Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/704167-b637-4982-98ab-d2c7ceebb93f/1/R0r_xxsKGsEqCCm4B7QJmkv5pPQ.roa
File: R0r_xxsKGsEqCCm4B7QJmkv5pPQ.roa (raw, json)
Hash identifier: j4mFbBN5XgAWq5/htSs2ZL9tlLGg7AalSzIQCPdnmao=
Subject key identifier: 47:4A:FF:C7:1B:0A:1A:C1:2A:08:29:B8:07:B4:09:9A:4B:F9:A4:F4
Certificate issuer: /CN=e216f835baab99ea797ce89aa40fa1266bc013fb
Certificate serial: 9C1541
Authority key identifier: E2:16:F8:35:BA:AB:99:EA:79:7C:E8:9A:A4:0F:A1:26:6B:C0:13:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4hb4Nbqrmep5fOiapA-hJmvAE_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/704167-b637-4982-98ab-d2c7ceebb93f/1/R0r_xxsKGsEqCCm4B7QJmkv5pPQ.roa
Signing time: Sat 01 Jan 2022 03:51:59 +0000
ROA not before: Sat 01 Jan 2022 03:51:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 91.247.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10229057 (0x9c1541)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e216f835baab99ea797ce89aa40fa1266bc013fb
Validity
Not Before: Jan 1 03:51:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=474affc71b0a1ac12a0829b807b4099a4bf9a4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e8:a9:be:b9:72:96:f7:e1:94:a5:6f:ca:0f:
0e:cc:10:98:fb:55:c2:f6:97:a9:8e:8f:45:da:5f:
5a:17:ee:56:79:66:86:a4:e4:b2:bc:06:19:39:09:
c6:b5:c8:98:75:77:8f:af:d7:3d:41:47:6f:10:89:
87:6d:77:3b:96:60:fc:c7:4f:53:06:90:a1:2f:60:
7c:74:7d:56:c5:e6:d1:35:c6:99:9b:e7:cb:de:a7:
c9:46:19:68:68:84:bc:2a:88:32:1d:5f:c7:94:73:
9d:58:bf:59:ea:24:62:76:fa:d1:ce:a9:bf:05:dd:
5f:8f:7d:63:6c:2c:66:bf:21:8f:ef:25:3c:d5:3f:
e7:da:08:13:80:f5:b3:98:e2:fe:34:0e:4a:b8:52:
ae:b6:7c:db:7d:1a:0f:02:80:54:ad:89:3f:7f:d7:
cf:f3:1e:86:fe:cb:29:ca:f6:51:85:ed:d3:90:91:
55:04:d6:58:2b:74:71:c8:ce:fa:82:f9:01:66:60:
a9:3c:de:2b:9e:f5:c7:25:a0:d1:4a:6b:24:a9:6a:
18:07:f1:90:8f:dc:e4:fc:3b:43:0d:d3:33:01:01:
e2:51:cc:98:5c:76:79:51:c5:42:38:c7:29:08:bf:
ac:dc:2a:b2:8b:8a:90:97:d6:45:92:47:ed:10:e6:
05:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:4A:FF:C7:1B:0A:1A:C1:2A:08:29:B8:07:B4:09:9A:4B:F9:A4:F4
X509v3 Authority Key Identifier:
keyid:E2:16:F8:35:BA:AB:99:EA:79:7C:E8:9A:A4:0F:A1:26:6B:C0:13:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4hb4Nbqrmep5fOiapA-hJmvAE_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/704167-b637-4982-98ab-d2c7ceebb93f/1/R0r_xxsKGsEqCCm4B7QJmkv5pPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/704167-b637-4982-98ab-d2c7ceebb93f/1/4hb4Nbqrmep5fOiapA-hJmvAE_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.170.0/24
Signature Algorithm: sha256WithRSAEncryption
59:29:1b:4d:b7:91:29:9b:72:43:83:85:48:4e:42:58:00:a1:
ef:18:f8:1e:4c:7a:4c:89:2a:75:3f:8c:29:2f:9f:0a:a7:0d:
b8:67:b1:ab:aa:74:9b:29:5f:05:43:ec:5a:69:f8:b2:e2:d6:
b9:0b:cb:6b:cb:65:42:69:33:99:65:85:21:73:26:30:44:12:
73:37:35:53:a8:c2:53:f4:4a:f1:bf:53:76:80:77:88:3a:44:
46:c5:03:48:ec:7a:8b:b7:f1:80:6b:2d:58:bf:a7:85:c2:6b:
26:b9:8f:be:15:3e:49:f9:54:45:a8:0f:87:d4:a7:a4:c5:a2:
40:c2:f6:0f:1e:14:46:29:7e:11:b2:8e:eb:5d:f1:cf:4f:ec:
92:f0:a3:d7:a8:c0:2b:de:28:a6:1a:a2:a0:ed:b8:3a:82:77:
eb:8f:94:df:3d:bb:ba:5c:b4:c6:7c:2b:3b:52:d4:92:8e:53:
b1:9a:5d:49:4e:60:ac:64:e3:6d:bb:10:15:42:53:f6:28:5a:
52:3e:84:2c:20:e6:2f:84:8e:a2:41:3f:a6:f2:be:ae:a6:4e:
c3:8b:df:69:7a:90:d3:41:1c:64:3e:38:45:4d:3c:ad:af:3f:
b2:1d:a8:bc:59:ca:57:bf:4a:a4:41:22:53:f7:60:21:d2:55:
5b:25:c1:79
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJwVQTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MjE2ZjgzNWJhYWI5OWVhNzk3Y2U4OWFhNDBmYTEyNjZiYzAxM2ZiMB4XDTIyMDEw
MTAzNTE1OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDc0YWZmYzcxYjBh
MWFjMTJhMDgyOWI4MDdiNDA5OWE0YmY5YTRmNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPToqb65cpb34ZSlb8oPDswQmPtVwvaXqY6PRdpfWhfuVnlm
hqTksrwGGTkJxrXImHV3j6/XPUFHbxCJh213O5Zg/MdPUwaQoS9gfHR9VsXm0TXG
mZvny96nyUYZaGiEvCqIMh1fx5RznVi/WeokYnb60c6pvwXdX499Y2wsZr8hj+8l
PNU/59oIE4D1s5ji/jQOSrhSrrZ8230aDwKAVK2JP3/Xz/Mehv7LKcr2UYXt05CR
VQTWWCt0ccjO+oL5AWZgqTzeK571xyWg0UprJKlqGAfxkI/c5Pw7Qw3TMwEB4lHM
mFx2eVHFQjjHKQi/rNwqsouKkJfWRZJH7RDmBZMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHSv/HGwoawSoIKbgHtAmaS/mk9DAfBgNVHSMEGDAWgBTiFvg1uquZ6nl8
6JqkD6Ema8AT+zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRoYjROYnFybWVwNWZPaWFwQS1oSm12QUVfcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZmUvNzA0MTY3LWI2MzctNDk4Mi05OGFiLWQyYzdjZWViYjkzZi8x
L1Iwcl94eHNLR3NFcUNDbTRCN1FKbWt2NXBQUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmUv
NzA0MTY3LWI2MzctNDk4Mi05OGFiLWQyYzdjZWViYjkzZi8xLzRoYjROYnFybWVw
NWZPaWFwQS1oSm12QUVfcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFv3qjANBgkqhkiG9w0BAQsFAAOC
AQEAWSkbTbeRKZtyQ4OFSE5CWACh7xj4Hkx6TIkqdT+MKS+fCqcNuGexq6p0mylf
BUPsWmn4suLWuQvLa8tlQmkzmWWFIXMmMEQSczc1U6jCU/RK8b9TdoB3iDpERsUD
SOx6i7fxgGstWL+nhcJrJrmPvhU+SflURagPh9SnpMWiQML2Dx4URil+EbKO613x
z0/skvCj16jAK94ophqioO24OoJ364+U3z27uly0xnwrO1LUko5TsZpdSU5grGTj
bbsQFUJT9ihaUj6ELCDmL4SOokE/pvK+rqZOw4vfaXqQ00EcZD44RU08ra8/sh2o
vFnKV79KpEEiU/dgIdJVWyXBeQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:51 2023 by rpki-client on console-ams.rpki-client.org