Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e26cea-f660-48a3-862f-90501abf5391/1/2de2AlPdgIFIHaBBz24V3-Ic_Qo.roa
File: 2de2AlPdgIFIHaBBz24V3-Ic_Qo.roa (raw, json)
Hash identifier: EDSKez9jUR+Rkk8Gtv4DnfC+9syz3SlZY8Ls2T/HxKw=
Subject key identifier: D9:D7:B6:02:53:DD:80:81:48:1D:A0:41:CF:6E:15:DF:E2:1C:FD:0A
Certificate issuer: /CN=fb01ffd7da5ee450fcb1a656abfc6e0b1b21c365
Certificate serial: 039752FF
Authority key identifier: FB:01:FF:D7:DA:5E:E4:50:FC:B1:A6:56:AB:FC:6E:0B:1B:21:C3:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wH_19pe5FD8saZWq_xuCxshw2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e26cea-f660-48a3-862f-90501abf5391/1/2de2AlPdgIFIHaBBz24V3-Ic_Qo.roa
Signing time: Sat 01 Jan 2022 07:01:50 +0000
ROA not before: Sat 01 Jan 2022 07:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207027
IP address blocks: 91.227.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60248831 (0x39752ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb01ffd7da5ee450fcb1a656abfc6e0b1b21c365
Validity
Not Before: Jan 1 07:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9d7b60253dd8081481da041cf6e15dfe21cfd0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ff:ec:58:f3:36:d5:48:c6:37:fb:56:db:25:
d0:e4:7c:72:1f:25:38:d2:8d:b1:13:61:ac:3c:97:
37:d8:74:b8:8f:01:b7:07:55:b1:72:75:a6:4a:eb:
72:21:ce:5b:09:c2:86:92:1b:3b:42:d6:72:79:6c:
db:2c:1e:ed:1b:34:23:86:06:11:83:e0:45:0a:06:
2c:46:06:de:fb:74:42:32:a0:a1:8a:b4:bd:ae:78:
46:d9:10:c2:f2:98:48:54:1c:74:6f:63:4a:b8:96:
a8:de:c2:70:d4:53:1b:b4:49:08:e9:17:79:93:61:
09:7e:d7:ab:ab:79:b8:23:26:ca:c5:41:10:5a:d1:
48:1f:13:db:fe:27:5e:a7:69:48:c4:3e:17:73:b9:
b6:92:67:f8:b2:0b:06:09:59:56:7f:c9:1c:2e:3a:
6a:0e:a0:6d:d2:1c:ab:2c:7e:2f:47:d0:7b:49:3f:
45:c3:52:ed:8a:ae:05:c4:f5:15:13:1e:eb:75:9a:
62:e0:a5:13:9b:f1:f4:38:dd:94:0e:a4:13:34:3c:
69:6c:c0:49:84:b6:e7:01:eb:34:85:13:16:58:c9:
ff:1a:7f:91:2e:4d:c5:9f:1c:95:32:3f:af:c4:6b:
bd:de:60:80:38:bc:aa:0a:57:15:13:b1:e3:93:4a:
f4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D7:B6:02:53:DD:80:81:48:1D:A0:41:CF:6E:15:DF:E2:1C:FD:0A
X509v3 Authority Key Identifier:
keyid:FB:01:FF:D7:DA:5E:E4:50:FC:B1:A6:56:AB:FC:6E:0B:1B:21:C3:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wH_19pe5FD8saZWq_xuCxshw2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e26cea-f660-48a3-862f-90501abf5391/1/2de2AlPdgIFIHaBBz24V3-Ic_Qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e26cea-f660-48a3-862f-90501abf5391/1/1-wH_19pe5FD8saZWq_xuCxshw2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.16.0/22
Signature Algorithm: sha256WithRSAEncryption
81:39:2d:d5:a1:f9:bc:37:04:15:d1:18:7f:4e:02:e0:08:f1:
64:38:bb:06:a8:73:ff:23:a4:ac:93:8f:a9:84:ab:5a:a5:cf:
ef:a0:70:4e:2a:4b:87:d8:c9:e7:1b:17:8f:5f:6e:0d:ba:ec:
cf:3a:cb:86:81:ed:df:08:09:56:9f:6d:5b:92:6c:0c:f4:df:
8d:30:11:2e:78:05:7a:7e:4f:52:d5:51:f2:c1:ef:f0:f1:bb:
5c:7d:ed:06:83:f7:a4:64:3f:aa:ea:a2:5a:cf:03:bf:13:4e:
2b:df:8e:0e:f4:85:5d:99:9e:5f:ef:90:43:68:11:85:35:63:
c1:be:5b:1e:65:06:10:6d:1e:7a:63:08:c9:ba:43:0f:f1:78:
ff:dc:6a:67:14:02:71:47:b1:b9:08:6f:df:a0:c5:6c:7a:0d:
7a:09:32:8e:ba:7b:62:a8:43:60:02:b9:d8:03:b8:34:d6:a6:
5b:47:b7:09:66:39:83:33:b3:92:5e:65:06:c5:5d:cd:f6:c8:
d7:78:82:91:e7:62:a8:45:c8:09:45:1d:54:c2:19:17:e4:7a:
94:6e:c8:2a:ef:aa:65:7c:f5:83:54:34:f7:07:36:5f:86:5b:
0b:29:90:c0:57:cb:1a:51:62:2c:6c:1e:30:19:ce:b3:e4:c4:
6c:9f:74:7c
-----BEGIN CERTIFICATE-----
MIIE8TCCA9mgAwIBAgIEA5dS/zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
YjAxZmZkN2RhNWVlNDUwZmNiMWE2NTZhYmZjNmUwYjFiMjFjMzY1MB4XDTIyMDEw
MTA3MDE1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDlkN2I2MDI1M2Rk
ODA4MTQ4MWRhMDQxY2Y2ZTE1ZGZlMjFjZmQwYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANv/7FjzNtVIxjf7Vtsl0OR8ch8lONKNsRNhrDyXN9h0uI8B
twdVsXJ1pkrrciHOWwnChpIbO0LWcnls2ywe7Rs0I4YGEYPgRQoGLEYG3vt0QjKg
oYq0va54RtkQwvKYSFQcdG9jSriWqN7CcNRTG7RJCOkXeZNhCX7Xq6t5uCMmysVB
EFrRSB8T2/4nXqdpSMQ+F3O5tpJn+LILBglZVn/JHC46ag6gbdIcqyx+L0fQe0k/
RcNS7YquBcT1FRMe63WaYuClE5vx9DjdlA6kEzQ8aWzASYS25wHrNIUTFljJ/xp/
kS5NxZ8clTI/r8Rrvd5ggDi8qgpXFROx45NK9LUCAwEAAaOCAgswggIHMB0GA1Ud
DgQWBBTZ17YCU92AgUgdoEHPbhXf4hz9CjAfBgNVHSMEGDAWgBT7Af/X2l7kUPyx
plar/G4LGyHDZTAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtd0hfMTlwZTVGRDhzYVpXcV94dUN4c2h3MlUuY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzI5L2UyNmNlYS1mNjYwLTQ4YTMtODYyZi05MDUwMWFiZjUzOTEv
MS8yZGUyQWxQZGdJRklIYUJCejI0VjMtSWNfUW8ucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI5
L2UyNmNlYS1mNjYwLTQ4YTMtODYyZi05MDUwMWFiZjUzOTEvMS8xLXdIXzE5cGU1
RkQ4c2FaV3FfeHVDeHNodzJVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW+MQMA0GCSqGSIb3DQEBCwUA
A4IBAQCBOS3Vofm8NwQV0Rh/TgLgCPFkOLsGqHP/I6Ssk4+phKtapc/voHBOKkuH
2MnnGxePX24NuuzPOsuGge3fCAlWn21bkmwM9N+NMBEueAV6fk9S1VHywe/w8btc
fe0Gg/ekZD+q6qJazwO/E04r344O9IVdmZ5f75BDaBGFNWPBvlseZQYQbR56YwjJ
ukMP8Xj/3GpnFAJxR7G5CG/foMVseg16CTKOuntiqENgArnYA7g01qZbR7cJZjmD
M7OSXmUGxV3N9sjXeIKR52KoRcgJRR1UwhkX5HqUbsgq76plfPWDVDT3BzZfhlsL
KZDAV8saUWIsbB4wGc6z5MRsn3R8
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:47 2023 by rpki-client on console.sobornost.net