Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/139ff2-f5d0-49be-910b-b5c945a0ca16/1/UwSgFNHWVotL_Oha-MPNuCQEBfw.roa
File: UwSgFNHWVotL_Oha-MPNuCQEBfw.roa (raw, json)
Hash identifier: 8yzhfgtT+XDiCoaUVtIHLCd/LDSF/+4HDdvyWSnZGFk=
Subject key identifier: 53:04:A0:14:D1:D6:56:8B:4B:FC:E8:5A:F8:C3:CD:B8:24:04:05:FC
Certificate issuer: /CN=319b679c14681089f2d07786df04f779d741c11a
Certificate serial: 015B2DB7
Authority key identifier: 31:9B:67:9C:14:68:10:89:F2:D0:77:86:DF:04:F7:79:D7:41:C1:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZtnnBRoEIny0HeG3wT3eddBwRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/139ff2-f5d0-49be-910b-b5c945a0ca16/1/UwSgFNHWVotL_Oha-MPNuCQEBfw.roa
Signing time: Sat 01 Jan 2022 14:05:54 +0000
ROA not before: Sat 01 Jan 2022 14:05:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197536
IP address blocks: 91.223.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22752695 (0x15b2db7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=319b679c14681089f2d07786df04f779d741c11a
Validity
Not Before: Jan 1 14:05:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5304a014d1d6568b4bfce85af8c3cdb8240405fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:44:6b:08:f7:44:93:81:d5:29:82:92:4f:9e:
1e:f5:7f:41:57:6e:b0:cb:3a:96:f7:fa:4e:11:4e:
2e:fb:ed:b8:56:15:dd:b5:b8:4d:f2:7f:db:45:39:
31:36:7a:d6:28:38:bf:2e:f5:4f:33:1f:12:75:f0:
57:c6:a2:d4:37:dd:60:c8:6e:54:d5:ec:ca:98:7b:
a9:c7:d6:97:39:e8:4e:86:98:e4:b1:7b:d5:d8:57:
4a:d0:9c:91:30:b5:ad:42:51:d6:c2:f9:fe:a6:fb:
68:d0:60:98:98:97:ec:28:f2:33:db:c9:11:f9:c5:
d2:37:d2:28:f5:6f:f3:e6:62:2d:14:c1:a9:a0:76:
b0:7c:22:fd:49:32:f5:fe:7b:0e:64:01:d1:9d:a1:
4b:2f:ba:a9:d0:ea:5d:34:39:a1:dc:a5:2d:d3:65:
8e:d7:eb:50:4a:38:5c:a9:49:22:7a:f2:8f:e0:02:
fa:fe:17:71:0d:5b:49:ed:01:02:f7:0b:cf:fc:16:
88:dd:92:45:03:65:21:67:57:b6:bb:4b:7d:88:00:
c0:79:be:06:f3:32:b5:e4:ee:3e:b7:c4:ec:55:c6:
42:66:b3:29:17:26:e0:b1:83:20:d7:58:8d:50:69:
9b:46:35:82:21:71:c9:63:36:9d:9a:b0:25:46:11:
83:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:04:A0:14:D1:D6:56:8B:4B:FC:E8:5A:F8:C3:CD:B8:24:04:05:FC
X509v3 Authority Key Identifier:
keyid:31:9B:67:9C:14:68:10:89:F2:D0:77:86:DF:04:F7:79:D7:41:C1:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZtnnBRoEIny0HeG3wT3eddBwRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/139ff2-f5d0-49be-910b-b5c945a0ca16/1/UwSgFNHWVotL_Oha-MPNuCQEBfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/139ff2-f5d0-49be-910b-b5c945a0ca16/1/MZtnnBRoEIny0HeG3wT3eddBwRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.39.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:95:83:a7:1a:bf:00:dc:06:49:59:54:d1:cc:af:1d:83:67:
25:a0:3f:5a:5d:7d:c3:1f:47:63:b5:9d:91:54:68:5b:dd:47:
61:02:14:21:15:17:39:e4:99:7a:45:63:12:91:7a:33:dd:b3:
ad:30:55:4f:9a:c8:ee:2f:5d:4a:f0:5f:6c:23:b6:e8:0e:e7:
82:8d:1d:6c:98:28:94:ea:30:4f:a8:7d:5e:9a:40:17:08:5b:
2b:cc:01:ae:12:3d:ad:32:fc:a0:8e:dd:31:31:4a:a4:13:7e:
41:91:52:68:46:f6:f1:5a:76:cb:ea:da:89:00:4d:c5:21:cb:
2e:de:60:0b:e5:29:2e:7c:66:cb:6f:07:cb:e4:91:89:f9:f4:
99:ff:06:83:6a:60:d3:5c:f1:07:7e:5c:9c:d9:06:27:49:f9:
91:aa:0e:a4:eb:39:68:9d:6c:88:85:1d:ce:94:b1:b5:10:08:
0f:1e:ef:0e:09:b9:d9:ae:75:14:95:db:ba:bb:75:32:13:14:
ff:0b:b0:73:3e:b7:14:8a:ec:be:72:dd:e2:3d:e1:d4:ec:5e:
68:3d:93:44:86:66:14:57:64:6b:2f:4b:2f:b1:d8:d1:0c:41:
6c:7c:a9:b5:c9:c4:0f:d6:78:11:3d:3a:f4:f4:03:4b:13:28:
49:64:32:d5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAVsttzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MTliNjc5YzE0NjgxMDg5ZjJkMDc3ODZkZjA0Zjc3OWQ3NDFjMTFhMB4XDTIyMDEw
MTE0MDU1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTMwNGEwMTRkMWQ2
NTY4YjRiZmNlODVhZjhjM2NkYjgyNDA0MDVmYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhEawj3RJOB1SmCkk+eHvV/QVdusMs6lvf6ThFOLvvtuFYV
3bW4TfJ/20U5MTZ61ig4vy71TzMfEnXwV8ai1DfdYMhuVNXsyph7qcfWlznoToaY
5LF71dhXStCckTC1rUJR1sL5/qb7aNBgmJiX7CjyM9vJEfnF0jfSKPVv8+ZiLRTB
qaB2sHwi/Uky9f57DmQB0Z2hSy+6qdDqXTQ5odylLdNljtfrUEo4XKlJInryj+AC
+v4XcQ1bSe0BAvcLz/wWiN2SRQNlIWdXtrtLfYgAwHm+BvMyteTuPrfE7FXGQmaz
KRcm4LGDINdYjVBpm0Y1giFxyWM2nZqwJUYRg7sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRTBKAU0dZWi0v86Fr4w824JAQF/DAfBgNVHSMEGDAWgBQxm2ecFGgQifLQ
d4bfBPd510HBGjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01adG5uQlJvRUlueTBIZUczd1QzZWRkQndSby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWMvMTM5ZmYyLWY1ZDAtNDliZS05MTBiLWI1Yzk0NWEwY2ExNi8x
L1V3U2dGTkhXVm90TF9PaGEtTVBOdUNRRUJmdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWMv
MTM5ZmYyLWY1ZDAtNDliZS05MTBiLWI1Yzk0NWEwY2ExNi8xL01adG5uQlJvRUlu
eTBIZUczd1QzZWRkQndSby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvfJzANBgkqhkiG9w0BAQsFAAOC
AQEAp5WDpxq/ANwGSVlU0cyvHYNnJaA/Wl19wx9HY7WdkVRoW91HYQIUIRUXOeSZ
ekVjEpF6M92zrTBVT5rI7i9dSvBfbCO26A7ngo0dbJgolOowT6h9XppAFwhbK8wB
rhI9rTL8oI7dMTFKpBN+QZFSaEb28Vp2y+raiQBNxSHLLt5gC+UpLnxmy28Hy+SR
ifn0mf8Gg2pg01zxB35cnNkGJ0n5kaoOpOs5aJ1siIUdzpSxtRAIDx7vDgm52a51
FJXburt1MhMU/wuwcz63FIrsvnLd4j3h1OxeaD2TRIZmFFdkay9LL7HY0QxBbHyp
tcnED9Z4ET069PQDSxMoSWQy1Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:03 2024 by rpki-client on console-ams.rpki-client.org