Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/abb89f-09b9-44e8-8487-e31c0fdecd27/1/8XzxjKkbGwDM1I900HEOXDo0vKs.roa
File: 8XzxjKkbGwDM1I900HEOXDo0vKs.roa (raw, json)
Hash identifier: fv57olP2jMyE2V1B9w8P/pgtgNfDnIRJCk8k3N8qC6A=
Subject key identifier: F1:7C:F1:8C:A9:1B:1B:00:CC:D4:8F:74:D0:71:0E:5C:3A:34:BC:AB
Certificate issuer: /CN=ad39fa7cd1533da975cf399b9acffebfed26a9eb
Certificate serial: 8EE1
Authority key identifier: AD:39:FA:7C:D1:53:3D:A9:75:CF:39:9B:9A:CF:FE:BF:ED:26:A9:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTn6fNFTPal1zzmbms_-v-0mqes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/abb89f-09b9-44e8-8487-e31c0fdecd27/1/8XzxjKkbGwDM1I900HEOXDo0vKs.roa
Signing time: Wed 11 May 2022 12:44:29 +0000
ROA not before: Wed 11 May 2022 12:44:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59401
IP address blocks: 91.240.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36577 (0x8ee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad39fa7cd1533da975cf399b9acffebfed26a9eb
Validity
Not Before: May 11 12:44:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f17cf18ca91b1b00ccd48f74d0710e5c3a34bcab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e1:f4:07:a6:fd:35:1a:54:9c:5e:0f:43:4e:
1e:64:ca:9c:d1:68:fd:f5:3b:23:86:c4:c9:85:2f:
eb:e6:9c:fd:e5:b5:0a:61:34:97:38:19:1b:8a:f1:
3f:fd:b0:ad:43:15:5f:0f:cf:7d:14:62:d6:7d:7c:
a5:1f:84:42:17:a7:9e:d8:00:01:2b:7b:85:59:56:
2b:b8:09:97:35:b6:b9:24:70:ac:01:0d:e1:56:ba:
7b:46:e3:e6:63:78:1d:da:54:1a:d1:72:2c:a2:c0:
a9:b3:2c:01:c1:e1:cc:bd:da:c3:53:05:61:44:74:
f9:d3:e8:4d:d9:c9:4b:5d:5d:0e:f9:a7:00:68:29:
fd:00:9e:90:15:3c:dd:1d:93:64:a7:a5:33:9e:a5:
4f:a5:d4:02:3e:c7:ef:de:aa:63:87:41:15:54:cc:
81:8f:85:42:50:7c:1f:a4:1b:ca:07:99:e5:5b:a3:
48:d7:5d:22:91:2e:7a:13:95:d8:7f:23:c4:59:20:
b7:ca:e1:d3:64:b3:ec:1c:22:ff:68:c0:ed:b3:78:
ea:73:41:76:ab:c0:8f:bf:6c:aa:80:5e:83:50:f1:
5b:ea:e5:fa:dd:ca:f9:b8:61:f8:c4:a2:f4:c8:ff:
76:25:86:b7:5a:15:4f:58:5a:bf:b5:23:42:28:65:
5b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:7C:F1:8C:A9:1B:1B:00:CC:D4:8F:74:D0:71:0E:5C:3A:34:BC:AB
X509v3 Authority Key Identifier:
keyid:AD:39:FA:7C:D1:53:3D:A9:75:CF:39:9B:9A:CF:FE:BF:ED:26:A9:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTn6fNFTPal1zzmbms_-v-0mqes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/abb89f-09b9-44e8-8487-e31c0fdecd27/1/8XzxjKkbGwDM1I900HEOXDo0vKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/abb89f-09b9-44e8-8487-e31c0fdecd27/1/rTn6fNFTPal1zzmbms_-v-0mqes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.188.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c9:bc:90:e6:fe:0e:96:b1:3c:d9:1b:15:9b:7c:98:70:28:
39:8e:9e:ab:c3:f3:95:41:81:36:06:0e:64:f0:2d:a2:a2:af:
83:36:e6:7b:27:45:0e:38:14:5f:f7:b5:1e:c6:c9:83:37:3d:
db:fe:df:f0:90:2e:3b:ef:59:3d:e6:f3:ec:a8:4c:a9:0b:eb:
99:e9:92:3c:1e:c2:c7:de:2c:5e:45:0d:30:59:92:5e:3a:6e:
ea:50:75:f3:37:e5:eb:34:77:ed:8f:78:ea:db:9a:a7:16:95:
b3:ce:ca:f6:28:95:21:1f:1c:ce:da:b4:95:8f:05:7c:1b:15:
af:3a:f6:d4:56:0f:83:11:cd:af:3a:fb:cc:d2:ba:f8:29:a8:
c3:3f:60:00:7c:64:98:37:51:8c:b4:c4:69:86:86:e2:ea:ce:
0d:33:d1:b7:6c:55:f5:99:3a:ab:db:1c:b2:6f:39:ac:1a:83:
49:f4:60:36:5f:e5:2d:24:e9:ba:ac:b7:39:91:19:87:94:72:
59:b1:b1:11:cc:3b:85:b2:0a:f5:92:95:e1:5c:f1:cb:0f:f6:
73:57:28:69:10:08:a4:19:53:a4:6e:23:90:47:f1:2b:2a:8b:
ba:82:85:1f:67:b3:25:23:6c:ef:0d:d1:93:de:7f:3a:61:fa:
bd:92:ab:b8
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAI7hMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGFk
MzlmYTdjZDE1MzNkYTk3NWNmMzk5YjlhY2ZmZWJmZWQyNmE5ZWIwHhcNMjIwNTEx
MTI0NDI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmMTdjZjE4Y2E5MWIx
YjAwY2NkNDhmNzRkMDcxMGU1YzNhMzRiY2FiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAyuH0B6b9NRpUnF4PQ04eZMqc0Wj99TsjhsTJhS/r5pz95bUK
YTSXOBkbivE//bCtQxVfD899FGLWfXylH4RCF6ee2AABK3uFWVYruAmXNba5JHCs
AQ3hVrp7RuPmY3gd2lQa0XIsosCpsywBweHMvdrDUwVhRHT50+hN2clLXV0O+acA
aCn9AJ6QFTzdHZNkp6UznqVPpdQCPsfv3qpjh0EVVMyBj4VCUHwfpBvKB5nlW6NI
110ikS56E5XYfyPEWSC3yuHTZLPsHCL/aMDts3jqc0F2q8CPv2yqgF6DUPFb6uX6
3cr5uGH4xKL0yP92JYa3WhVPWFq/tSNCKGVb4wIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFPF88YypGxsAzNSPdNBxDlw6NLyrMB8GA1UdIwQYMBaAFK05+nzRUz2pdc85
m5rP/r/tJqnrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
clRuNmZORlRQYWwxenptYm1zXy12LTBtcWVzLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9kMS9hYmI4OWYtMDliOS00NGU4LTg0ODctZTMxYzBmZGVjZDI3LzEv
OFh6eGpLa2JHd0RNMUk5MDBIRU9YRG8wdktzLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9h
YmI4OWYtMDliOS00NGU4LTg0ODctZTMxYzBmZGVjZDI3LzEvclRuNmZORlRQYWwx
enptYm1zXy12LTBtcWVzLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/C8MA0GCSqGSIb3DQEBCwUAA4IB
AQBXybyQ5v4OlrE82RsVm3yYcCg5jp6rw/OVQYE2Bg5k8C2ioq+DNuZ7J0UOOBRf
97UexsmDNz3b/t/wkC4771k95vPsqEypC+uZ6ZI8HsLH3ixeRQ0wWZJeOm7qUHXz
N+XrNHftj3jq25qnFpWzzsr2KJUhHxzO2rSVjwV8GxWvOvbUVg+DEc2vOvvM0rr4
KajDP2AAfGSYN1GMtMRphobi6s4NM9G3bFX1mTqr2xyybzmsGoNJ9GA2X+UtJOm6
rLc5kRmHlHJZsbERzDuFsgr1kpXhXPHLD/ZzVyhpEAikGVOkbiOQR/ErKou6goUf
Z7MlI2zvDdGT3n86Yfq9kqu4
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:47 2024 by rpki-client on console-ams.rpki-client.org