Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/596791-53cf-4d09-aeec-5e6cf96f70cb/1/H3CWVpd59Ot-DhGdrUQAkOqWp20.roa
File: H3CWVpd59Ot-DhGdrUQAkOqWp20.roa (raw, json)
Hash identifier: e1f9lwXKznXu8cA9Xo6kx2JkgBFoPP13Pjthc3WIw7s=
Subject key identifier: 1F:70:96:56:97:79:F4:EB:7E:0E:11:9D:AD:44:00:90:EA:96:A7:6D
Certificate issuer: /CN=e8428fc2da5b6563749ccb99775775e820b7733c
Certificate serial: 018F0381
Authority key identifier: E8:42:8F:C2:DA:5B:65:63:74:9C:CB:99:77:57:75:E8:20:B7:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6EKPwtpbZWN0nMuZd1d16CC3czw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/596791-53cf-4d09-aeec-5e6cf96f70cb/1/H3CWVpd59Ot-DhGdrUQAkOqWp20.roa
Signing time: Sat 01 Jan 2022 05:53:35 +0000
ROA not before: Sat 01 Jan 2022 05:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198670
IP address blocks: 91.237.252.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26149761 (0x18f0381)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8428fc2da5b6563749ccb99775775e820b7733c
Validity
Not Before: Jan 1 05:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f7096569779f4eb7e0e119dad440090ea96a76d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:73:31:2b:61:56:5a:e8:d9:0d:ab:3d:d9:28:
56:3d:dc:2e:7f:03:7a:3e:56:30:bc:fc:d0:83:d3:
3d:54:6e:2f:0e:53:bd:18:e1:a6:b4:c4:69:b2:71:
25:28:39:4f:03:f2:a1:4b:31:ec:a8:4c:72:ef:89:
fc:61:9d:bc:b0:2c:90:61:20:a0:2d:f0:6f:90:33:
76:d2:a4:09:39:85:eb:55:65:f9:e8:7c:96:d7:bc:
0a:d1:ed:16:2f:6f:e0:0c:75:0b:54:f9:3c:e9:1a:
45:ef:ca:0e:f5:dd:35:20:9a:a2:39:59:53:fb:98:
bd:67:74:c6:7d:c7:22:57:f0:9c:28:6a:b7:a2:18:
50:bb:48:e1:3e:e1:33:c8:91:f1:72:86:f0:a6:f2:
6c:6b:8b:c3:86:68:bc:66:7c:b8:e8:d3:be:2a:d1:
cf:d5:3d:d6:da:a0:50:d6:44:79:26:47:99:d4:8a:
79:77:3a:ea:89:79:88:4a:0d:87:02:39:06:bb:44:
27:3c:9e:4b:93:62:80:00:30:f3:2f:31:d8:e8:65:
1e:05:61:81:f3:3a:f5:fc:7b:ce:7f:9e:ee:5c:f7:
0f:ac:40:ae:dc:5e:5d:4d:cd:2c:d0:f7:52:b9:de:
70:fc:b4:6a:d0:b6:cd:69:92:a5:5b:23:ba:94:41:
09:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:70:96:56:97:79:F4:EB:7E:0E:11:9D:AD:44:00:90:EA:96:A7:6D
X509v3 Authority Key Identifier:
keyid:E8:42:8F:C2:DA:5B:65:63:74:9C:CB:99:77:57:75:E8:20:B7:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6EKPwtpbZWN0nMuZd1d16CC3czw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/596791-53cf-4d09-aeec-5e6cf96f70cb/1/H3CWVpd59Ot-DhGdrUQAkOqWp20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/596791-53cf-4d09-aeec-5e6cf96f70cb/1/6EKPwtpbZWN0nMuZd1d16CC3czw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.252.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:7c:22:e4:f1:0e:39:20:e8:89:bf:a4:5e:a1:9a:9e:37:d0:
14:b3:16:14:5e:4b:78:c2:0e:ed:d7:37:8a:3c:d9:c9:97:dc:
5e:f6:a4:f6:b9:e4:ac:52:a1:c1:8f:7c:35:78:25:2e:7b:dc:
9d:3a:2a:4d:92:80:f1:20:c2:96:b3:60:8d:23:65:16:c9:be:
92:15:51:da:44:b5:6d:9f:d7:e6:46:ac:5e:9d:3d:e8:e9:1d:
50:50:0c:5d:3f:ea:37:05:ee:a2:bc:03:19:91:1f:9f:65:bb:
8b:a0:b6:ee:9e:e0:09:0e:9d:7c:23:60:4c:fd:72:02:cf:c2:
b7:0e:cd:e3:6b:be:75:fa:44:71:07:e3:1b:98:ae:43:b5:34:
26:d8:db:2a:82:d7:a1:c2:10:db:4f:e5:da:8a:89:ce:ba:37:
6b:b8:a6:21:da:54:34:8e:bd:42:5e:5b:ae:02:7e:bd:9f:2d:
ae:1e:53:d4:2a:a1:c2:cf:c3:97:f4:b9:fa:1b:b8:fb:97:3a:
c8:b8:ff:f3:70:b9:4c:07:6b:8b:2c:94:3e:4b:80:bc:6a:3a:
2e:05:54:02:b2:8c:c3:a7:02:7f:49:2b:4d:a3:8c:78:c8:d8:
f5:48:cc:23:95:f6:34:1b:ea:2f:c8:ba:ca:a7:ca:87:54:4a:
7d:db:a9:b5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAY8DgTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ODQyOGZjMmRhNWI2NTYzNzQ5Y2NiOTk3NzU3NzVlODIwYjc3MzNjMB4XDTIyMDEw
MTA1NTMzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWY3MDk2NTY5Nzc5
ZjRlYjdlMGUxMTlkYWQ0NDAwOTBlYTk2YTc2ZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALhzMSthVlro2Q2rPdkoVj3cLn8Dej5WMLz80IPTPVRuLw5T
vRjhprTEabJxJSg5TwPyoUsx7KhMcu+J/GGdvLAskGEgoC3wb5AzdtKkCTmF61Vl
+eh8lte8CtHtFi9v4Ax1C1T5POkaRe/KDvXdNSCaojlZU/uYvWd0xn3HIlfwnChq
t6IYULtI4T7hM8iR8XKG8KbybGuLw4ZovGZ8uOjTvirRz9U91tqgUNZEeSZHmdSK
eXc66ol5iEoNhwI5BrtEJzyeS5NigAAw8y8x2OhlHgVhgfM69fx7zn+e7lz3D6xA
rtxeXU3NLND3UrnecPy0atC2zWmSpVsjupRBCY8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQfcJZWl3n0634OEZ2tRACQ6panbTAfBgNVHSMEGDAWgBToQo/C2ltlY3Sc
y5l3V3XoILdzPDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzZFS1B3dHBiWldOMG5NdVpkMWQxNkNDM2N6dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzcvNTk2NzkxLTUzY2YtNGQwOS1hZWVjLTVlNmNmOTZmNzBjYi8x
L0gzQ1dWcGQ1OU90LURoR2RyVVFBa09xV3AyMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcv
NTk2NzkxLTUzY2YtNGQwOS1hZWVjLTVlNmNmOTZmNzBjYi8xLzZFS1B3dHBiWldO
MG5NdVpkMWQxNkNDM2N6dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVvt/DANBgkqhkiG9w0BAQsFAAOC
AQEAPnwi5PEOOSDoib+kXqGanjfQFLMWFF5LeMIO7dc3ijzZyZfcXvak9rnkrFKh
wY98NXglLnvcnToqTZKA8SDClrNgjSNlFsm+khVR2kS1bZ/X5kasXp096OkdUFAM
XT/qNwXuorwDGZEfn2W7i6C27p7gCQ6dfCNgTP1yAs/Ctw7N42u+dfpEcQfjG5iu
Q7U0JtjbKoLXocIQ20/l2oqJzro3a7imIdpUNI69Ql5brgJ+vZ8trh5T1Cqhws/D
l/S5+hu4+5c6yLj/83C5TAdriyyUPkuAvGo6LgVUArKMw6cCf0krTaOMeMjY9UjM
I5X2NBvqL8i6yqfKh1RKfduptQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:42 2023 by rpki-client on console-fra.rpki-client.org