Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/008f91-aee3-4408-8393-14b76b76f2bb/1/f4BTwykP8wXp4CfD4ECznhSufG8.roa
File: f4BTwykP8wXp4CfD4ECznhSufG8.roa (raw, json)
Hash identifier: F81UFwt8VV5PwcynwcE94dLpS8Sm3FO1ycAK/NoEbmo=
Subject key identifier: 7F:80:53:C3:29:0F:F3:05:E9:E0:27:C3:E0:40:B3:9E:14:AE:7C:6F
Certificate issuer: /CN=aa679589c1c48897d09b2d4fed7a66044a876ea3
Certificate serial: 05D6A69B
Authority key identifier: AA:67:95:89:C1:C4:88:97:D0:9B:2D:4F:ED:7A:66:04:4A:87:6E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmeVicHEiJfQmy1P7XpmBEqHbqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/008f91-aee3-4408-8393-14b76b76f2bb/1/f4BTwykP8wXp4CfD4ECznhSufG8.roa
Signing time: Sat 01 Jan 2022 09:56:24 +0000
ROA not before: Sat 01 Jan 2022 09:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47810
IP address blocks: 91.239.206.0/23 maxlen: 23
91.208.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97953435 (0x5d6a69b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa679589c1c48897d09b2d4fed7a66044a876ea3
Validity
Not Before: Jan 1 09:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f8053c3290ff305e9e027c3e040b39e14ae7c6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:06:2d:1f:57:d8:13:a7:03:11:2a:12:8f:29:
77:42:f0:d1:6c:97:12:f6:c3:81:a9:67:d8:aa:85:
f1:2c:cb:0c:f8:ec:2b:51:0e:46:48:ff:d7:0a:7c:
0c:e7:1a:5a:db:d2:57:8d:ea:94:70:63:a6:d7:6b:
49:b3:77:ad:6a:02:df:9e:6a:0d:25:95:0d:b2:77:
e9:cd:3e:2c:fe:fb:6b:05:c5:c2:05:12:af:1e:15:
bc:f9:a4:6a:07:cb:11:73:db:6a:39:37:61:fc:17:
a7:7d:f1:4e:20:b6:88:64:8d:4f:3d:af:9f:a8:e0:
1b:08:75:9a:2b:a7:5e:24:4f:33:0e:49:31:f0:7e:
76:82:94:90:53:fc:5b:78:1c:17:2a:cc:90:85:10:
92:a3:e9:c6:9a:0f:a7:31:ca:2c:54:de:0f:d0:72:
4b:ad:66:3e:04:18:63:4f:27:11:0a:f2:7f:ba:5a:
9b:37:42:52:e4:56:ac:fa:c7:a8:d1:82:e1:2c:f3:
33:89:73:69:88:45:20:84:fb:cc:04:54:36:38:d2:
36:f4:64:e9:7c:f5:1f:a4:47:f5:13:c5:39:84:6b:
ba:24:ed:63:91:5a:1f:35:78:2e:b2:22:93:4c:ca:
6c:37:bf:18:fa:ff:88:2f:5a:1b:5d:2d:9a:34:4c:
54:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:80:53:C3:29:0F:F3:05:E9:E0:27:C3:E0:40:B3:9E:14:AE:7C:6F
X509v3 Authority Key Identifier:
keyid:AA:67:95:89:C1:C4:88:97:D0:9B:2D:4F:ED:7A:66:04:4A:87:6E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmeVicHEiJfQmy1P7XpmBEqHbqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/008f91-aee3-4408-8393-14b76b76f2bb/1/f4BTwykP8wXp4CfD4ECznhSufG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/008f91-aee3-4408-8393-14b76b76f2bb/1/qmeVicHEiJfQmy1P7XpmBEqHbqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.144.0/24
91.239.206.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:3c:b4:b8:fb:00:88:8b:15:9a:1b:f2:c2:bf:2a:b4:a3:fe:
12:b1:dd:6d:dd:fc:26:ae:04:eb:b3:6f:15:9a:c7:c2:11:22:
f3:7e:c8:20:5e:71:43:3a:6d:8d:f5:32:5d:aa:1a:e8:e7:ee:
cf:10:f2:b3:e5:1d:30:52:b4:26:29:a6:58:cb:27:f3:65:ff:
b2:fe:a9:24:b3:64:d0:be:18:c4:2e:f9:c4:fd:c6:68:6e:cf:
51:90:d0:0f:9a:89:14:96:fa:90:48:e5:33:5d:1a:af:d9:06:
f7:da:28:c3:49:3b:ac:f7:d1:bf:63:18:b4:29:70:29:1d:89:
ff:27:fc:a9:6f:d9:6e:d2:21:8c:a0:5b:9d:cf:f3:1e:2e:cc:
06:cd:af:1d:e0:64:62:17:b8:d0:5a:8e:9f:ae:a4:72:f9:57:
f1:1c:77:5b:bc:29:9f:39:18:1f:6c:ff:6c:73:a8:50:cd:e2:
51:ba:ce:82:1e:86:f5:70:86:70:a6:dd:a1:d4:5a:84:9f:02:
48:2a:94:e0:8e:ff:a6:e9:06:86:b6:ff:a0:28:21:52:e7:98:
3c:d6:8f:6e:34:85:5a:3f:20:ee:50:b9:f7:8d:7e:7a:22:c9:
34:fd:7c:5e:00:11:2f:cb:74:6e:d5:04:d4:ff:66:c1:95:d1:
37:32:3f:0a
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEBdammzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YTY3OTU4OWMxYzQ4ODk3ZDA5YjJkNGZlZDdhNjYwNDRhODc2ZWEzMB4XDTIyMDEw
MTA5NTYyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Y4MDUzYzMyOTBm
ZjMwNWU5ZTAyN2MzZTA0MGIzOWUxNGFlN2M2ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANcGLR9X2BOnAxEqEo8pd0Lw0WyXEvbDgaln2KqF8SzLDPjs
K1EORkj/1wp8DOcaWtvSV43qlHBjptdrSbN3rWoC355qDSWVDbJ36c0+LP77awXF
wgUSrx4VvPmkagfLEXPbajk3YfwXp33xTiC2iGSNTz2vn6jgGwh1miunXiRPMw5J
MfB+doKUkFP8W3gcFyrMkIUQkqPpxpoPpzHKLFTeD9ByS61mPgQYY08nEQryf7pa
mzdCUuRWrPrHqNGC4SzzM4lzaYhFIIT7zARUNjjSNvRk6Xz1H6RH9RPFOYRruiTt
Y5FaHzV4LrIik0zKbDe/GPr/iC9aG10tmjRMVGcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBR/gFPDKQ/zBengJ8PgQLOeFK58bzAfBgNVHSMEGDAWgBSqZ5WJwcSIl9Cb
LU/temYESoduozAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3FtZVZpY0hFaUpmUW15MVA3WHBtQkVxSGJxTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGMvMDA4ZjkxLWFlZTMtNDQwOC04MzkzLTE0Yjc2Yjc2ZjJiYi8x
L2Y0QlR3eWtQOHdYcDRDZkQ0RUN6bmhTdWZHOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGMv
MDA4ZjkxLWFlZTMtNDQwOC04MzkzLTE0Yjc2Yjc2ZjJiYi8xL3FtZVZpY0hFaUpm
UW15MVA3WHBtQkVxSGJxTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAFvQkAMEAVvvzjANBgkqhkiG9w0B
AQsFAAOCAQEAHTy0uPsAiIsVmhvywr8qtKP+ErHdbd38Jq4E67NvFZrHwhEi837I
IF5xQzptjfUyXaoa6OfuzxDys+UdMFK0JimmWMsn82X/sv6pJLNk0L4YxC75xP3G
aG7PUZDQD5qJFJb6kEjlM10ar9kG99oow0k7rPfRv2MYtClwKR2J/yf8qW/ZbtIh
jKBbnc/zHi7MBs2vHeBkYhe40FqOn66kcvlX8Rx3W7wpnzkYH2z/bHOoUM3iUbrO
gh6G9XCGcKbdodRahJ8CSCqU4I7/pukGhrb/oCghUueYPNaPbjSFWj8g7lC5941+
eiLJNP18XgARL8t0btUE1P9mwZXRNzI/Cg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org