Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/12Fh6-f8F-FIAFKrhovcupjnfXk.roa
File: 12Fh6-f8F-FIAFKrhovcupjnfXk.roa (raw, json)
Hash identifier: Q0q6Zaz650cDu6d/0lobBNS801bNvSXI+k86jC9pghg=
Subject key identifier: D7:61:61:EB:E7:FC:17:E1:48:00:52:AB:86:8B:DC:BA:98:E7:7D:79
Certificate issuer: /CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Certificate serial: 0D3DB1A6
Authority key identifier: 69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/12Fh6-f8F-FIAFKrhovcupjnfXk.roa
Signing time: Sat 01 Jan 2022 15:00:33 +0000
ROA not before: Sat 01 Jan 2022 15:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198936
IP address blocks: 91.105.253.0/24 maxlen: 24
91.105.249.0/24 maxlen: 24
91.105.252.0/24 maxlen: 24
91.105.248.0/24 maxlen: 24
91.105.251.0/24 maxlen: 24
91.105.250.0/24 maxlen: 24
91.105.255.0/24 maxlen: 24
91.105.254.0/24 maxlen: 24
185.159.239.0/24 maxlen: 24
185.159.238.0/24 maxlen: 24
2a01:7bc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 222146982 (0xd3db1a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69fdfe8249f943aabad1881fca5836613a6a67bc
Validity
Not Before: Jan 1 15:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d76161ebe7fc17e1480052ab868bdcba98e77d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:00:09:32:8b:6a:05:d7:23:0e:84:0e:a6:67:
fb:e8:ce:92:52:ef:da:4a:a9:00:7a:8a:ab:08:1e:
91:cf:f4:15:17:5f:c1:7a:32:58:ce:cd:8f:d6:9d:
3e:9e:a3:c9:c2:85:b9:9e:cd:b7:b4:44:20:bb:99:
54:d4:e0:75:ed:17:5a:24:fc:d9:76:0d:61:18:25:
7c:9c:cd:ad:c1:e3:25:b6:b8:6d:1d:25:bc:d5:00:
1c:46:7b:e6:89:e2:d3:fe:88:bc:00:62:75:a0:07:
93:bc:37:ad:8b:aa:54:bd:b5:91:92:d9:22:8b:53:
e8:fd:9e:1c:88:92:5a:e3:7d:8d:20:70:2f:a2:7d:
56:e7:a3:3f:1c:ba:92:24:7f:93:59:59:b3:8e:dc:
11:e2:5d:d7:cc:8e:99:9b:23:39:6f:57:0f:89:f0:
78:fa:40:55:66:4a:95:ba:4a:5d:63:c9:34:eb:24:
84:85:2b:a7:ef:bc:c1:85:67:be:91:6d:cc:18:7a:
51:22:99:a6:a0:9c:95:28:63:5c:a4:10:29:71:a3:
49:90:93:91:b1:20:e1:de:e4:7c:83:42:3d:78:1b:
5a:e2:6b:3f:78:e5:51:28:05:f0:45:7a:d8:09:13:
98:d5:4a:19:52:11:9d:9a:55:a7:28:2c:d8:44:ca:
43:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:61:61:EB:E7:FC:17:E1:48:00:52:AB:86:8B:DC:BA:98:E7:7D:79
X509v3 Authority Key Identifier:
keyid:69:FD:FE:82:49:F9:43:AA:BA:D1:88:1F:CA:58:36:61:3A:6A:67:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/af3-gkn5Q6q60Ygfylg2YTpqZ7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/12Fh6-f8F-FIAFKrhovcupjnfXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ccf777-9465-4a2e-8112-71d8b8850853/1/af3-gkn5Q6q60Ygfylg2YTpqZ7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.105.248.0/21
185.159.238.0/23
IPv6:
2a01:7bc0::/32
Signature Algorithm: sha256WithRSAEncryption
79:f2:f6:38:b2:dd:e2:38:3a:0c:24:db:3b:58:1b:29:b0:a7:
7f:35:ad:c8:79:78:62:57:e6:41:49:d9:ab:47:fa:04:25:28:
27:79:29:19:4d:7c:34:10:28:3a:75:0c:48:93:08:93:1b:17:
10:22:16:61:9d:55:39:03:28:fc:a9:f5:3d:b6:60:c1:98:7d:
9f:de:f7:fe:14:0c:c7:f5:a2:7c:66:23:0f:d5:bd:8a:04:7b:
51:2c:f8:6f:c7:b4:bf:26:8f:25:9a:2b:69:81:0a:c8:fe:73:
0f:b5:a1:55:6c:c6:86:af:ea:ce:05:62:fb:37:43:b5:a2:5c:
5b:11:e1:8c:1c:7b:7e:e9:e0:92:8a:90:1b:c7:94:dc:99:a0:
3f:79:c7:58:05:88:63:14:1b:6c:bb:6d:28:da:0d:bf:0c:f6:
30:a7:cc:16:48:29:67:f5:b6:b7:68:e9:b8:61:ed:2f:34:3c:
01:d2:57:7f:2d:3a:6d:a4:fa:fc:1a:9b:f0:e2:6b:0a:ea:b1:
fc:52:eb:33:08:f6:75:89:c9:ef:63:da:f0:e2:aa:57:07:51:
b8:dd:65:fb:56:83:8d:64:b0:24:18:82:30:a7:2b:b3:ef:d3:
7c:b7:cb:b9:35:ac:bc:62:68:81:59:4a:48:44:41:e3:4f:79:
ad:3a:2e:25
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEDT2xpjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
OWZkZmU4MjQ5Zjk0M2FhYmFkMTg4MWZjYTU4MzY2MTNhNmE2N2JjMB4XDTIyMDEw
MTE1MDAzM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDc2MTYxZWJlN2Zj
MTdlMTQ4MDA1MmFiODY4YmRjYmE5OGU3N2Q3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMYACTKLagXXIw6EDqZn++jOklLv2kqpAHqKqwgekc/0FRdf
wXoyWM7Nj9adPp6jycKFuZ7Nt7REILuZVNTgde0XWiT82XYNYRglfJzNrcHjJba4
bR0lvNUAHEZ75oni0/6IvABidaAHk7w3rYuqVL21kZLZIotT6P2eHIiSWuN9jSBw
L6J9VuejPxy6kiR/k1lZs47cEeJd18yOmZsjOW9XD4nwePpAVWZKlbpKXWPJNOsk
hIUrp++8wYVnvpFtzBh6USKZpqCclShjXKQQKXGjSZCTkbEg4d7kfINCPXgbWuJr
P3jlUSgF8EV62AkTmNVKGVIRnZpVpygs2ETKQ1UCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBTXYWHr5/wX4UgAUquGi9y6mOd9eTAfBgNVHSMEGDAWgBRp/f6CSflDqrrR
iB/KWDZhOmpnvDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2FmMy1na241UTZxNjBZZ2Z5bGcyWVRwcVo3dy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGIvY2NmNzc3LTk0NjUtNGEyZS04MTEyLTcxZDhiODg1MDg1My8x
LzEyRmg2LWY4Ri1GSUFGS3Job3ZjdXBqbmZYay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGIv
Y2NmNzc3LTk0NjUtNGEyZS04MTEyLTcxZDhiODg1MDg1My8xL2FmMy1na241UTZx
NjBZZ2Z5bGcyWVRwcVo3dy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEA1tp+AMEAbmf7jANBAIAAjAHAwUA
KgF7wDANBgkqhkiG9w0BAQsFAAOCAQEAefL2OLLd4jg6DCTbO1gbKbCnfzWtyHl4
YlfmQUnZq0f6BCUoJ3kpGU18NBAoOnUMSJMIkxsXECIWYZ1VOQMo/Kn1PbZgwZh9
n973/hQMx/WifGYjD9W9igR7USz4b8e0vyaPJZoraYEKyP5zD7WhVWzGhq/qzgVi
+zdDtaJcWxHhjBx7fungkoqQG8eU3JmgP3nHWAWIYxQbbLttKNoNvwz2MKfMFkgp
Z/W2t2jpuGHtLzQ8AdJXfy06baT6/Bqb8OJrCuqx/FLrMwj2dYnJ72Pa8OKqVwdR
uN1l+1aDjWSwJBiCMKcrs+/TfLfLuTWsvGJogVlKSERB4095rTouJQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:38 2024 by rpki-client on console-ams.rpki-client.org