Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/dee68d-aacd-4673-ba42-9911e510a8a9/1/1-P8HN4vV0JdAZDO-3w9kOlsZJ6E.roa
File: 1-P8HN4vV0JdAZDO-3w9kOlsZJ6E.roa (raw, json)
Hash identifier: siD3rL35UQ7vLGKNe69W4bUG4PY4vdkPFT3tbGHxIVw=
Subject key identifier: F8:FF:07:37:8B:D5:D0:97:40:64:33:BE:DF:0F:64:3A:5B:19:27:A1
Certificate issuer: /CN=fb4abe13942abe420f20dc149fdc57df4045c143
Certificate serial: 01856282410DBD9D068608300A68C9BF9114
Authority key identifier: FB:4A:BE:13:94:2A:BE:42:0F:20:DC:14:9F:DC:57:DF:40:45:C1:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-0q-E5QqvkIPINwUn9xX30BFwUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/dee68d-aacd-4673-ba42-9911e510a8a9/1/1-P8HN4vV0JdAZDO-3w9kOlsZJ6E.roa
Signing time: Fri 30 Dec 2022 10:09:41 +0000
ROA not before: Fri 30 Dec 2022 10:09:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197323
IP address blocks: 91.220.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:82:41:0d:bd:9d:06:86:08:30:0a:68:c9:bf:91:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb4abe13942abe420f20dc149fdc57df4045c143
Validity
Not Before: Dec 30 10:09:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8ff07378bd5d097406433bedf0f643a5b1927a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:83:a8:41:96:be:06:29:4f:1a:18:15:72:f1:
1b:ca:d5:36:b6:f8:3d:c3:1c:8f:6e:3c:0a:08:57:
75:94:8c:9b:a8:e7:f4:bf:94:c7:eb:f8:4c:ba:89:
52:ca:f5:ed:3d:51:8f:21:98:de:52:1c:f2:db:5b:
dd:7d:f0:e3:e1:59:b6:af:6b:6f:3d:11:60:a2:e5:
2f:f6:d4:0e:bb:df:cb:0c:64:1e:12:c2:3b:7a:be:
a1:08:7a:2f:6f:96:10:de:e8:bb:0c:2a:03:61:87:
f9:d0:fe:f2:f4:9b:d8:54:1a:ea:4a:12:f3:1c:c2:
03:d3:d6:b7:42:22:6a:71:47:d4:d2:21:ee:4d:39:
4c:0b:dd:08:e2:c4:33:01:b4:bf:86:6b:cc:5b:31:
c0:2c:8b:f8:3b:88:e2:d6:28:4a:c0:3b:ce:f6:37:
5a:1e:1b:d1:45:2b:75:d1:fb:23:a2:a2:b3:66:ef:
db:17:dc:ea:11:dc:90:46:c9:88:ae:06:24:ff:0b:
11:7c:b3:ba:56:98:ee:63:b4:21:dc:64:22:eb:50:
fe:78:7f:f9:90:88:28:fc:f6:74:82:81:69:ce:d1:
3c:ed:06:3e:ba:d8:3a:af:eb:82:d7:60:08:0a:b8:
0c:3c:d1:0b:b9:35:db:26:4d:2e:41:c9:e8:23:3a:
7c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:FF:07:37:8B:D5:D0:97:40:64:33:BE:DF:0F:64:3A:5B:19:27:A1
X509v3 Authority Key Identifier:
keyid:FB:4A:BE:13:94:2A:BE:42:0F:20:DC:14:9F:DC:57:DF:40:45:C1:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-0q-E5QqvkIPINwUn9xX30BFwUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dee68d-aacd-4673-ba42-9911e510a8a9/1/1-P8HN4vV0JdAZDO-3w9kOlsZJ6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dee68d-aacd-4673-ba42-9911e510a8a9/1/1-0q-E5QqvkIPINwUn9xX30BFwUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.47.0/24
Signature Algorithm: sha256WithRSAEncryption
49:13:96:28:b1:86:d7:ca:2d:f6:09:3c:71:6d:e1:86:89:f4:
af:ad:08:ef:f2:9f:47:cf:2f:a3:b6:0d:09:a1:b3:9c:fd:7e:
6f:74:d0:6a:50:74:df:6f:1f:f1:76:a4:30:9d:43:68:66:80:
77:a9:4b:6c:fc:c3:ee:e4:fa:50:0a:f5:ac:53:72:0c:5f:a0:
47:97:11:5c:6e:45:1b:4e:6c:7b:cd:a8:5a:93:78:d7:03:13:
08:c4:ed:7d:33:18:21:99:cf:3d:8f:f9:5f:71:29:71:2c:d4:
0b:cf:8f:15:ce:fd:51:7b:ae:1a:6c:1e:3c:a5:1c:9b:42:98:
63:dc:c5:10:34:d8:75:64:ea:e2:af:8a:e8:99:37:87:12:99:
a7:cd:3f:e7:7c:84:6f:62:3c:10:58:5f:f7:c3:4d:37:6e:db:
cc:58:8b:dd:f0:98:7a:9c:7c:cd:36:ae:b7:34:d7:17:0f:01:
c2:b0:40:ca:f5:bc:d6:a6:ca:60:5d:ad:67:7d:27:ca:b1:8c:
1e:4c:dc:a4:94:fa:62:e8:f7:6b:b8:57:87:d2:ee:f1:67:63:
3a:bb:c8:df:67:2d:25:3a:19:f0:14:c7:74:49:96:4f:58:fa:
bc:c5:05:f6:f4:fb:21:5d:8a:67:39:34:f8:09:7e:aa:89:4e:
68:85:21:f6
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVigkENvZ0GhggwCmjJv5EUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiNGFiZTEzOTQyYWJlNDIwZjIwZGMxNDlmZGM1N2RmNDA0
NWMxNDMwHhcNMjIxMjMwMTAwOTQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGZmMDczNzhiZDVkMDk3NDA2NDMzYmVkZjBmNjQzYTViMTkyN2ExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYOoQZa+BilPGhgVcvEbytU2tvg9
wxyPbjwKCFd1lIybqOf0v5TH6/hMuolSyvXtPVGPIZjeUhzy21vdffDj4Vm2r2tv
PRFgouUv9tQOu9/LDGQeEsI7er6hCHovb5YQ3ui7DCoDYYf50P7y9JvYVBrqShLz
HMID09a3QiJqcUfU0iHuTTlMC90I4sQzAbS/hmvMWzHALIv4O4ji1ihKwDvO9jda
HhvRRSt10fsjoqKzZu/bF9zqEdyQRsmIrgYk/wsRfLO6VpjuY7Qh3GQi61D+eH/5
kIgo/PZ0goFpztE87QY+utg6r+uC12AICrgMPNELuTXbJk0uQcnoIzp8vQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPj/BzeL1dCXQGQzvt8PZDpbGSehMB8GA1UdIwQY
MBaAFPtKvhOUKr5CDyDcFJ/cV99ARcFDMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS0wcS1FNVFxdmtJUElOd1VuOXhYMzBCRndVTS5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWEvZGVlNjhkLWFhY2QtNDY3My1iYTQy
LTk5MTFlNTEwYThhOS8xLzEtUDhITjR2VjBKZEFaRE8tM3c5a09sc1pKNkUucm9h
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxUL2VhL2RlZTY4ZC1hYWNkLTQ2NzMtYmE0Mi05OTExZTUxMGE4
YTkvMS8xLTBxLUU1UXF2a0lQSU53VW45eFgzMEJGd1VNLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9wv
MA0GCSqGSIb3DQEBCwUAA4IBAQBJE5YosYbXyi32CTxxbeGGifSvrQjv8p9Hzy+j
tg0JobOc/X5vdNBqUHTfbx/xdqQwnUNoZoB3qUts/MPu5PpQCvWsU3IMX6BHlxFc
bkUbTmx7zahak3jXAxMIxO19Mxghmc89j/lfcSlxLNQLz48Vzv1Re64abB48pRyb
Qphj3MUQNNh1ZOrir4romTeHEpmnzT/nfIRvYjwQWF/3w003btvMWIvd8Jh6nHzN
Nq63NNcXDwHCsEDK9bzWpspgXa1nfSfKsYweTNyklPpi6PdruFeH0u7xZ2M6u8jf
Zy0lOhnwFMd0SZZPWPq8xQX29PshXYpnOTT4CX6qiU5ohSH2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:24 2024 by rpki-client on console-fra.rpki-client.org