Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9825a0-1fdc-4162-8372-b9dbdc8b439c/1/OCk3UQaNJFJvpIX27bbDa88bWRw.roa
File: OCk3UQaNJFJvpIX27bbDa88bWRw.roa (raw, json)
Hash identifier: 1RqvgTeA7NwH7r0KIUwLk9xGOGWqpV46lh0P45Tc4A4=
Subject key identifier: 38:29:37:51:06:8D:24:52:6F:A4:85:F6:ED:B6:C3:6B:CF:1B:59:1C
Certificate issuer: /CN=16979d37da016abd13279270ba55d6b3c2960578
Certificate serial: 05049A61
Authority key identifier: 16:97:9D:37:DA:01:6A:BD:13:27:92:70:BA:55:D6:B3:C2:96:05:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FpedN9oBar0TJ5JwulXWs8KWBXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9825a0-1fdc-4162-8372-b9dbdc8b439c/1/OCk3UQaNJFJvpIX27bbDa88bWRw.roa
Signing time: Sat 01 Jan 2022 02:00:59 +0000
ROA not before: Sat 01 Jan 2022 02:00:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43906
IP address blocks: 91.198.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84187745 (0x5049a61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16979d37da016abd13279270ba55d6b3c2960578
Validity
Not Before: Jan 1 02:00:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38293751068d24526fa485f6edb6c36bcf1b591c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:8d:09:98:be:54:40:59:09:60:01:1a:79:
d6:8d:dc:21:c4:4d:c8:97:92:84:24:ef:4d:a1:0f:
6f:bc:70:9c:2a:54:4d:64:c9:fb:bb:1e:de:2a:3c:
84:17:c6:9d:98:52:1c:26:65:e5:bb:b6:d1:a8:da:
79:89:09:cf:a6:a5:a6:fa:57:11:b4:d5:15:89:a7:
f5:16:cf:74:f6:7e:ab:77:29:86:6d:7a:88:7c:5d:
6b:b4:cf:ab:8d:f6:51:17:e4:c4:e0:85:47:1c:01:
cd:f6:1c:e3:94:fd:d3:84:2e:75:34:1b:80:7f:a5:
a9:85:67:f2:b6:68:d3:3a:7b:8b:0e:1e:5f:34:6b:
f4:9e:8b:5a:4c:57:6d:7a:76:78:c5:df:f1:2b:11:
7c:d7:5d:c8:a8:3c:30:55:2c:fd:7f:54:82:84:64:
ab:a9:3e:38:6e:e4:17:de:c8:60:91:c7:77:c3:36:
f4:9b:d1:a2:d7:90:97:dd:1a:cc:90:84:2d:dc:d8:
20:0f:a4:bf:b9:d8:f8:c6:93:c4:5d:8a:ac:f7:23:
95:b9:ee:d0:6a:18:74:a5:be:c0:ac:01:30:66:92:
dd:6e:b6:38:6c:61:0f:75:aa:f9:0e:0b:b1:a0:5f:
d8:b9:c3:4d:39:cb:f7:81:8c:32:75:02:c3:a3:3d:
90:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:29:37:51:06:8D:24:52:6F:A4:85:F6:ED:B6:C3:6B:CF:1B:59:1C
X509v3 Authority Key Identifier:
keyid:16:97:9D:37:DA:01:6A:BD:13:27:92:70:BA:55:D6:B3:C2:96:05:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FpedN9oBar0TJ5JwulXWs8KWBXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9825a0-1fdc-4162-8372-b9dbdc8b439c/1/OCk3UQaNJFJvpIX27bbDa88bWRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9825a0-1fdc-4162-8372-b9dbdc8b439c/1/FpedN9oBar0TJ5JwulXWs8KWBXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.229.0/24
Signature Algorithm: sha256WithRSAEncryption
77:4a:92:e4:05:f0:18:9d:2a:a5:d3:88:a8:5d:42:22:1b:16:
0d:94:38:ad:bc:b2:e7:30:02:d4:0f:85:1e:fe:01:18:47:5b:
dc:73:09:72:e3:9a:b8:7f:55:c8:26:32:17:41:38:b4:a3:82:
b0:68:92:04:94:77:6b:2f:2f:85:92:82:8f:a4:0b:0f:16:a4:
85:f2:a7:c7:7d:35:38:71:db:75:5e:0f:1b:0b:5d:15:43:f2:
5b:a2:a1:a5:8c:cd:01:9d:92:07:9f:4b:36:ae:17:f9:79:31:
e4:de:45:ec:5e:23:56:96:57:eb:36:77:f0:6d:c3:8b:25:45:
5f:87:b4:8d:7d:fb:d1:8c:da:ee:45:e2:82:00:78:72:d9:c3:
ac:b3:7e:2f:bc:c2:04:bb:59:82:5b:da:23:fa:8c:4e:13:60:
cf:77:cd:77:bf:6d:a5:ed:88:1c:bd:63:27:f4:20:93:67:96:
e4:4b:72:90:71:ed:5c:16:af:81:82:fe:4f:2b:d4:f0:9e:2c:
65:86:98:3d:f5:c3:7f:8c:e1:6f:ef:14:f3:dd:91:55:8b:24:
fb:0e:06:13:a8:86:a9:75:37:a2:4d:64:24:35:6b:27:fb:04:
41:38:66:dc:f4:64:4f:ae:06:b6:1f:01:0c:14:7f:b7:b3:81:
3e:03:5c:47
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBQSaYTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
Njk3OWQzN2RhMDE2YWJkMTMyNzkyNzBiYTU1ZDZiM2MyOTYwNTc4MB4XDTIyMDEw
MTAyMDA1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzgyOTM3NTEwNjhk
MjQ1MjZmYTQ4NWY2ZWRiNmMzNmJjZjFiNTkxYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALC6jQmYvlRAWQlgARp51o3cIcRNyJeShCTvTaEPb7xwnCpU
TWTJ+7se3io8hBfGnZhSHCZl5bu20ajaeYkJz6alpvpXEbTVFYmn9RbPdPZ+q3cp
hm16iHxda7TPq432URfkxOCFRxwBzfYc45T904QudTQbgH+lqYVn8rZo0zp7iw4e
XzRr9J6LWkxXbXp2eMXf8SsRfNddyKg8MFUs/X9UgoRkq6k+OG7kF97IYJHHd8M2
9JvRoteQl90azJCELdzYIA+kv7nY+MaTxF2KrPcjlbnu0GoYdKW+wKwBMGaS3W62
OGxhD3Wq+Q4LsaBf2LnDTTnL94GMMnUCw6M9kHECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ4KTdRBo0kUm+khfbttsNrzxtZHDAfBgNVHSMEGDAWgBQWl5032gFqvRMn
knC6VdazwpYFeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0ZwZWROOW9CYXIwVEo1Snd1bFhXczhLV0JYZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjkvOTgyNWEwLTFmZGMtNDE2Mi04MzcyLWI5ZGJkYzhiNDM5Yy8x
L09DazNVUWFOSkZKdnBJWDI3YmJEYTg4YldSdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjkv
OTgyNWEwLTFmZGMtNDE2Mi04MzcyLWI5ZGJkYzhiNDM5Yy8xL0ZwZWROOW9CYXIw
VEo1Snd1bFhXczhLV0JYZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFvG5TANBgkqhkiG9w0BAQsFAAOC
AQEAd0qS5AXwGJ0qpdOIqF1CIhsWDZQ4rbyy5zAC1A+FHv4BGEdb3HMJcuOauH9V
yCYyF0E4tKOCsGiSBJR3ay8vhZKCj6QLDxakhfKnx301OHHbdV4PGwtdFUPyW6Kh
pYzNAZ2SB59LNq4X+Xkx5N5F7F4jVpZX6zZ38G3DiyVFX4e0jX370Yza7kXiggB4
ctnDrLN+L7zCBLtZglvaI/qMThNgz3fNd79tpe2IHL1jJ/Qgk2eW5EtykHHtXBav
gYL+TyvU8J4sZYaYPfXDf4zhb+8U892RVYsk+w4GE6iGqXU3ok1kJDVrJ/sEQThm
3PRkT64Gth8BDBR/t7OBPgNcRw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:21 2024 by rpki-client on console-fra.rpki-client.org