Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a29c9a-ca4d-4000-8ff3-d9a104404aaf/1/4pNYwzkBIWp-cfLGa8fdQ6uKPUQ.roa
File: 4pNYwzkBIWp-cfLGa8fdQ6uKPUQ.roa (raw, json)
Hash identifier: efGFkHiqUAVg7rnDbbLkR/4Wocq1sS06fSyryfIIx7g=
Subject key identifier: E2:93:58:C3:39:01:21:6A:7E:71:F2:C6:6B:C7:DD:43:AB:8A:3D:44
Certificate issuer: /CN=9760fd5864826805cf3655eeeb2fb898f36d9821
Certificate serial: 015D85
Authority key identifier: 97:60:FD:58:64:82:68:05:CF:36:55:EE:EB:2F:B8:98:F3:6D:98:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l2D9WGSCaAXPNlXu6y-4mPNtmCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a29c9a-ca4d-4000-8ff3-d9a104404aaf/1/4pNYwzkBIWp-cfLGa8fdQ6uKPUQ.roa
Signing time: Thu 28 Apr 2022 08:24:22 +0000
ROA not before: Thu 28 Apr 2022 08:24:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51835
IP address blocks: 91.194.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89477 (0x15d85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9760fd5864826805cf3655eeeb2fb898f36d9821
Validity
Not Before: Apr 28 08:24:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e29358c33901216a7e71f2c66bc7dd43ab8a3d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ea:ab:60:4d:fb:6e:a4:f6:8b:db:62:55:79:
6b:cb:97:6c:b8:00:e6:ae:46:1f:bb:75:5d:e2:f1:
82:4d:06:3d:06:8f:39:6f:cd:58:0e:03:f2:06:7a:
55:c6:fd:03:b9:15:23:df:0a:87:d3:aa:8e:0c:51:
b4:dd:1f:ba:00:4b:5b:41:ef:88:24:7c:6e:70:da:
f8:8c:66:a5:c7:5b:0e:04:fb:df:84:eb:52:bf:0a:
8b:40:0b:17:86:85:60:9f:9c:dd:d9:ee:31:c1:31:
9e:04:f4:88:d4:60:03:13:9a:6c:e0:33:28:fe:ff:
ff:f3:1a:fb:f5:c8:ae:8b:f9:72:58:e4:9f:79:d6:
42:85:46:10:fe:93:97:f7:86:8d:a1:cf:15:21:67:
36:25:37:5b:40:6d:d9:5f:9d:06:eb:a3:9e:ba:7b:
92:8a:e1:38:9d:42:ac:15:b3:29:cc:52:af:fd:0b:
76:aa:f6:e0:76:10:f8:e2:66:96:f9:c0:2e:70:c1:
76:86:9b:af:a9:bf:4d:06:f0:23:d0:5f:42:1a:62:
d1:73:d3:8f:9f:a1:1e:27:8d:a9:9f:12:16:aa:24:
ef:64:c0:87:c9:f7:44:e7:fe:dd:13:6b:ba:d7:a9:
3b:81:a9:2d:a4:d8:54:a9:7f:56:d4:ad:47:2e:61:
42:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:93:58:C3:39:01:21:6A:7E:71:F2:C6:6B:C7:DD:43:AB:8A:3D:44
X509v3 Authority Key Identifier:
keyid:97:60:FD:58:64:82:68:05:CF:36:55:EE:EB:2F:B8:98:F3:6D:98:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l2D9WGSCaAXPNlXu6y-4mPNtmCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a29c9a-ca4d-4000-8ff3-d9a104404aaf/1/4pNYwzkBIWp-cfLGa8fdQ6uKPUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a29c9a-ca4d-4000-8ff3-d9a104404aaf/1/l2D9WGSCaAXPNlXu6y-4mPNtmCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.31.0/24
Signature Algorithm: sha256WithRSAEncryption
35:34:24:13:96:a8:88:b4:32:c5:4e:91:2c:5a:1c:9c:fc:a4:
e3:1c:ed:4d:82:bc:c9:e6:16:80:58:17:d0:5e:f3:2b:a5:b6:
c4:3d:49:22:51:7f:b3:c1:a3:45:18:c9:e1:69:e6:2b:94:4e:
7a:ab:2f:51:77:93:5c:9b:f1:1e:dc:ff:64:e2:12:0d:b4:37:
95:13:7f:6a:07:8e:1f:e2:30:dc:49:17:38:85:eb:9d:29:85:
06:f1:c6:61:11:ea:78:b1:8a:90:95:97:dd:a8:f7:17:ac:74:
59:68:f6:8a:ff:b3:a7:b0:fc:5f:0a:92:42:73:de:c2:d0:41:
30:90:13:51:55:9b:54:ac:04:df:71:15:7c:c5:c5:1d:b6:c1:
a2:93:4a:0e:00:97:bc:e8:85:29:82:22:53:5f:89:ad:de:9e:
63:7a:97:65:58:41:33:d3:22:3f:95:f5:08:1c:3f:4d:50:bf:
2e:f1:56:d1:9a:41:20:85:bb:c1:d2:54:c7:90:d7:c1:0e:07:
cc:8e:58:f7:72:aa:de:e1:1a:a3:92:97:04:e9:8f:f0:41:49:
46:0e:0e:18:e6:a8:a7:f4:fc:48:2b:ec:54:f4:ed:bb:3d:07:
8b:95:56:9c:81:10:e7:47:d8:ea:13:23:4e:36:a2:54:95:cd:
8c:c7:49:c5
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAV2FMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDk3
NjBmZDU4NjQ4MjY4MDVjZjM2NTVlZWViMmZiODk4ZjM2ZDk4MjEwHhcNMjIwNDI4
MDgyNDIyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlMjkzNThjMzM5MDEy
MTZhN2U3MWYyYzY2YmM3ZGQ0M2FiOGEzZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAr+qrYE37bqT2i9tiVXlry5dsuADmrkYfu3Vd4vGCTQY9Bo85
b81YDgPyBnpVxv0DuRUj3wqH06qODFG03R+6AEtbQe+IJHxucNr4jGalx1sOBPvf
hOtSvwqLQAsXhoVgn5zd2e4xwTGeBPSI1GADE5ps4DMo/v//8xr79ciui/lyWOSf
edZChUYQ/pOX94aNoc8VIWc2JTdbQG3ZX50G66OeunuSiuE4nUKsFbMpzFKv/Qt2
qvbgdhD44maW+cAucMF2hpuvqb9NBvAj0F9CGmLRc9OPn6EeJ42pnxIWqiTvZMCH
yfdE5/7dE2u616k7gaktpNhUqX9W1K1HLmFCEQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFOKTWMM5ASFqfnHyxmvH3UOrij1EMB8GA1UdIwQYMBaAFJdg/VhkgmgFzzZV
7usvuJjzbZghMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
bDJEOVdHU0NhQVhQTmxYdTZ5LTRtUE50bUNFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9lZC9hMjljOWEtY2E0ZC00MDAwLThmZjMtZDlhMTA0NDA0YWFmLzEv
NHBOWXd6a0JJV3AtY2ZMR2E4ZmRRNnVLUFVRLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9h
MjljOWEtY2E0ZC00MDAwLThmZjMtZDlhMTA0NDA0YWFmLzEvbDJEOVdHU0NhQVhQ
TmxYdTZ5LTRtUE50bUNFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8IfMA0GCSqGSIb3DQEBCwUAA4IB
AQA1NCQTlqiItDLFTpEsWhyc/KTjHO1NgrzJ5haAWBfQXvMrpbbEPUkiUX+zwaNF
GMnhaeYrlE56qy9Rd5Ncm/Ee3P9k4hINtDeVE39qB44f4jDcSRc4heudKYUG8cZh
Eep4sYqQlZfdqPcXrHRZaPaK/7OnsPxfCpJCc97C0EEwkBNRVZtUrATfcRV8xcUd
tsGik0oOAJe86IUpgiJTX4mt3p5jepdlWEEz0yI/lfUIHD9NUL8u8VbRmkEghbvB
0lTHkNfBDgfMjlj3cqre4RqjkpcE6Y/wQUlGDg4Y5qin9PxIK+xU9O27PQeLlVac
gRDnR9jqEyNONqJUlc2Mx0nF
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:05 2023 by rpki-client on console-fra.rpki-client.org