CD:FF:F1:B9:84:F9:EA:78:12:23:3E:95:CF:6E:18:B1:3A:84:38
X509v3 Authority Key Identifier:
keyid:54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/bM3_8bmE-ep4EiM-lc9uGLE6hDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.45.0/24
Signature Algorithm: sha256WithRSAEncryption
58:83:e9:57:02:a9:3f:60:ac:ab:e4:73:c1:76:4e:10:42:b8:
4a:7b:e3:6d:ab:ee:4d:96:c4:4d:f5:67:6a:d7:fc:c3:fc:7f:
0f:ee:1c:2a:8b:40:2b:62:5a:96:b4:40:db:df:02:d8:53:8e:
dd:3d:cd:29:70:8e:e2:07:a4:04:9a:51:53:96:06:fe:a8:62:
0a:15:98:3b:46:3c:3d:c4:26:8d:90:a1:b2:20:28:b7:78:22:
a5:98:2c:f0:4b:dd:6d:28:f3:39:c5:ed:44:ea:37:13:19:5a:
8a:36:76:a3:fc:a3:b4:7c:73:19:90:86:72:d8:71:35:82:44:
3f:25:24:98:7f:fc:52:e5:8b:16:3c:01:3e:77:16:07:62:48:
b5:b1:84:65:d6:42:6e:57:bb:88:de:a6:e5:e5:88:dd:c3:f7:
3b:e6:b8:b1:19:55:d4:a8:e5:a5:0f:b8:7b:a8:26:29:33:a0:
ba:90:dc:3b:17:b2:d9:8b:cb:a6:4a:b0:67:bf:d0:b2:27:9b:
e2:02:f9:3d:9b:f0:3b:07:ce:11:ec:5b:e8:0e:1a:23:0e:56:
c4:18:61:9c:02:f0:65:1d:83:bc:0c:6d:06:f0:ed:da:eb:08:
88:d3:67:89:5a:27:4d:42:a0:0f:c0:c6:0b:4d:9f:b9:93:22:
33:d9:e4:5d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDMdD8MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDU0
YTE0YmU2MTk3NTVlZWVlYjkxZmUyZjYyYTFkNGVlMDc4NjE0OTYwHhcNMjIwNTEy
MjAzMjAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2Y2NkZmZmMWI5ODRm
OWVhNzgxMjIzM2U5NWNmNmUxOGIxM2E4NDM4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAkQEfkgiVFPxcbfY/mKGZ7d0a48f9rPplzwv8UJVQSNRLQqOb
vHoaURwhjb6AD/ML6AxuEno44XnBuETuNXu1Oc/5wx+1HySatkHNz3H8bzsTfAWo
kmOQO3iuEiLgs8Mq3mEMe2g8MI67QScxdM1NnN9s9t11VHgWB0rRW+As9FuS2Wv/
Fcs63nTyAAdiUWDw3qAtZPHM1CNcafkX4ZABZFtIV7QwOl5j6SteEtL+od8jM0Vb
m/bq5CoKlF1yxje8rjYJgqmp0gWsWEwCNMHDt9kWx8/NGmVHYVIPR6qO2PTsz0ra
xc81ocQVi9qXWgBN5lE0FJrB3hB4pAso/IqrfwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGzN//G5hPnqeBIjPpXPbhixOoQ4MB8GA1UdIwQYMBaAFFShS+YZdV7u65H+
L2Kh1O4HhhSWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
VktGTDVobDFYdTdya2Y0dllxSFU3Z2VHRkpZLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jMy9iOGE5ZTctOTQ1MC00MzZjLWJmOTAtOGU5MDQ2NmJhZDM4LzEv
Yk0zXzhibUUtZXA0RWlNLWxjOXVHTEU2aERnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9i
OGE5ZTctOTQ1MC00MzZjLWJmOTAtOGU5MDQ2NmJhZDM4LzEvVktGTDVobDFYdTdy
a2Y0dllxSFU3Z2VHRkpZLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9EtMA0GCSqGSIb3DQEBCwUAA4IB
AQBYg+lXAqk/YKyr5HPBdk4QQrhKe+Ntq+5NlsRN9Wdq1/zD/H8P7hwqi0ArYlqW
tEDb3wLYU47dPc0pcI7iB6QEmlFTlgb+qGIKFZg7Rjw9xCaNkKGyICi3eCKlmCzw
S91tKPM5xe1E6jcTGVqKNnaj/KO0fHMZkIZy2HE1gkQ/JSSYf/xS5YsWPAE+dxYH
Yki1sYRl1kJuV7uI3qbl5Yjdw/c75rixGVXUqOWlD7h7qCYpM6C6kNw7F7LZi8um
SrBnv9CyJ5viAvk9m/A7B84R7FvoDhojDlbEGGGcAvBlHYO8DG0G8O3a6wiI02eJ
WidNQqAPwMYLTZ+5kyIz2eRd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:53 2024 by rpki-client on console-fra.rpki-client.org