Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/66f379-f598-4e60-b493-f9ca7124f098/1/1x0uS_ne7SqqtXz34meZN6CQsOQ.roa
File: 1x0uS_ne7SqqtXz34meZN6CQsOQ.roa (raw, json)
Hash identifier: VNPmaVh00DB7MoSOsUCD4Lvgh9jpLdB3a6ihWRNcQKE=
Subject key identifier: D7:1D:2E:4B:F9:DE:ED:2A:AA:B5:7C:F7:E2:67:99:37:A0:90:B0:E4
Certificate issuer: /CN=35f1fd69e7196aef5e29ba795680dac3e34868c8
Certificate serial: 0572D5B2
Authority key identifier: 35:F1:FD:69:E7:19:6A:EF:5E:29:BA:79:56:80:DA:C3:E3:48:68:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NfH9aecZau9eKbp5VoDaw-NIaMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/66f379-f598-4e60-b493-f9ca7124f098/1/1x0uS_ne7SqqtXz34meZN6CQsOQ.roa
Signing time: Sat 01 Jan 2022 07:54:36 +0000
ROA not before: Sat 01 Jan 2022 07:54:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50862
IP address blocks: 194.29.78.0/24 maxlen: 24
194.29.73.0/24 maxlen: 24
91.229.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91411890 (0x572d5b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35f1fd69e7196aef5e29ba795680dac3e34868c8
Validity
Not Before: Jan 1 07:54:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d71d2e4bf9deed2aaab57cf7e2679937a090b0e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:8a:9d:a3:fd:20:74:43:c6:cb:88:aa:68:bf:
26:68:dc:d9:3a:b3:d9:29:f2:68:dc:78:49:c8:98:
7f:66:0b:20:7a:21:68:e5:af:54:75:94:5f:66:23:
ad:f8:71:0e:81:da:79:ba:aa:ce:91:e9:b5:59:fa:
e5:af:f4:aa:d2:ca:b1:56:6a:e3:5c:9d:d1:50:ec:
5a:01:c5:df:31:0c:f3:1b:21:84:38:51:ff:fb:1e:
ad:66:37:1b:3f:33:cb:8f:f4:4e:08:60:ac:d6:ea:
25:01:c7:b2:35:c2:3a:3a:8a:32:33:05:b7:0a:52:
03:89:5f:c3:19:b6:c6:70:78:6a:d6:3b:3e:25:c7:
17:bd:31:db:27:59:27:33:8e:c9:d5:c0:bd:61:ae:
0e:9e:df:d3:eb:37:14:89:e4:82:28:ff:81:2b:39:
fe:94:73:6c:df:76:96:cd:be:9b:76:3f:10:3b:54:
ea:48:84:a9:10:a0:2f:f4:81:3f:28:7a:18:bb:e4:
1a:bd:b3:4d:d1:ee:5a:92:65:b5:c7:fd:b6:59:f1:
5f:7d:1b:a0:a4:b9:87:5b:3b:e4:6e:b9:71:66:3c:
36:41:2e:dd:6e:9e:40:1f:88:44:e1:23:47:90:17:
12:18:c6:af:75:6d:53:73:f6:1e:70:74:95:9a:17:
1c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1D:2E:4B:F9:DE:ED:2A:AA:B5:7C:F7:E2:67:99:37:A0:90:B0:E4
X509v3 Authority Key Identifier:
keyid:35:F1:FD:69:E7:19:6A:EF:5E:29:BA:79:56:80:DA:C3:E3:48:68:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NfH9aecZau9eKbp5VoDaw-NIaMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/66f379-f598-4e60-b493-f9ca7124f098/1/1x0uS_ne7SqqtXz34meZN6CQsOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/66f379-f598-4e60-b493-f9ca7124f098/1/NfH9aecZau9eKbp5VoDaw-NIaMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.49.0/24
194.29.73.0/24
194.29.78.0/24
Signature Algorithm: sha256WithRSAEncryption
02:c2:65:60:2f:89:41:9c:08:cf:31:0d:ad:13:ac:b6:01:98:
52:a7:76:52:ab:f4:8d:47:a9:3d:cc:39:f3:93:dd:5d:88:f1:
e8:0a:a5:63:e6:01:74:80:63:4b:30:e2:73:c7:c1:9f:56:68:
6c:4e:1c:56:41:1f:71:23:28:c9:ae:38:de:43:2c:75:52:75:
81:3b:f4:db:93:7a:2d:68:49:c0:aa:72:a6:50:f6:b5:8c:27:
de:24:4e:df:52:2d:38:51:2f:e6:d5:de:c5:fc:cc:c0:d1:a3:
8d:fc:5c:0a:8a:b8:b2:c8:ce:e4:a8:83:69:11:03:c5:0b:62:
6b:4f:ab:c2:bc:2c:d0:88:72:07:69:31:64:be:87:ac:fa:f0:
ce:24:06:af:00:da:34:ce:b3:98:a2:79:0d:da:5b:41:56:3e:
63:53:2b:be:d8:e9:af:7c:17:51:74:1f:7a:d4:d1:95:38:42:
de:ae:b7:f2:73:d7:e8:df:dd:39:2f:c7:ea:20:b1:d7:30:cd:
57:ad:69:f4:e3:fa:d1:ea:38:63:b2:bb:37:cf:58:b1:19:7f:
5a:28:f7:4b:0e:0c:29:67:76:cd:8d:91:35:97:b4:02:95:c7:
f4:83:ae:cd:bb:68:37:1a:0c:91:5a:74:1b:9b:a0:3b:b0:c8:
06:67:ba:08
-----BEGIN CERTIFICATE-----
MIIE+zCCA+OgAwIBAgIEBXLVsjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NWYxZmQ2OWU3MTk2YWVmNWUyOWJhNzk1NjgwZGFjM2UzNDg2OGM4MB4XDTIyMDEw
MTA3NTQzNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDcxZDJlNGJmOWRl
ZWQyYWFhYjU3Y2Y3ZTI2Nzk5MzdhMDkwYjBlNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOiKnaP9IHRDxsuIqmi/Jmjc2Tqz2SnyaNx4SciYf2YLIHoh
aOWvVHWUX2YjrfhxDoHaebqqzpHptVn65a/0qtLKsVZq41yd0VDsWgHF3zEM8xsh
hDhR//serWY3Gz8zy4/0TghgrNbqJQHHsjXCOjqKMjMFtwpSA4lfwxm2xnB4atY7
PiXHF70x2ydZJzOOydXAvWGuDp7f0+s3FInkgij/gSs5/pRzbN92ls2+m3Y/EDtU
6kiEqRCgL/SBPyh6GLvkGr2zTdHuWpJltcf9tlnxX30boKS5h1s75G65cWY8NkEu
3W6eQB+IROEjR5AXEhjGr3VtU3P2HnB0lZoXHKkCAwEAAaOCAhUwggIRMB0GA1Ud
DgQWBBTXHS5L+d7tKqq1fPfiZ5k3oJCw5DAfBgNVHSMEGDAWgBQ18f1p5xlq714p
unlWgNrD40hoyDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05mSDlhZWNaYXU5ZUticDVWb0Rhdy1OSWFNZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDcvNjZmMzc5LWY1OTgtNGU2MC1iNDkzLWY5Y2E3MTI0ZjA5OC8x
LzF4MHVTX25lN1NxcXRYejM0bWVaTjZDUXNPUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcv
NjZmMzc5LWY1OTgtNGU2MC1iNDkzLWY5Y2E3MTI0ZjA5OC8xL05mSDlhZWNaYXU5
ZUticDVWb0Rhdy1OSWFNZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAr
BggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAFvlMQMEAMIdSQMEAMIdTjANBgkq
hkiG9w0BAQsFAAOCAQEAAsJlYC+JQZwIzzENrROstgGYUqd2Uqv0jUepPcw585Pd
XYjx6AqlY+YBdIBjSzDic8fBn1ZobE4cVkEfcSMoya443kMsdVJ1gTv025N6LWhJ
wKpyplD2tYwn3iRO31ItOFEv5tXexfzMwNGjjfxcCoq4ssjO5KiDaREDxQtia0+r
wrws0IhyB2kxZL6HrPrwziQGrwDaNM6zmKJ5DdpbQVY+Y1Mrvtjpr3wXUXQfetTR
lThC3q638nPX6N/dOS/H6iCx1zDNV61p9OP60eo4Y7K7N89YsRl/Wij3Sw4MKWd2
zY2RNZe0ApXH9IOuzbtoNxoMkVp0G5ugO7DIBme6CA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:32 2023 by rpki-client on console-ams.rpki-client.org