Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/h1JD0Unq0p608dHszZ3ix2zr61E.roa
File: h1JD0Unq0p608dHszZ3ix2zr61E.roa (raw, json)
Hash identifier: mG4E1564xZXy0AfcOvHC1FenkK5e3NVxpwnXQyPh+8s=
Subject key identifier: 87:52:43:D1:49:EA:D2:9E:B4:F1:D1:EC:CD:9D:E2:C7:6C:EB:EB:51
Certificate issuer: /CN=22689d0f913d29cc63d6c926cb462cb27f184408
Certificate serial: 05F1D7F0
Authority key identifier: 22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/h1JD0Unq0p608dHszZ3ix2zr61E.roa
Signing time: Sat 01 Jan 2022 09:53:13 +0000
ROA not before: Sat 01 Jan 2022 09:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210126
IP address blocks: 91.234.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99735536 (0x5f1d7f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22689d0f913d29cc63d6c926cb462cb27f184408
Validity
Not Before: Jan 1 09:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=875243d149ead29eb4f1d1eccd9de2c76cebeb51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a5:fe:47:14:3b:97:72:13:1c:4a:0d:32:90:
3e:bf:af:36:a1:98:ff:32:5d:e8:da:ac:95:a8:53:
5f:f7:76:93:f1:18:f1:5a:ca:e9:00:8a:e0:98:ec:
a2:39:c3:9e:36:70:bb:c7:29:76:40:b0:c7:26:aa:
04:f8:23:27:8b:a0:31:cf:fd:19:92:78:e5:22:8e:
a5:6b:5d:59:cc:d5:3a:ac:f9:ad:37:d9:f8:8e:12:
9a:fe:18:e8:0c:26:26:97:98:20:70:b0:8d:d1:d6:
cd:15:b3:5c:59:db:4c:dd:34:eb:c5:1c:75:6b:3f:
50:60:b4:38:d4:c1:4c:d7:c9:2f:63:37:8c:a9:c0:
7c:f5:ab:d2:d1:98:0a:c9:65:ae:c1:d7:6a:77:ee:
0b:1c:2c:f9:2c:63:b0:4f:68:76:e3:5d:01:65:41:
3d:f4:8c:c2:82:38:48:28:04:d4:7d:90:07:b9:df:
4a:32:1f:8a:bb:d7:43:11:89:f8:eb:3e:1b:db:dc:
e0:52:f9:70:a5:1c:7b:6d:34:d6:fb:1e:25:99:66:
0d:7e:1d:7b:91:eb:39:8e:ba:84:0f:1f:69:0e:04:
5c:4b:a6:d7:9c:2b:75:e8:1b:d6:9e:3a:39:c9:9c:
48:8d:55:57:e4:b9:1d:61:35:ac:31:f1:68:a9:42:
79:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:52:43:D1:49:EA:D2:9E:B4:F1:D1:EC:CD:9D:E2:C7:6C:EB:EB:51
X509v3 Authority Key Identifier:
keyid:22:68:9D:0F:91:3D:29:CC:63:D6:C9:26:CB:46:2C:B2:7F:18:44:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ImidD5E9Kcxj1skmy0Yssn8YRAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/h1JD0Unq0p608dHszZ3ix2zr61E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/043eee-3199-4f8e-b0a9-4ad852a12cd6/1/ImidD5E9Kcxj1skmy0Yssn8YRAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.200.0/24
Signature Algorithm: sha256WithRSAEncryption
24:c7:8c:bc:7f:4f:29:62:40:80:26:91:e8:c6:33:7d:eb:df:
6d:1c:58:fb:4d:60:1d:52:d1:34:5b:26:34:b0:c5:2f:6e:0e:
1e:8a:78:1c:4e:14:ff:a0:87:9a:e3:49:f2:df:6f:0c:9c:e6:
5e:fe:75:4a:47:e1:75:76:1b:0d:a0:56:fa:5d:07:8f:68:84:
30:1e:ab:fd:2f:36:2a:fc:07:4f:19:3a:f0:5c:fa:f8:9f:84:
ec:31:f8:7f:2c:a7:0e:ec:64:3e:2e:11:42:d4:7c:18:fb:6b:
f2:3a:1f:69:68:31:86:b0:1a:66:ad:6a:0f:f5:53:b1:9f:23:
a2:68:d9:4e:5f:c2:cf:da:fe:66:0c:19:73:6b:53:63:24:de:
b9:41:85:45:77:4a:1d:0f:30:cc:4a:52:f3:e2:83:f0:19:21:
c2:3c:d0:6e:24:4d:89:1a:64:19:b3:93:32:60:8a:d6:84:ae:
58:f9:fd:c8:bb:05:ff:43:c3:29:e0:14:4e:8e:e9:77:b7:23:
1c:31:fc:ec:ce:d2:e2:a6:18:9e:42:e9:b4:74:89:fc:1c:9a:
bd:2a:db:79:b3:ac:61:cd:7f:a3:a7:b8:0b:e5:24:13:e8:93:
50:48:ce:ff:7e:97:a5:a5:ed:f2:9d:fb:42:ee:7d:bc:89:38:
b2:28:f9:b0
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBfHX8DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MjY4OWQwZjkxM2QyOWNjNjNkNmM5MjZjYjQ2MmNiMjdmMTg0NDA4MB4XDTIyMDEw
MTA5NTMxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODc1MjQzZDE0OWVh
ZDI5ZWI0ZjFkMWVjY2Q5ZGUyYzc2Y2ViZWI1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALel/kcUO5dyExxKDTKQPr+vNqGY/zJd6NqslahTX/d2k/EY
8VrK6QCK4JjsojnDnjZwu8cpdkCwxyaqBPgjJ4ugMc/9GZJ45SKOpWtdWczVOqz5
rTfZ+I4Smv4Y6AwmJpeYIHCwjdHWzRWzXFnbTN0068UcdWs/UGC0ONTBTNfJL2M3
jKnAfPWr0tGYCsllrsHXanfuCxws+SxjsE9oduNdAWVBPfSMwoI4SCgE1H2QB7nf
SjIfirvXQxGJ+Os+G9vc4FL5cKUce2001vseJZlmDX4de5HrOY66hA8faQ4EXEum
15wrdegb1p46OcmcSI1VV+S5HWE1rDHxaKlCeQ8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSHUkPRSerSnrTx0ezNneLHbOvrUTAfBgNVHSMEGDAWgBQiaJ0PkT0pzGPW
ySbLRiyyfxhECDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ltaWRENUU5S2N4ajFza215MFlzc244WVJBZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjQvMDQzZWVlLTMxOTktNGY4ZS1iMGE5LTRhZDg1MmExMmNkNi8x
L2gxSkQwVW5xMHA2MDhkSHN6WjNpeDJ6cjYxRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjQv
MDQzZWVlLTMxOTktNGY4ZS1iMGE5LTRhZDg1MmExMmNkNi8xL0ltaWRENUU5S2N4
ajFza215MFlzc244WVJBZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvqyDANBgkqhkiG9w0BAQsFAAOC
AQEAJMeMvH9PKWJAgCaR6MYzfevfbRxY+01gHVLRNFsmNLDFL24OHop4HE4U/6CH
muNJ8t9vDJzmXv51SkfhdXYbDaBW+l0Hj2iEMB6r/S82KvwHTxk68Fz6+J+E7DH4
fyynDuxkPi4RQtR8GPtr8jofaWgxhrAaZq1qD/VTsZ8jomjZTl/Cz9r+ZgwZc2tT
YyTeuUGFRXdKHQ8wzEpS8+KD8BkhwjzQbiRNiRpkGbOTMmCK1oSuWPn9yLsF/0PD
KeAUTo7pd7cjHDH87M7S4qYYnkLptHSJ/ByavSrbebOsYc1/o6e4C+UkE+iTUEjO
/36XpaXt8p37Qu59vIk4sij5sA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:37 2024 by rpki-client on console-fra.rpki-client.org