Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/ddf1e1-f07e-4bad-84a8-fe27359fd7ea/1/VtEDuhjPCy7sGHNt7HT0z6naSM8.roa
File: VtEDuhjPCy7sGHNt7HT0z6naSM8.roa (raw, json)
Hash identifier: A5APzDXrvd7v/qtcJiCg/6CbU/kMZ5Ssbhaaa12hdOo=
Subject key identifier: 56:D1:03:BA:18:CF:0B:2E:EC:18:73:6D:EC:74:F4:CF:A9:DA:48:CF
Certificate issuer: /CN=e45d0adc294dd366df6ada880134dbd0e688ccf7
Certificate serial: 088F1772
Authority key identifier: E4:5D:0A:DC:29:4D:D3:66:DF:6A:DA:88:01:34:DB:D0:E6:88:CC:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5F0K3ClN02bfatqIATTb0OaIzPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/ddf1e1-f07e-4bad-84a8-fe27359fd7ea/1/VtEDuhjPCy7sGHNt7HT0z6naSM8.roa
Signing time: Sat 01 Jan 2022 06:57:25 +0000
ROA not before: Sat 01 Jan 2022 06:57:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57007
IP address blocks: 91.229.252.0/22 maxlen: 22
2001:678:84c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143595378 (0x88f1772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e45d0adc294dd366df6ada880134dbd0e688ccf7
Validity
Not Before: Jan 1 06:57:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=56d103ba18cf0b2eec18736dec74f4cfa9da48cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fe:09:5f:63:5f:e1:7a:e1:a6:a2:8c:3f:62:
4c:e1:ca:7b:5f:ad:37:10:1a:22:1f:8b:b8:31:17:
1d:31:8e:da:6a:02:33:8e:00:ae:b8:b9:5c:b6:d3:
2c:d8:27:c9:a1:df:03:62:3f:15:32:5c:98:92:ac:
29:c0:e9:20:2e:1d:b7:b6:44:45:82:0c:ad:60:27:
ca:28:21:a6:43:ac:6f:08:05:57:3d:02:9b:83:63:
43:3d:2d:36:0f:5c:33:e9:f6:16:28:1a:7c:b4:b7:
68:1d:83:af:69:2f:7d:d5:1e:96:61:c2:48:40:1b:
7b:66:f1:72:a2:fa:9e:24:bf:51:21:fa:98:15:b7:
07:df:f6:ef:30:cb:e4:1a:1d:e0:b7:4c:dc:da:a8:
d7:9b:90:f7:2c:a7:d8:01:00:28:a0:d0:49:71:a4:
59:4d:05:db:6f:55:47:93:95:83:11:32:b8:d7:33:
8a:71:95:53:86:a6:24:7e:d3:b0:e8:4f:21:ac:6c:
43:36:61:8c:11:c8:3a:90:97:02:16:b0:0d:7b:4a:
d0:bf:dc:c9:26:78:8a:3b:64:d3:fc:05:c3:99:6b:
f3:22:b8:fa:39:70:4d:c7:fc:ee:5b:42:6e:a3:2a:
fb:ca:05:18:c8:3d:8f:f2:c4:9c:27:a3:49:5b:30:
c5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D1:03:BA:18:CF:0B:2E:EC:18:73:6D:EC:74:F4:CF:A9:DA:48:CF
X509v3 Authority Key Identifier:
keyid:E4:5D:0A:DC:29:4D:D3:66:DF:6A:DA:88:01:34:DB:D0:E6:88:CC:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5F0K3ClN02bfatqIATTb0OaIzPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ddf1e1-f07e-4bad-84a8-fe27359fd7ea/1/VtEDuhjPCy7sGHNt7HT0z6naSM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/ddf1e1-f07e-4bad-84a8-fe27359fd7ea/1/5F0K3ClN02bfatqIATTb0OaIzPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.252.0/22
IPv6:
2001:678:84c::/48
Signature Algorithm: sha256WithRSAEncryption
9a:ad:a5:04:eb:f9:0e:79:21:76:f6:72:b5:47:f9:4e:c0:dd:
e0:8e:2e:db:2d:4a:92:c5:ad:e9:a1:3b:14:83:25:fe:48:a8:
a5:e2:44:24:51:c7:4e:5b:de:4b:0c:95:8a:92:71:d1:37:e2:
8a:b5:00:47:f5:25:84:88:89:cd:02:34:5c:e6:49:52:8c:43:
cc:19:b5:18:e2:1b:c9:ed:7d:13:b4:52:23:0a:8d:44:98:99:
3d:db:1c:3e:60:bd:af:14:c6:14:ea:b7:7c:ba:6d:96:9d:24:
15:98:ad:94:25:7d:3d:4f:70:1a:db:bc:3c:e5:79:88:db:87:
1e:f4:a8:c0:6f:9f:0c:4a:c9:fa:f3:96:79:63:9d:87:d1:34:
c2:77:41:64:28:b4:e8:64:ac:11:b9:ce:45:ab:7e:1f:1d:bd:
74:33:6e:01:97:37:c4:40:9e:5e:96:62:55:c4:9f:74:ee:44:
d9:63:3a:07:25:b1:12:8b:75:5f:78:57:a1:99:23:54:53:92:
aa:c5:99:71:83:63:b6:41:c5:b0:7f:22:34:e8:ac:b7:dd:7a:
17:9c:ea:12:00:da:8e:9c:36:8a:dd:a2:26:f9:27:f8:80:cd:
a0:44:67:5b:c0:12:6e:ee:f9:bf:08:cd:0a:e6:ee:c4:90:ef:
bb:bc:a8:da
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECI8XcjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NDVkMGFkYzI5NGRkMzY2ZGY2YWRhODgwMTM0ZGJkMGU2ODhjY2Y3MB4XDTIyMDEw
MTA2NTcyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTZkMTAzYmExOGNm
MGIyZWVjMTg3MzZkZWM3NGY0Y2ZhOWRhNDhjZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI/+CV9jX+F64aaijD9iTOHKe1+tNxAaIh+LuDEXHTGO2moC
M44Arri5XLbTLNgnyaHfA2I/FTJcmJKsKcDpIC4dt7ZERYIMrWAnyighpkOsbwgF
Vz0Cm4NjQz0tNg9cM+n2FigafLS3aB2Dr2kvfdUelmHCSEAbe2bxcqL6niS/USH6
mBW3B9/27zDL5Bod4LdM3Nqo15uQ9yyn2AEAKKDQSXGkWU0F229VR5OVgxEyuNcz
inGVU4amJH7TsOhPIaxsQzZhjBHIOpCXAhawDXtK0L/cySZ4ijtk0/wFw5lr8yK4
+jlwTcf87ltCbqMq+8oFGMg9j/LEnCejSVswxZUCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRW0QO6GM8LLuwYc23sdPTPqdpIzzAfBgNVHSMEGDAWgBTkXQrcKU3TZt9q
2ogBNNvQ5ojM9zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVGMEszQ2xOMDJiZmF0cUlBVFRiME9hSXpQYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvZGRmMWUxLWYwN2UtNGJhZC04NGE4LWZlMjczNTlmZDdlYS8x
L1Z0RUR1aGpQQ3k3c0dITnQ3SFQwejZuYVNNOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
ZGRmMWUxLWYwN2UtNGJhZC04NGE4LWZlMjczNTlmZDdlYS8xLzVGMEszQ2xOMDJi
ZmF0cUlBVFRiME9hSXpQYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAlvl/DAPBAIAAjAJAwcAIAEGeAhM
MA0GCSqGSIb3DQEBCwUAA4IBAQCaraUE6/kOeSF29nK1R/lOwN3gji7bLUqSxa3p
oTsUgyX+SKil4kQkUcdOW95LDJWKknHRN+KKtQBH9SWEiInNAjRc5klSjEPMGbUY
4hvJ7X0TtFIjCo1EmJk92xw+YL2vFMYU6rd8um2WnSQVmK2UJX09T3Aa27w85XmI
24ce9KjAb58MSsn685Z5Y52H0TTCd0FkKLToZKwRuc5Fq34fHb10M24BlzfEQJ5e
lmJVxJ907kTZYzoHJbESi3VfeFehmSNUU5KqxZlxg2O2QcWwfyI06Ky33XoXnOoS
ANqOnDaK3aIm+Sf4gM2gRGdbwBJu7vm/CM0K5u7EkO+7vKja
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:54 2024 by rpki-client on console-ams.rpki-client.org