Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6d7f0d-7e4e-47d6-b9db-ca0c772b729f/1/7FRzKC-pgNRDgAZalz_NRXbOdR8.roa
File: 7FRzKC-pgNRDgAZalz_NRXbOdR8.roa (raw, json)
Hash identifier: vxYB8pNJToIzE6Pk3SdqexzbeHuoHA4ZKTii6YazcuM=
Subject key identifier: EC:54:73:28:2F:A9:80:D4:43:80:06:5A:97:3F:CD:45:76:CE:75:1F
Certificate issuer: /CN=268f501bbf9e13cdd2eb899d97121f669aa29135
Certificate serial: 05518CDB
Authority key identifier: 26:8F:50:1B:BF:9E:13:CD:D2:EB:89:9D:97:12:1F:66:9A:A2:91:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jo9QG7-eE83S64mdlxIfZpqikTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6d7f0d-7e4e-47d6-b9db-ca0c772b729f/1/7FRzKC-pgNRDgAZalz_NRXbOdR8.roa
Signing time: Sat 01 Jan 2022 09:59:59 +0000
ROA not before: Sat 01 Jan 2022 09:59:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.234.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89230555 (0x5518cdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=268f501bbf9e13cdd2eb899d97121f669aa29135
Validity
Not Before: Jan 1 09:59:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec5473282fa980d44380065a973fcd4576ce751f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:89:d8:3d:6d:61:90:c9:78:1b:7b:54:34:2c:
17:ff:6b:72:98:1c:7a:f2:f2:93:9c:b7:4e:29:a2:
f3:ef:b2:7a:1e:c8:fb:95:92:73:48:ce:46:61:f8:
01:eb:0d:a5:d5:a1:67:30:8c:56:66:1f:8f:a0:19:
dc:16:35:f5:36:8b:9b:28:7c:42:62:10:2e:b3:02:
b8:c2:8f:91:9f:44:45:b7:19:0f:27:7b:0b:c3:29:
22:e5:03:be:d1:d4:ee:6a:49:90:93:04:13:51:72:
a4:77:48:f2:53:26:ca:f4:ab:bc:89:43:1d:86:2f:
0e:36:69:04:54:52:1d:06:be:07:e0:53:33:3f:4d:
64:c5:46:df:81:77:17:f8:d6:dd:6d:86:c9:c8:9c:
07:cb:c2:ed:71:a5:b7:8f:eb:ad:68:87:03:5a:a8:
c1:5d:a0:83:d4:52:f5:b7:e8:96:81:6f:bb:b8:f6:
8f:e4:b2:78:87:41:85:76:53:59:a0:2b:d5:db:3c:
4c:d1:87:4c:22:f1:7f:b4:0b:6c:5a:09:28:3b:12:
f7:08:0a:c4:fa:fe:dc:8f:ae:9d:32:14:80:a4:e6:
ea:3b:e5:14:9f:aa:f7:2a:2f:1c:da:83:2c:98:2d:
2a:f0:a5:74:d1:ef:17:ca:68:c7:6c:40:d5:f7:90:
dd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:54:73:28:2F:A9:80:D4:43:80:06:5A:97:3F:CD:45:76:CE:75:1F
X509v3 Authority Key Identifier:
keyid:26:8F:50:1B:BF:9E:13:CD:D2:EB:89:9D:97:12:1F:66:9A:A2:91:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jo9QG7-eE83S64mdlxIfZpqikTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6d7f0d-7e4e-47d6-b9db-ca0c772b729f/1/7FRzKC-pgNRDgAZalz_NRXbOdR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6d7f0d-7e4e-47d6-b9db-ca0c772b729f/1/Jo9QG7-eE83S64mdlxIfZpqikTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.36.0/24
Signature Algorithm: sha256WithRSAEncryption
16:50:49:f1:2d:19:79:32:34:21:28:45:7e:aa:53:a8:5d:84:
7c:55:9e:33:af:7c:f0:22:f7:70:41:7d:6b:73:1b:7c:2f:08:
6d:4f:a6:64:8c:10:d6:a1:83:64:1f:20:af:4c:3c:0b:3b:ce:
63:7f:64:db:82:72:b1:d7:73:af:e2:25:d7:90:0a:db:18:f6:
89:66:b5:9b:99:56:99:38:65:b5:f1:02:b1:16:01:75:29:29:
87:50:c9:3f:b4:4f:0a:37:70:e7:ad:87:12:19:67:c7:31:29:
a8:25:a3:34:52:65:6a:2d:17:b3:de:32:da:0d:e7:98:f7:00:
4c:dc:d9:4b:8f:d5:99:a4:ef:fd:fb:d9:af:90:9c:24:eb:cd:
eb:78:31:27:85:d0:55:99:35:0a:6e:a2:36:7d:ab:0c:3a:8d:
9a:68:bf:9b:ca:43:80:73:d2:e1:5d:9d:de:c3:80:90:a0:4c:
35:6f:85:67:f8:f5:4d:b1:61:1b:37:f5:cc:87:ac:8a:05:b2:
b4:13:5b:e6:b6:7f:1a:76:85:f3:00:aa:dc:69:0c:c7:be:06:
7c:f1:ae:c5:cf:d3:a4:35:c4:e5:e6:6f:3e:22:e7:cb:69:bf:
6c:53:14:6b:43:b3:d6:6a:68:54:7c:cb:93:10:98:9e:42:42:
18:23:8f:a7
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBVGM2zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
NjhmNTAxYmJmOWUxM2NkZDJlYjg5OWQ5NzEyMWY2NjlhYTI5MTM1MB4XDTIyMDEw
MTA5NTk1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWM1NDczMjgyZmE5
ODBkNDQzODAwNjVhOTczZmNkNDU3NmNlNzUxZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJOJ2D1tYZDJeBt7VDQsF/9rcpgcevLyk5y3Timi8++yeh7I
+5WSc0jORmH4AesNpdWhZzCMVmYfj6AZ3BY19TaLmyh8QmIQLrMCuMKPkZ9ERbcZ
Dyd7C8MpIuUDvtHU7mpJkJMEE1FypHdI8lMmyvSrvIlDHYYvDjZpBFRSHQa+B+BT
Mz9NZMVG34F3F/jW3W2GycicB8vC7XGlt4/rrWiHA1qowV2gg9RS9bfoloFvu7j2
j+SyeIdBhXZTWaAr1ds8TNGHTCLxf7QLbFoJKDsS9wgKxPr+3I+unTIUgKTm6jvl
FJ+q9yovHNqDLJgtKvCldNHvF8pox2xA1feQ3SECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTsVHMoL6mA1EOABlqXP81Fds51HzAfBgNVHSMEGDAWgBQmj1Abv54TzdLr
iZ2XEh9mmqKRNTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0pvOVFHNy1lRTgzUzY0bWRseElmWnBxaWtUVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvNmQ3ZjBkLTdlNGUtNDdkNi1iOWRiLWNhMGM3NzJiNzI5Zi8x
LzdGUnpLQy1wZ05SRGdBWmFsel9OUlhiT2RSOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
NmQ3ZjBkLTdlNGUtNDdkNi1iOWRiLWNhMGM3NzJiNzI5Zi8xL0pvOVFHNy1lRTgz
UzY0bWRseElmWnBxaWtUVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvqJDANBgkqhkiG9w0BAQsFAAOC
AQEAFlBJ8S0ZeTI0IShFfqpTqF2EfFWeM6988CL3cEF9a3MbfC8IbU+mZIwQ1qGD
ZB8gr0w8CzvOY39k24Jysddzr+Il15AK2xj2iWa1m5lWmThltfECsRYBdSkph1DJ
P7RPCjdw562HEhlnxzEpqCWjNFJlai0Xs94y2g3nmPcATNzZS4/VmaTv/fvZr5Cc
JOvN63gxJ4XQVZk1Cm6iNn2rDDqNmmi/m8pDgHPS4V2d3sOAkKBMNW+FZ/j1TbFh
Gzf1zIesigWytBNb5rZ/GnaF8wCq3GkMx74GfPGuxc/TpDXE5eZvPiLny2m/bFMU
a0Oz1mpoVHzLkxCYnkJCGCOPpw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:48 2024 by rpki-client on console-ams.rpki-client.org