Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/7tUfvik7Jz8YLOZQx_X0HFWGnxM.roa
File: 7tUfvik7Jz8YLOZQx_X0HFWGnxM.roa (raw, json)
Hash identifier: QPoic75EPsHK/cDoBER6k2hcnc+WE6eExAJLOfa88AQ=
Subject key identifier: EE:D5:1F:BE:29:3B:27:3F:18:2C:E6:50:C7:F5:F4:1C:55:86:9F:13
Certificate issuer: /CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Certificate serial: 3556ED0D
Authority key identifier: 01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/7tUfvik7Jz8YLOZQx_X0HFWGnxM.roa
Signing time: Sat 01 Jan 2022 06:06:39 +0000
ROA not before: Sat 01 Jan 2022 06:06:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201942
IP address blocks: 91.126.152.0/21 maxlen: 21
91.126.160.0/20 maxlen: 20
91.126.64.0/22 maxlen: 22
91.126.80.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 894889229 (0x3556ed0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Validity
Not Before: Jan 1 06:06:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eed51fbe293b273f182ce650c7f5f41c55869f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a1:d1:7a:94:23:8a:b4:88:fd:c3:85:d8:bf:
6e:40:7b:bb:de:a2:0f:0e:73:a1:58:84:5e:c2:6a:
61:02:ae:61:09:f5:d7:8e:f1:fb:f2:3b:48:07:54:
fa:6a:23:54:65:4f:42:e3:77:a2:95:99:be:4c:93:
6a:b4:0b:34:33:7e:2f:e6:09:05:d0:14:6a:46:20:
d2:1e:93:96:14:33:b6:c3:b7:c9:bc:71:25:81:59:
78:79:21:67:c9:85:18:f4:0a:d9:6a:bf:f9:ec:db:
32:ad:8c:b4:8d:8d:4d:43:3a:19:80:50:a5:fd:2b:
bb:7f:87:75:b7:e1:61:d7:54:cd:19:ce:cc:f7:90:
bd:35:d1:4b:77:a2:8e:5e:70:d0:36:18:de:6e:69:
54:07:e0:cf:8b:8d:35:b1:e9:c6:63:5a:1e:fe:9c:
f8:50:e9:dd:9f:09:c3:8d:9b:50:86:a8:ac:aa:8a:
0d:0e:2a:1a:92:e7:0d:eb:d6:1d:25:71:5b:cb:6e:
e2:6c:98:59:b3:ce:52:23:d6:fb:be:63:12:5e:61:
e5:05:5d:cc:18:f7:4f:96:2a:5e:85:f4:45:1e:8c:
e6:a4:6f:66:29:ba:92:a4:e2:a2:b4:4c:4c:35:54:
6a:e0:ad:56:fb:72:4b:12:b5:0d:a2:2f:cc:0e:df:
64:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D5:1F:BE:29:3B:27:3F:18:2C:E6:50:C7:F5:F4:1C:55:86:9F:13
X509v3 Authority Key Identifier:
keyid:01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/7tUfvik7Jz8YLOZQx_X0HFWGnxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.126.64.0/22
91.126.80.0/21
91.126.152.0-91.126.175.255
Signature Algorithm: sha256WithRSAEncryption
56:cc:fe:35:22:ee:b8:a8:b6:1e:58:ca:4f:ed:ce:c3:f9:87:
bf:38:d4:d8:66:af:95:5a:27:97:3a:e7:c5:3f:c0:98:a3:ad:
1d:3b:5a:4b:51:33:c1:d7:4a:05:4d:8a:1f:57:37:f8:cd:11:
41:f3:64:a5:b7:4d:cb:6b:ec:96:56:9b:00:cc:de:43:0d:a6:
d1:6f:2f:e2:6e:39:e0:5a:dc:35:17:46:c9:45:53:a0:c4:e5:
36:84:8e:cc:65:cf:98:7e:a8:cf:69:20:2a:09:a4:92:7b:93:
52:8a:87:0b:a2:c6:61:80:f1:56:4a:36:2b:63:43:f2:f9:8b:
98:39:12:ea:73:7b:b5:28:01:4d:55:34:92:d6:cb:93:4d:de:
26:8b:93:68:a7:e7:7e:ad:c6:1c:b5:fe:ce:07:44:8f:a1:03:
e3:05:c5:ab:a4:d8:73:b1:ee:26:27:ca:a0:48:cf:39:b1:f8:
93:eb:3c:d2:82:9b:20:1b:75:02:b8:43:84:e6:21:80:90:b3:
06:6f:6a:62:52:dd:6c:2d:69:61:aa:a2:81:31:dc:d0:02:76:
0b:ff:9b:fd:6d:8b:86:c6:7e:e9:14:aa:43:6e:06:3c:cf:5f:
2a:2d:2c:6f:82:4b:94:42:5b:cc:51:15:60:0d:68:3c:b6:b3:
92:ef:0a:37
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIENVbtDTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
MTcwYTE2OWI2Y2Q0MTEwMjIyNzllOWZmOTk3ZjEzNGZmNTRhYjFjMB4XDTIyMDEw
MTA2MDYzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWVkNTFmYmUyOTNi
MjczZjE4MmNlNjUwYzdmNWY0MWM1NTg2OWYxMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIih0XqUI4q0iP3Dhdi/bkB7u96iDw5zoViEXsJqYQKuYQn1
147x+/I7SAdU+mojVGVPQuN3opWZvkyTarQLNDN+L+YJBdAUakYg0h6TlhQztsO3
ybxxJYFZeHkhZ8mFGPQK2Wq/+ezbMq2MtI2NTUM6GYBQpf0ru3+HdbfhYddUzRnO
zPeQvTXRS3eijl5w0DYY3m5pVAfgz4uNNbHpxmNaHv6c+FDp3Z8Jw42bUIaorKqK
DQ4qGpLnDevWHSVxW8tu4myYWbPOUiPW+75jEl5h5QVdzBj3T5YqXoX0RR6M5qRv
Zim6kqTiorRMTDVUauCtVvtySxK1DaIvzA7fZMECAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBTu1R++KTsnPxgs5lDH9fQcVYafEzAfBgNVHSMEGDAWgBQBcKFpts1BECIn
np/5l/E0/1SrHDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0FYQ2hhYmJOUVJBaUo1NmYtWmZ4TlA5VXF4dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvMWU3NzdmLTk4NmItNGUzNC04ZDgxLTdkNGJiMjM4MDQ4Ny8x
Lzd0VWZ2aWs3Sno4WUxPWlF4X1gwSEZXR254TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
MWU3NzdmLTk4NmItNGUzNC04ZDgxLTdkNGJiMjM4MDQ4Ny8xL0FYQ2hhYmJOUVJB
aUo1NmYtWmZ4TlA5VXF4dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGgMEAlt+QAMEA1t+UDAMAwQDW36YAwQE
W36gMA0GCSqGSIb3DQEBCwUAA4IBAQBWzP41Iu64qLYeWMpP7c7D+Ye/ONTYZq+V
WieXOufFP8CYo60dO1pLUTPB10oFTYofVzf4zRFB82Slt03La+yWVpsAzN5DDabR
by/ibjngWtw1F0bJRVOgxOU2hI7MZc+YfqjPaSAqCaSSe5NSiocLosZhgPFWSjYr
Y0Py+YuYORLqc3u1KAFNVTSS1suTTd4mi5Nop+d+rcYctf7OB0SPoQPjBcWrpNhz
se4mJ8qgSM85sfiT6zzSgpsgG3UCuEOE5iGAkLMGb2piUt1sLWlhqqKBMdzQAnYL
/5v9bYuGxn7pFKpDbgY8z18qLSxvgkuUQlvMURVgDWg8trOS7wo3
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:06 2023 by rpki-client on console-fra.rpki-client.org