Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/26641a-b4f9-4fba-867d-f7f36457874e/1/RXKg4McRO1u7R__818IFO8W9rAc.roa
File: RXKg4McRO1u7R__818IFO8W9rAc.roa (raw, json)
Hash identifier: L/TG8fp4tB3NV737G3CSSlEQJNMjHRzyiututL2kI7Q=
Subject key identifier: 45:72:A0:E0:C7:11:3B:5B:BB:47:FF:FC:D7:C2:05:3B:C5:BD:AC:07
Certificate issuer: /CN=594b79990f616a8344c860148fc922910e154dad
Certificate serial: 018572B3FA807CB206EF14EFEB22A9ADD3D3
Authority key identifier: 59:4B:79:99:0F:61:6A:83:44:C8:60:14:8F:C9:22:91:0E:15:4D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WUt5mQ9haoNEyGAUj8kikQ4VTa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/26641a-b4f9-4fba-867d-f7f36457874e/1/RXKg4McRO1u7R__818IFO8W9rAc.roa
Signing time: Mon 02 Jan 2023 13:37:55 +0000
ROA not before: Mon 02 Jan 2023 13:37:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 91.213.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b3:fa:80:7c:b2:06:ef:14:ef:eb:22:a9:ad:d3:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=594b79990f616a8344c860148fc922910e154dad
Validity
Not Before: Jan 2 13:37:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4572a0e0c7113b5bbb47fffcd7c2053bc5bdac07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:31:c6:3a:ee:18:67:30:9b:c4:ed:e5:c4:c3:
c7:5f:aa:07:76:f1:81:73:53:5b:47:0b:aa:a7:27:
c9:d8:0b:64:f2:a6:df:4f:d3:8b:88:68:c7:3a:26:
a4:c3:99:f2:b1:54:68:59:c3:a5:89:ef:fa:f3:81:
44:a4:ca:7a:b2:c7:85:d9:a3:5d:ca:0f:29:7c:4f:
27:10:20:e2:ef:70:bc:4c:f9:4a:da:dc:51:82:26:
fd:fa:2f:f9:41:7a:1b:59:08:49:35:eb:1a:c7:33:
85:97:e8:75:3c:ea:89:f5:56:a8:05:75:83:8c:13:
33:47:0b:60:36:b5:39:5c:bc:f7:d9:e7:ef:0d:71:
ed:7e:5b:1e:18:75:9d:a4:f4:31:4b:97:a7:8b:21:
7b:5c:09:9e:4e:ad:22:3b:53:db:74:63:52:68:f8:
7f:dc:fa:18:e0:94:d9:ea:fd:87:d8:b5:e4:e4:87:
14:9a:ac:ed:c0:97:99:37:50:0e:13:14:bc:c5:92:
22:9e:7f:a7:f5:50:ab:be:a2:9b:80:c7:7f:65:35:
3a:eb:85:4e:90:0e:1a:6e:47:41:47:0e:7e:ab:26:
73:51:09:6d:68:70:49:c1:bc:96:38:06:54:d7:17:
ae:4f:cd:f4:f7:08:14:bc:05:c4:13:3c:58:0b:39:
70:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:72:A0:E0:C7:11:3B:5B:BB:47:FF:FC:D7:C2:05:3B:C5:BD:AC:07
X509v3 Authority Key Identifier:
keyid:59:4B:79:99:0F:61:6A:83:44:C8:60:14:8F:C9:22:91:0E:15:4D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WUt5mQ9haoNEyGAUj8kikQ4VTa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/26641a-b4f9-4fba-867d-f7f36457874e/1/RXKg4McRO1u7R__818IFO8W9rAc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/26641a-b4f9-4fba-867d-f7f36457874e/1/WUt5mQ9haoNEyGAUj8kikQ4VTa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.65.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:51:3b:58:13:8f:17:fe:fe:73:47:49:95:5c:25:05:10:15:
30:4b:44:e3:fa:cc:e9:66:a5:4f:1e:6e:31:12:63:28:e6:2f:
2f:e0:49:fd:ae:d0:28:70:21:80:ad:09:23:68:c5:8f:14:55:
b2:8c:e5:94:5c:c5:17:ef:f7:3c:8f:41:58:ac:75:49:da:2b:
93:06:f9:15:b2:bc:1a:d7:0e:a3:26:f9:ec:9d:72:0b:d5:a3:
f9:7f:64:8d:6d:eb:d0:74:b3:a2:f8:aa:bd:37:ab:8a:eb:62:
ca:98:81:77:ad:31:64:5e:4a:98:ff:7f:bf:76:96:1e:b4:b8:
85:d2:68:95:15:f5:16:2b:6c:4c:3b:c7:d6:b5:b9:5e:86:d9:
d9:91:a6:8e:0e:2a:c1:a5:ff:4a:43:e4:93:00:b7:15:6d:55:
0b:ab:0e:d5:2c:10:ca:1b:23:e8:ed:fa:95:89:d7:0a:0e:f9:
d7:83:de:a3:b2:26:77:a5:9c:3a:77:51:91:a2:15:ea:75:25:
5a:6f:0d:5b:51:33:e6:60:e9:c0:31:75:bf:ca:61:8b:8a:03:
b9:50:24:aa:e6:85:8f:ca:ac:c1:65:49:d5:1b:28:59:50:87:
89:d4:9e:bf:25:1c:c6:8a:c4:0f:bb:b7:5f:aa:1b:65:65:3c:
01:3c:7e:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVys/qAfLIG7xTv6yKprdPTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5NGI3OTk5MGY2MTZhODM0NGM4NjAxNDhmYzkyMjkxMGUx
NTRkYWQwHhcNMjMwMTAyMTMzNzU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTcyYTBlMGM3MTEzYjViYmI0N2ZmZmNkN2MyMDUzYmM1YmRhYzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTHGOu4YZzCbxO3lxMPHX6oHdvGB
c1NbRwuqpyfJ2Atk8qbfT9OLiGjHOiakw5nysVRoWcOlie/684FEpMp6sseF2aNd
yg8pfE8nECDi73C8TPlK2txRgib9+i/5QXobWQhJNesaxzOFl+h1POqJ9VaoBXWD
jBMzRwtgNrU5XLz32efvDXHtflseGHWdpPQxS5eniyF7XAmeTq0iO1PbdGNSaPh/
3PoY4JTZ6v2H2LXk5IcUmqztwJeZN1AOExS8xZIinn+n9VCrvqKbgMd/ZTU664VO
kA4abkdBRw5+qyZzUQltaHBJwbyWOAZU1xeuT8309wgUvAXEEzxYCzlwNwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEVyoODHETtbu0f//NfCBTvFvawHMB8GA1UdIwQY
MBaAFFlLeZkPYWqDRMhgFI/JIpEOFU2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV1V0NW1ROWhhb05FeUdBVWo4a2lrUTRWVGEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi8yNjY0MWEtYjRmOS00ZmJhLTg2N2Qt
ZjdmMzY0NTc4NzRlLzEvUlhLZzRNY1JPMXU3Ul9fODE4SUZPOFc5ckFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi8yNjY0MWEtYjRmOS00ZmJhLTg2N2QtZjdmMzY0NTc4NzRl
LzEvV1V0NW1ROWhhb05FeUdBVWo4a2lrUTRWVGEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9VBMA0G
CSqGSIb3DQEBCwUAA4IBAQCaUTtYE48X/v5zR0mVXCUFEBUwS0Tj+szpZqVPHm4x
EmMo5i8v4En9rtAocCGArQkjaMWPFFWyjOWUXMUX7/c8j0FYrHVJ2iuTBvkVsrwa
1w6jJvnsnXIL1aP5f2SNbevQdLOi+Kq9N6uK62LKmIF3rTFkXkqY/3+/dpYetLiF
0miVFfUWK2xMO8fWtblehtnZkaaODirBpf9KQ+STALcVbVULqw7VLBDKGyPo7fqV
idcKDvnXg96jsiZ3pZw6d1GRohXqdSVabw1bUTPmYOnAMXW/ymGLigO5UCSq5oWP
yqzBZUnVGyhZUIeJ1J6/JRzGisQPu7dfqhtlZTwBPH4r
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:06 2025 by rpki-client