Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/309c36-7c1d-4a33-9cf5-ed36477b9480/1/Y2__3XeuDnaj42znJcFk8gKlUTA.roa
File: Y2__3XeuDnaj42znJcFk8gKlUTA.roa (raw, json)
Hash identifier: EzBpI6/aXu5gxLqNP7ZIf/ZOKn/JOUOZEk9eRVSnmfA=
Subject key identifier: 63:6F:FF:DD:77:AE:0E:76:A3:E3:6C:E7:25:C1:64:F2:02:A5:51:30
Certificate issuer: /CN=a9a28417c1e1b68f69be1d3ec812037097619ccd
Certificate serial: 013738
Authority key identifier: A9:A2:84:17:C1:E1:B6:8F:69:BE:1D:3E:C8:12:03:70:97:61:9C:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qaKEF8Hhto9pvh0-yBIDcJdhnM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/309c36-7c1d-4a33-9cf5-ed36477b9480/1/Y2__3XeuDnaj42znJcFk8gKlUTA.roa
Signing time: Tue 24 May 2022 07:41:13 +0000
ROA not before: Tue 24 May 2022 07:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44157
IP address blocks: 91.201.80.0/24 maxlen: 24
91.201.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79672 (0x13738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a28417c1e1b68f69be1d3ec812037097619ccd
Validity
Not Before: May 24 07:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=636fffdd77ae0e76a3e36ce725c164f202a55130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9b:2c:c4:34:30:89:df:72:c6:98:5c:eb:15:
bc:fb:0f:c5:d0:bb:92:c2:43:c6:9a:05:5a:d3:97:
d4:7e:62:81:0d:cb:ec:b3:d8:c9:60:fd:be:70:32:
43:32:2d:3b:ad:73:3e:e4:5e:01:5d:ed:bc:99:7d:
92:57:83:7e:0a:b3:62:48:0f:9b:0b:ca:e9:c5:e4:
38:01:24:cc:a4:35:9d:5b:3f:d0:51:89:1b:fe:5d:
41:8e:84:2c:65:84:44:f5:44:a1:cb:ac:96:83:fe:
27:1c:6d:5d:45:6d:d8:7e:c2:8e:35:8e:37:8d:7c:
25:3c:c5:72:e9:a1:a4:bd:2f:9f:26:a6:32:91:ef:
bb:86:a8:b4:e9:84:7d:5e:16:f0:92:aa:c2:36:5b:
92:ef:cf:00:65:07:78:d1:ca:66:a8:b5:64:58:14:
21:60:7c:23:8b:cb:3a:fe:66:b7:b9:fe:70:c3:7f:
db:3e:c3:92:ab:5f:45:b2:a5:b7:94:6a:f5:96:1a:
37:30:3f:f1:0b:ac:7a:1c:45:14:a3:f5:86:e3:fd:
69:0e:c9:60:8e:f7:14:5c:73:14:97:b1:92:7a:d3:
16:d7:6c:3d:ef:7f:68:28:ff:f8:16:8c:17:13:14:
e1:26:16:f9:96:ba:e7:36:f0:58:1e:15:5c:92:aa:
61:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:6F:FF:DD:77:AE:0E:76:A3:E3:6C:E7:25:C1:64:F2:02:A5:51:30
X509v3 Authority Key Identifier:
keyid:A9:A2:84:17:C1:E1:B6:8F:69:BE:1D:3E:C8:12:03:70:97:61:9C:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qaKEF8Hhto9pvh0-yBIDcJdhnM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/309c36-7c1d-4a33-9cf5-ed36477b9480/1/Y2__3XeuDnaj42znJcFk8gKlUTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/309c36-7c1d-4a33-9cf5-ed36477b9480/1/qaKEF8Hhto9pvh0-yBIDcJdhnM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.80.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:f5:5f:8e:4b:ef:41:35:7f:d6:0b:9c:b8:22:ec:8d:29:07:
62:1a:af:2c:c9:b5:75:5c:c6:ab:55:e9:a8:bb:0c:85:0b:04:
ed:ae:f3:6a:40:d1:1c:cb:d6:b6:44:6a:b1:e5:a9:77:28:ad:
b1:42:ae:1c:f4:2c:50:c6:ee:89:ca:26:3a:c6:2c:49:99:2d:
59:20:3e:92:6a:8e:d3:89:84:34:6a:ce:81:a7:00:c0:13:6c:
51:e0:fe:43:ad:ec:4e:db:d1:c6:d0:94:c8:0a:ea:0b:bc:b7:
fb:bf:45:8f:16:cc:df:0f:9e:af:0f:ba:ce:5e:f6:bd:98:47:
4a:b9:22:a5:a1:2f:bc:60:8e:21:b3:a3:c6:ea:8e:7e:2d:b6:
4a:f3:0e:4c:fd:6d:67:c4:67:88:b8:f4:8c:9b:41:e9:63:c1:
2e:43:5f:04:3a:b6:66:d4:d3:da:a6:a6:74:17:f2:8e:bc:de:
41:de:62:8a:e0:a1:d2:08:bc:4a:22:2f:02:19:75:5b:9c:0a:
48:3b:48:16:8b:48:3b:e7:dc:ea:6e:a1:c2:96:09:10:85:e7:
76:67:75:c5:c2:82:21:fe:aa:87:36:9b:0f:86:43:f6:5b:3e:
a7:7b:cf:0e:79:95:9d:53:ee:2f:ab:88:94:0b:68:42:c7:08:
90:6f:81:11
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDATc4MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE5
YTI4NDE3YzFlMWI2OGY2OWJlMWQzZWM4MTIwMzcwOTc2MTljY2QwHhcNMjIwNTI0
MDc0MTEzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg2MzZmZmZkZDc3YWUw
ZTc2YTNlMzZjZTcyNWMxNjRmMjAyYTU1MTMwMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAuJssxDQwid9yxphc6xW8+w/F0LuSwkPGmgVa05fUfmKBDcvs
s9jJYP2+cDJDMi07rXM+5F4BXe28mX2SV4N+CrNiSA+bC8rpxeQ4ASTMpDWdWz/Q
UYkb/l1BjoQsZYRE9UShy6yWg/4nHG1dRW3YfsKONY43jXwlPMVy6aGkvS+fJqYy
ke+7hqi06YR9XhbwkqrCNluS788AZQd40cpmqLVkWBQhYHwji8s6/ma3uf5ww3/b
PsOSq19FsqW3lGr1lho3MD/xC6x6HEUUo/WG4/1pDslgjvcUXHMUl7GSetMW12w9
739oKP/4FowXExThJhb5lrrnNvBYHhVckqphmQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFGNv/913rg52o+Ns5yXBZPICpVEwMB8GA1UdIwQYMBaAFKmihBfB4baPab4d
PsgSA3CXYZzNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cWFLRUY4SGh0bzlwdmgwLXlCSURjSmRobk0wLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jNS8zMDljMzYtN2MxZC00YTMzLTljZjUtZWQzNjQ3N2I5NDgwLzEv
WTJfXzNYZXVEbmFqNDJ6bkpjRms4Z0tsVVRBLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS8z
MDljMzYtN2MxZC00YTMzLTljZjUtZWQzNjQ3N2I5NDgwLzEvcWFLRUY4SGh0bzlw
dmgwLXlCSURjSmRobk0wLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8lQMA0GCSqGSIb3DQEBCwUAA4IB
AQBa9V+OS+9BNX/WC5y4IuyNKQdiGq8sybV1XMarVemouwyFCwTtrvNqQNEcy9a2
RGqx5al3KK2xQq4c9CxQxu6JyiY6xixJmS1ZID6Sao7TiYQ0as6BpwDAE2xR4P5D
rexO29HG0JTICuoLvLf7v0WPFszfD56vD7rOXva9mEdKuSKloS+8YI4hs6PG6o5+
LbZK8w5M/W1nxGeIuPSMm0HpY8EuQ18EOrZm1NPapqZ0F/KOvN5B3mKK4KHSCLxK
Ii8CGXVbnApIO0gWi0g759zqbqHClgkQhed2Z3XFwoIh/qqHNpsPhkP2Wz6ne88O
eZWdU+4vq4iUC2hCxwiQb4ER
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:04 2024 by rpki-client on console-ams.rpki-client.org