Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/DHBAEkXsxPT8hpg6KgCfkivkoeI.roa
File: DHBAEkXsxPT8hpg6KgCfkivkoeI.roa (raw, json)
Hash identifier: f8yTrQdJdlK2lhAT4FSVFK3R+7cMQ6VZ71pxzmo6hx0=
Subject key identifier: 0C:70:40:12:45:EC:C4:F4:FC:86:98:3A:2A:00:9F:92:2B:E4:A1:E2
Certificate issuer: /CN=ec65d31440bf75d25c606f7915c236ca614464a2
Certificate serial: 090AF504
Authority key identifier: EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/DHBAEkXsxPT8hpg6KgCfkivkoeI.roa
Signing time: Sat 01 Jan 2022 16:05:15 +0000
ROA not before: Sat 01 Jan 2022 16:05:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203086
IP address blocks: 91.150.190.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151713028 (0x90af504)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec65d31440bf75d25c606f7915c236ca614464a2
Validity
Not Before: Jan 1 16:05:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c70401245ecc4f4fc86983a2a009f922be4a1e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:69:f1:eb:15:a6:aa:54:89:50:7c:5f:06:fc:
26:23:6b:3e:a7:66:70:6c:05:3b:ca:78:3a:3a:c1:
29:28:1b:1f:bd:c0:73:ee:b8:56:c3:8c:14:72:c7:
85:93:3d:30:e9:a4:ec:02:4c:f5:51:db:a2:13:03:
c8:f1:ab:db:48:67:69:63:5c:95:46:62:ad:be:a0:
91:8c:0e:87:b7:60:4b:f1:cb:a3:38:92:8b:08:0c:
74:89:83:54:c6:03:4f:d7:cc:63:fe:a5:38:d3:ee:
53:b9:f0:f1:32:1c:10:5e:7b:16:74:9f:9f:c5:a4:
b4:df:96:3f:8e:56:b8:08:af:d7:e0:ba:f7:38:83:
9f:5e:8b:dd:75:65:79:95:49:f9:cc:e8:39:af:c6:
7e:8b:f6:10:bc:bd:11:75:a9:db:59:0c:74:bc:1d:
23:01:3c:1e:8c:e1:5e:53:6a:aa:d8:b6:d8:04:7d:
b8:35:71:61:fd:4e:51:f1:41:e5:e6:5a:00:63:93:
f9:c2:d3:db:84:cb:82:61:8d:03:2f:ce:e9:7f:ee:
91:01:d1:a4:f8:30:19:5b:24:88:25:6d:a3:56:b1:
fe:17:bd:4b:31:2e:ec:cc:bc:46:9f:9d:dc:8e:a4:
5e:a4:8b:6e:6f:ff:54:a5:a4:8d:59:3f:48:4c:af:
0c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:70:40:12:45:EC:C4:F4:FC:86:98:3A:2A:00:9F:92:2B:E4:A1:E2
X509v3 Authority Key Identifier:
keyid:EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/DHBAEkXsxPT8hpg6KgCfkivkoeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/7GXTFEC_ddJcYG95FcI2ymFEZKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.150.190.0/24
Signature Algorithm: sha256WithRSAEncryption
59:04:35:3d:ac:6f:31:5b:df:0f:23:9c:9d:7d:75:f3:e9:41:
43:d6:e9:ed:93:b3:f2:c6:71:66:bb:75:66:38:f3:bd:24:e2:
ec:47:42:43:d6:e9:8c:91:fb:76:c8:be:3a:bf:64:21:8d:63:
90:98:50:61:6f:82:b6:9e:20:9e:62:cd:a0:22:81:bf:01:8e:
f6:1a:1c:06:07:f1:90:1b:2c:2d:eb:e8:88:16:81:8c:62:5c:
aa:b8:9d:5a:ca:b0:ad:1e:c4:c1:16:21:54:5c:8a:e4:14:dd:
26:ed:f5:ac:22:c8:45:ee:c4:b5:c5:28:3c:59:48:22:a1:1a:
7b:59:ec:37:6e:4e:81:20:bc:ca:9c:90:d5:74:a5:39:25:cf:
bb:10:a1:36:52:d4:a5:ac:6b:7d:5a:9e:1c:d4:12:b9:a2:9e:
80:e0:72:a2:96:21:8d:fd:29:12:af:5c:ae:68:34:8c:ff:d5:
98:2a:3f:59:65:f3:59:40:cb:4a:29:4c:d8:5d:6e:f2:f9:b9:
d7:d9:f2:1c:9d:34:5a:b9:cb:0e:82:2d:5a:51:07:e5:60:c0:
a9:7e:49:bb:8b:2e:33:0e:4f:ea:d0:cf:53:05:44:8c:4d:2f:
d6:9a:16:45:06:1f:d4:13:5b:64:33:8e:15:d0:71:1e:61:2d:
e3:ab:77:1d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECQr1BDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YzY1ZDMxNDQwYmY3NWQyNWM2MDZmNzkxNWMyMzZjYTYxNDQ2NGEyMB4XDTIyMDEw
MTE2MDUxNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGM3MDQwMTI0NWVj
YzRmNGZjODY5ODNhMmEwMDlmOTIyYmU0YTFlMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALBp8esVpqpUiVB8Xwb8JiNrPqdmcGwFO8p4OjrBKSgbH73A
c+64VsOMFHLHhZM9MOmk7AJM9VHbohMDyPGr20hnaWNclUZirb6gkYwOh7dgS/HL
oziSiwgMdImDVMYDT9fMY/6lONPuU7nw8TIcEF57FnSfn8WktN+WP45WuAiv1+C6
9ziDn16L3XVleZVJ+czoOa/Gfov2ELy9EXWp21kMdLwdIwE8HozhXlNqqti22AR9
uDVxYf1OUfFB5eZaAGOT+cLT24TLgmGNAy/O6X/ukQHRpPgwGVskiCVto1ax/he9
SzEu7My8Rp+d3I6kXqSLbm//VKWkjVk/SEyvDD8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQMcEASRezE9PyGmDoqAJ+SK+Sh4jAfBgNVHSMEGDAWgBTsZdMUQL910lxg
b3kVwjbKYURkojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdHWFRGRUNfZGRKY1lHOTVGY0kyeW1GRVpLSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODMvMmE2ZGY1LTgyMzYtNDEyZC1hZDc5LWUyOTU4OWU4OTY0YS8x
L0RIQkFFa1hzeFBUOGhwZzZLZ0Nma2l2a29lSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMv
MmE2ZGY1LTgyMzYtNDEyZC1hZDc5LWUyOTU4OWU4OTY0YS8xLzdHWFRGRUNfZGRK
Y1lHOTVGY0kyeW1GRVpLSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFuWvjANBgkqhkiG9w0BAQsFAAOC
AQEAWQQ1PaxvMVvfDyOcnX118+lBQ9bp7ZOz8sZxZrt1ZjjzvSTi7EdCQ9bpjJH7
dsi+Or9kIY1jkJhQYW+Ctp4gnmLNoCKBvwGO9hocBgfxkBssLevoiBaBjGJcqrid
WsqwrR7EwRYhVFyK5BTdJu31rCLIRe7EtcUoPFlIIqEae1nsN25OgSC8ypyQ1XSl
OSXPuxChNlLUpaxrfVqeHNQSuaKegOByopYhjf0pEq9crmg0jP/VmCo/WWXzWUDL
SilM2F1u8vm519nyHJ00WrnLDoItWlEH5WDAqX5Ju4suMw5P6tDPUwVEjE0v1poW
RQYf1BNbZDOOFdBxHmEt46t3HQ==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:26 2023 by rpki-client on console.sobornost.net