Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ccbf7a-ec38-44e6-b2eb-7187977e057e/1/oTqHI9_9gpvqMlSJ_6zlbBPeZgY.roa
File: oTqHI9_9gpvqMlSJ_6zlbBPeZgY.roa (raw, json)
Hash identifier: eF7m75g/xxIHg2hvz9T58+mxNkhDUyHn4gR3BnfvzD4=
Subject key identifier: A1:3A:87:23:DF:FD:82:9B:EA:32:54:89:FF:AC:E5:6C:13:DE:66:06
Certificate issuer: /CN=888c7b94642d2e4bbfb9583ad941f51eb8c45640
Certificate serial: 01648D27
Authority key identifier: 88:8C:7B:94:64:2D:2E:4B:BF:B9:58:3A:D9:41:F5:1E:B8:C4:56:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIx7lGQtLku_uVg62UH1HrjEVkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ccbf7a-ec38-44e6-b2eb-7187977e057e/1/oTqHI9_9gpvqMlSJ_6zlbBPeZgY.roa
Signing time: Sat 01 Jan 2022 06:53:40 +0000
ROA not before: Sat 01 Jan 2022 06:53:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197679
IP address blocks: 91.224.238.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23366951 (0x1648d27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888c7b94642d2e4bbfb9583ad941f51eb8c45640
Validity
Not Before: Jan 1 06:53:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a13a8723dffd829bea325489fface56c13de6606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:64:64:a2:89:f8:7e:b2:5b:1f:90:f0:26:ca:
0b:0a:ab:99:e9:fb:cd:b6:8f:f2:0f:16:9e:8b:b5:
a9:c0:2f:16:15:bc:92:a8:73:fb:69:95:1f:43:04:
6d:81:48:ec:a3:c8:92:14:8e:c2:d3:55:17:32:7f:
94:3e:bd:0f:01:75:c4:d6:1a:e3:c0:bf:32:a4:e5:
6f:00:d5:5b:f3:09:45:8e:a0:83:cb:2b:df:6b:5a:
9b:74:6a:b9:92:0b:a8:0c:5a:d0:20:a4:93:31:46:
4e:b4:c3:4b:f7:eb:27:13:7f:98:a0:de:25:bd:22:
5a:f2:52:79:34:8c:49:3e:c0:20:bc:53:11:06:ab:
71:31:c7:40:c7:55:a1:9b:e7:c1:f1:9e:2f:e1:e7:
1a:ac:13:b3:26:ca:88:3c:d8:d1:fb:4d:51:74:60:
4f:f0:0a:77:43:1f:bc:b9:5c:ce:e7:9a:0b:20:dd:
24:b4:ec:5e:cd:77:e6:3e:1e:f4:ba:bc:eb:54:f7:
f2:47:03:57:12:8f:0f:de:5a:37:ad:6a:7d:af:db:
e3:dd:03:8b:f4:a5:39:8e:69:ea:9f:33:30:de:58:
e0:ac:5a:a4:fb:d1:c2:80:b7:82:bb:95:d2:3b:c2:
84:9f:9a:b0:8d:15:fb:a3:df:89:b3:ca:7f:84:6c:
36:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:3A:87:23:DF:FD:82:9B:EA:32:54:89:FF:AC:E5:6C:13:DE:66:06
X509v3 Authority Key Identifier:
keyid:88:8C:7B:94:64:2D:2E:4B:BF:B9:58:3A:D9:41:F5:1E:B8:C4:56:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIx7lGQtLku_uVg62UH1HrjEVkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ccbf7a-ec38-44e6-b2eb-7187977e057e/1/oTqHI9_9gpvqMlSJ_6zlbBPeZgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ccbf7a-ec38-44e6-b2eb-7187977e057e/1/iIx7lGQtLku_uVg62UH1HrjEVkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.238.0/23
Signature Algorithm: sha256WithRSAEncryption
de:c8:47:e5:87:81:25:07:2a:f8:a6:f3:d9:5a:bc:4a:97:69:
bf:d4:47:e6:26:a5:7e:75:a0:42:99:df:f5:56:23:01:9f:75:
0a:d1:48:60:5a:a6:81:5b:f0:e4:49:ad:31:36:ba:75:21:77:
ad:db:93:47:55:b4:ff:42:b8:0b:70:b6:2a:ca:ef:50:0d:52:
5e:ac:05:b3:c2:83:2f:7f:43:09:c2:72:92:06:00:b0:b5:5a:
6b:00:69:02:7a:b9:17:02:9d:22:6f:99:a1:12:9d:5f:a0:34:
a3:24:00:2f:1a:a0:94:d4:fb:73:17:b3:90:79:d7:43:dc:a2:
36:f4:f3:ba:18:c5:76:4c:d4:4d:ab:a7:2b:1e:74:a0:9b:2f:
d0:66:13:9c:7b:1f:c6:e8:27:69:ea:e1:c3:15:ae:cd:ed:04:
9c:6a:07:06:2d:da:03:fb:77:7c:42:32:5c:0f:7e:95:7b:a6:
3c:d9:8e:84:47:ff:82:ce:fb:ad:0b:f2:5c:1d:67:55:b5:b1:
19:06:35:bf:d1:6b:90:17:9c:7e:a5:25:3d:a8:b1:a2:4c:7a:
3f:67:51:83:68:c7:4c:e7:d9:f5:99:28:3e:f1:5a:67:37:ec:
f0:e4:8a:4b:a2:de:9c:76:3f:b7:8a:5d:d4:2b:0d:fc:7a:45:
20:36:55:34
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAWSNJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ODhjN2I5NDY0MmQyZTRiYmZiOTU4M2FkOTQxZjUxZWI4YzQ1NjQwMB4XDTIyMDEw
MTA2NTM0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTEzYTg3MjNkZmZk
ODI5YmVhMzI1NDg5ZmZhY2U1NmMxM2RlNjYwNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL5kZKKJ+H6yWx+Q8CbKCwqrmen7zbaP8g8Wnou1qcAvFhW8
kqhz+2mVH0MEbYFI7KPIkhSOwtNVFzJ/lD69DwF1xNYa48C/MqTlbwDVW/MJRY6g
g8sr32tam3RquZILqAxa0CCkkzFGTrTDS/frJxN/mKDeJb0iWvJSeTSMST7AILxT
EQarcTHHQMdVoZvnwfGeL+HnGqwTsybKiDzY0ftNUXRgT/AKd0MfvLlczueaCyDd
JLTsXs135j4e9Lq861T38kcDVxKPD95aN61qfa/b490Di/SlOY5p6p8zMN5Y4Kxa
pPvRwoC3gruV0jvChJ+asI0V+6PfibPKf4RsNiMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBShOocj3/2Cm+oyVIn/rOVsE95mBjAfBgNVHSMEGDAWgBSIjHuUZC0uS7+5
WDrZQfUeuMRWQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lJeDdsR1F0TGt1X3VWZzYyVUgxSHJqRVZrQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjUvY2NiZjdhLWVjMzgtNDRlNi1iMmViLTcxODc5NzdlMDU3ZS8x
L29UcUhJOV85Z3B2cU1sU0pfNnpsYkJQZVpnWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUv
Y2NiZjdhLWVjMzgtNDRlNi1iMmViLTcxODc5NzdlMDU3ZS8xL2lJeDdsR1F0TGt1
X3VWZzYyVUgxSHJqRVZrQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAVvg7jANBgkqhkiG9w0BAQsFAAOC
AQEA3shH5YeBJQcq+Kbz2Vq8Spdpv9RH5ialfnWgQpnf9VYjAZ91CtFIYFqmgVvw
5EmtMTa6dSF3rduTR1W0/0K4C3C2KsrvUA1SXqwFs8KDL39DCcJykgYAsLVaawBp
Anq5FwKdIm+ZoRKdX6A0oyQALxqglNT7cxezkHnXQ9yiNvTzuhjFdkzUTaunKx50
oJsv0GYTnHsfxugnaerhwxWuze0EnGoHBi3aA/t3fEIyXA9+lXumPNmOhEf/gs77
rQvyXB1nVbWxGQY1v9FrkBecfqUlPaixokx6P2dRg2jHTOfZ9ZkoPvFaZzfs8OSK
S6LenHY/t4pd1CsN/HpFIDZVNA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:27 2023 by rpki-client on console.sobornost.net