Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/aI4wIntBfKNIVTenO3Kx4_CrnN4.roa
File: aI4wIntBfKNIVTenO3Kx4_CrnN4.roa (raw, json)
Hash identifier: RQ1VjOsUes+0C843H3CWxB6UmQZfiiQ+ZrL8UW5NOoM=
Subject key identifier: 68:8E:30:22:7B:41:7C:A3:48:55:37:A7:3B:72:B1:E3:F0:AB:9C:DE
Certificate issuer: /CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Certificate serial: 03B6AA5D
Authority key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/aI4wIntBfKNIVTenO3Kx4_CrnN4.roa
Signing time: Sat 01 Jan 2022 02:00:37 +0000
ROA not before: Sat 01 Jan 2022 02:00:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49639
IP address blocks: 91.213.61.0/24 maxlen: 24
2001:67c:52c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62302813 (0x3b6aa5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a
Validity
Not Before: Jan 1 02:00:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=688e30227b417ca3485537a73b72b1e3f0ab9cde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ed:fa:17:6d:d5:56:f0:ec:33:a8:4b:24:60:
84:a4:69:05:5b:ea:b4:b2:e6:e8:ca:41:b1:86:c7:
ca:1a:76:72:df:5d:f2:df:9e:5c:ca:e1:cb:f9:82:
d0:20:65:60:ac:5a:83:4d:1b:8f:cb:6a:3c:78:72:
49:c1:87:2c:18:88:7a:ac:ac:6c:0a:7c:1d:05:82:
c7:ca:7e:10:1b:ee:bf:79:30:2e:7e:e4:b7:3d:71:
ea:ab:b6:38:18:7c:b5:ec:f7:f3:1c:5e:ae:dc:62:
f6:82:5c:d4:8e:82:72:19:88:fe:1d:55:44:ec:13:
14:21:e4:f4:14:2e:ac:59:f3:5f:4d:aa:6b:fa:cc:
f3:02:a1:c4:0c:c4:ab:1d:60:e2:a1:47:b1:d0:a8:
22:e9:18:7a:a2:03:7a:02:94:90:91:bc:02:8a:11:
b4:e7:3e:d1:e9:56:a0:82:da:3a:a2:39:45:4c:ee:
c1:26:c8:09:74:80:46:bf:92:0f:ae:dd:95:9b:06:
a0:19:28:0d:b0:fc:ec:a0:e4:7f:fb:df:88:e8:3d:
c6:88:8a:fa:88:a6:82:99:d4:05:10:8b:e0:70:b2:
0c:d1:fd:a0:5d:72:f2:8f:fa:39:66:c8:c1:1d:e4:
21:1a:8e:7a:44:aa:74:b2:b2:22:38:a6:f0:51:5a:
55:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:8E:30:22:7B:41:7C:A3:48:55:37:A7:3B:72:B1:E3:F0:AB:9C:DE
X509v3 Authority Key Identifier:
keyid:D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/aI4wIntBfKNIVTenO3Kx4_CrnN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.61.0/24
IPv6:
2001:67c:52c::/48
Signature Algorithm: sha256WithRSAEncryption
60:97:10:97:2a:0a:cf:89:4f:e4:13:80:a2:89:a5:31:b1:03:
67:50:27:4b:70:2b:e2:1d:5a:eb:62:99:dc:f9:c4:3d:35:60:
a3:8e:9b:fa:a9:26:61:56:18:de:b7:76:71:60:dd:44:55:0c:
d2:d4:99:a6:fa:52:08:9a:66:11:2a:5c:15:8f:ea:96:21:22:
ed:dd:5f:4c:ad:6c:05:1f:ef:40:09:73:b2:b0:80:9d:dc:27:
60:81:bd:57:c8:5d:a0:91:06:41:91:2b:b8:59:80:e7:54:af:
1f:1e:97:e2:e4:13:84:0d:a9:b5:fd:8f:f8:99:63:76:b5:9a:
32:9f:64:98:9e:c2:da:44:2d:7e:01:54:76:31:f9:a8:18:be:
4a:c5:a2:39:03:fb:84:f1:82:99:2a:9e:ee:5a:0a:af:38:2f:
59:aa:c1:58:10:c4:ad:69:a3:c6:81:7b:cb:4e:05:5f:5a:08:
50:8c:a5:33:02:1c:e5:7f:51:d1:15:49:f8:cd:74:a6:17:15:
46:6f:92:19:e6:5b:28:60:68:77:cc:af:d8:c7:54:16:3f:21:
1a:07:b3:b2:ea:c4:a6:cc:62:21:06:71:1f:bd:68:4d:a5:9b:
ad:b2:22:1e:8f:50:41:61:48:c0:76:5e:6c:b4:53:17:bc:e7:
13:fe:7c:f9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEA7aqXTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ODcxOTk4YWExNDBhYjdjMWZmMjQwZWFiMGM5MjM1OTEzYzk2ZThhMB4XDTIyMDEw
MTAyMDAzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjg4ZTMwMjI3YjQx
N2NhMzQ4NTUzN2E3M2I3MmIxZTNmMGFiOWNkZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIrt+hdt1Vbw7DOoSyRghKRpBVvqtLLm6MpBsYbHyhp2ct9d
8t+eXMrhy/mC0CBlYKxag00bj8tqPHhyScGHLBiIeqysbAp8HQWCx8p+EBvuv3kw
Ln7ktz1x6qu2OBh8tez38xxertxi9oJc1I6CchmI/h1VROwTFCHk9BQurFnzX02q
a/rM8wKhxAzEqx1g4qFHsdCoIukYeqIDegKUkJG8AooRtOc+0elWoILaOqI5RUzu
wSbICXSARr+SD67dlZsGoBkoDbD87KDkf/vfiOg9xoiK+oimgpnUBRCL4HCyDNH9
oF1y8o/6OWbIwR3kIRqOekSqdLKyIjim8FFaVTUCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBRojjAie0F8o0hVN6c7crHj8Kuc3jAfBgNVHSMEGDAWgBTYcZmKoUCrfB/y
QOqwySNZE8luijAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJIR1ppcUZBcTN3ZjhrRHFzTWtqV1JQSmJvby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjYvMzNhYTI0LTM1ZWEtNGFkYy04YzA1LTVhMzRlNTJiMGIxMC8x
L2FJNHdJbnRCZktOSVZUZW5PM0t4NF9Dcm5ONC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYv
MzNhYTI0LTM1ZWEtNGFkYy04YzA1LTVhMzRlNTJiMGIxMC8xLzJIR1ppcUZBcTN3
ZjhrRHFzTWtqV1JQSmJvby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAFvVPTAPBAIAAjAJAwcAIAEGfAUs
MA0GCSqGSIb3DQEBCwUAA4IBAQBglxCXKgrPiU/kE4CiiaUxsQNnUCdLcCviHVrr
Ypnc+cQ9NWCjjpv6qSZhVhjet3ZxYN1EVQzS1Jmm+lIImmYRKlwVj+qWISLt3V9M
rWwFH+9ACXOysICd3Cdggb1XyF2gkQZBkSu4WYDnVK8fHpfi5BOEDam1/Y/4mWN2
tZoyn2SYnsLaRC1+AVR2MfmoGL5KxaI5A/uE8YKZKp7uWgqvOC9ZqsFYEMStaaPG
gXvLTgVfWghQjKUzAhzlf1HRFUn4zXSmFxVGb5IZ5lsoYGh3zK/Yx1QWPyEaB7Oy
6sSmzGIhBnEfvWhNpZutsiIej1BBYUjAdl5stFMXvOcT/nz5
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-fra.rpki-client.org