Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/lTVnK7seAK3mqROtk2vJdwf-RQg.roa
File: lTVnK7seAK3mqROtk2vJdwf-RQg.roa (raw, json)
Hash identifier: ANeqwxxmpIJudHOIWxNcO8YIvyXA9wuCp+rBqJdc9vM=
Subject key identifier: 95:35:67:2B:BB:1E:00:AD:E6:A9:13:AD:93:6B:C9:77:07:FE:45:08
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 07F5D9CC
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/lTVnK7seAK3mqROtk2vJdwf-RQg.roa
Signing time: Sat 01 Jan 2022 15:07:05 +0000
ROA not before: Sat 01 Jan 2022 15:07:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 393398
IP address blocks: 91.132.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133552588 (0x7f5d9cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Jan 1 15:07:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9535672bbb1e00ade6a913ad936bc97707fe4508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6e:03:af:a6:af:1f:9f:39:31:74:c2:66:d5:
61:dd:1b:d9:90:2a:b5:f9:b9:8e:b3:66:52:7a:24:
01:bc:64:cd:32:5d:59:bb:4f:66:e0:4a:58:15:36:
d6:f2:02:90:5e:f9:ff:91:8c:c9:2a:d6:7a:54:db:
2e:2c:bc:cb:c5:e8:1d:00:32:88:80:32:09:25:a6:
26:4b:02:f9:b3:8d:2c:c3:0b:d9:ce:7a:9d:ad:19:
c5:44:a8:d3:d2:2d:f6:49:c5:48:25:49:bb:38:27:
38:44:fa:6f:7c:7e:f0:eb:73:9a:a3:fd:d2:e6:9c:
a2:01:06:5e:f3:f2:f2:77:de:00:a9:e2:b6:5c:f5:
9a:0c:58:93:36:2d:b8:44:c0:9d:7d:aa:84:0f:6f:
9b:c2:95:29:a1:63:f5:f9:8f:28:cf:ea:ba:e5:35:
0f:e9:23:38:32:79:32:5b:3b:be:42:13:28:01:9d:
c7:bc:0f:19:d1:45:24:14:73:8b:f8:21:42:ee:04:
24:8d:76:57:0d:57:11:49:67:b6:b1:76:d8:56:d4:
4d:29:2a:84:ea:3b:fe:2c:30:3c:21:61:bd:00:0e:
ad:44:02:4d:b3:98:e2:db:20:fa:82:a8:28:77:2d:
18:cf:28:3c:1a:d3:c6:4f:95:6f:1b:4f:9e:49:92:
ff:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:35:67:2B:BB:1E:00:AD:E6:A9:13:AD:93:6B:C9:77:07:FE:45:08
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/lTVnK7seAK3mqROtk2vJdwf-RQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.160.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:a6:e1:25:eb:e5:be:84:eb:25:5f:16:6b:93:29:cd:0c:ad:
82:64:cf:4c:c3:64:f6:18:9d:76:8f:af:f9:0b:f8:f5:62:99:
67:ef:71:25:79:fb:19:91:d2:83:63:9f:4b:ed:73:22:88:23:
17:db:7f:c7:66:d2:ac:50:8f:55:e6:7a:0b:32:14:f9:0c:8b:
ce:06:98:48:00:3a:90:b6:74:b7:97:34:4a:77:95:ec:d7:b9:
0e:5c:cb:de:82:75:63:f9:b4:e9:8e:20:97:13:30:ae:68:d6:
10:93:f0:6e:95:1f:b9:f0:95:8a:76:44:42:46:4b:35:25:bc:
fa:e6:a5:2c:ea:87:75:09:ac:20:7a:b5:da:86:34:2f:f2:b1:
83:c4:17:5d:95:49:0a:df:e8:27:11:94:5d:dd:50:27:51:8a:
84:e4:92:64:12:e7:3f:36:e5:cc:3e:0c:5c:6a:8c:10:a9:37:
54:fd:d5:65:ca:60:01:76:fb:28:31:b0:40:51:21:74:8c:41:
cc:e8:ff:d5:bf:66:39:36:27:f0:10:92:cb:55:2f:71:d4:af:
4e:bb:e6:07:e7:b9:92:23:84:e1:2b:5f:f8:fc:7b:1b:b9:72:
11:79:e7:8a:09:21:59:84:17:99:5c:30:25:47:2f:5b:ee:fb:
08:88:5f:5e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB/XZzDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
OTg2YzczOTk0ZDAyZDkxZmM5N2Q5MTZlOTgwOWE2ZDk4MWU2YjE3MB4XDTIyMDEw
MTE1MDcwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTUzNTY3MmJiYjFl
MDBhZGU2YTkxM2FkOTM2YmM5NzcwN2ZlNDUwODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALFuA6+mrx+fOTF0wmbVYd0b2ZAqtfm5jrNmUnokAbxkzTJd
WbtPZuBKWBU21vICkF75/5GMySrWelTbLiy8y8XoHQAyiIAyCSWmJksC+bONLMML
2c56na0ZxUSo09It9knFSCVJuzgnOET6b3x+8OtzmqP90uacogEGXvPy8nfeAKni
tlz1mgxYkzYtuETAnX2qhA9vm8KVKaFj9fmPKM/quuU1D+kjODJ5Mls7vkITKAGd
x7wPGdFFJBRzi/ghQu4EJI12Vw1XEUlntrF22FbUTSkqhOo7/iwwPCFhvQAOrUQC
TbOY4tsg+oKoKHctGM8oPBrTxk+VbxtPnkmS/0sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSVNWcrux4AreapE62Ta8l3B/5FCDAfBgNVHSMEGDAWgBRJhsc5lNAtkfyX
2RbpgJptmB5rFzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1NZYkhPWlRRTFpIOGw5a1c2WUNhYlpnZWF4Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWEvNDU3ZTEzLTQxZDMtNDBlZi1iNTcyLTllODk1ZDBlZjhkMi8x
L2xUVm5LN3NlQUszbXFST3RrMnZKZHdmLVJRZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWEv
NDU3ZTEzLTQxZDMtNDBlZi1iNTcyLTllODk1ZDBlZjhkMi8xL1NZYkhPWlRRTFpI
OGw5a1c2WUNhYlpnZWF4Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAluEoDANBgkqhkiG9w0BAQsFAAOC
AQEAS6bhJevlvoTrJV8Wa5MpzQytgmTPTMNk9hiddo+v+Qv49WKZZ+9xJXn7GZHS
g2OfS+1zIogjF9t/x2bSrFCPVeZ6CzIU+QyLzgaYSAA6kLZ0t5c0SneV7Ne5DlzL
3oJ1Y/m06Y4glxMwrmjWEJPwbpUfufCVinZEQkZLNSW8+ualLOqHdQmsIHq12oY0
L/Kxg8QXXZVJCt/oJxGUXd1QJ1GKhOSSZBLnPzblzD4MXGqMEKk3VP3VZcpgAXb7
KDGwQFEhdIxBzOj/1b9mOTYn8BCSy1UvcdSvTrvmB+e5kiOE4Stf+Px7G7lyEXnn
igkhWYQXmVwwJUcvW+77CIhfXg==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:36 2025 by rpki-client