Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/Pgmr9dv4yHOFjneyxY2pXIsbz7Q.roa
File: Pgmr9dv4yHOFjneyxY2pXIsbz7Q.roa (raw, json)
Hash identifier: cui3pYpvHZiOnES0QExWTkW4qBT307Ia+6wXtji30b4=
Subject key identifier: 3E:09:AB:F5:DB:F8:C8:73:85:8E:77:B2:C5:8D:A9:5C:8B:1B:CF:B4
Certificate issuer: /CN=2f2709cb399c4e168ccbda16db136b5bc8b96dd6
Certificate serial: 0BCC9CA0
Authority key identifier: 2F:27:09:CB:39:9C:4E:16:8C:CB:DA:16:DB:13:6B:5B:C8:B9:6D:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LycJyzmcThaMy9oW2xNrW8i5bdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/Pgmr9dv4yHOFjneyxY2pXIsbz7Q.roa
Signing time: Sun 20 Mar 2022 12:12:34 +0000
ROA not before: Sun 20 Mar 2022 12:12:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198657
IP address blocks: 91.237.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 197958816 (0xbcc9ca0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2709cb399c4e168ccbda16db136b5bc8b96dd6
Validity
Not Before: Mar 20 12:12:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e09abf5dbf8c873858e77b2c58da95c8b1bcfb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2b:7a:52:5c:f8:90:e3:83:31:f3:25:bb:f6:
e0:2a:bf:5c:5a:df:08:87:83:56:2f:55:cf:ca:98:
fd:bf:2d:95:ba:a2:6d:ff:38:57:37:d2:67:b3:87:
96:72:63:60:53:68:06:f5:66:93:cd:ef:4b:f9:ce:
05:d5:87:10:33:76:54:37:c2:0d:11:9c:0c:64:7f:
3b:dd:1d:b2:a4:fe:16:b8:7e:f9:76:5f:2e:af:c4:
a3:09:eb:e6:e8:2f:1e:34:bc:7f:e5:59:4b:67:b8:
f1:07:83:06:53:6f:81:18:4e:16:7b:b3:ff:a8:c7:
33:28:27:11:44:2b:b7:26:9f:88:29:3a:95:77:52:
b6:71:b9:f5:dd:2c:5f:3c:49:82:db:c5:91:55:2d:
3d:45:d3:b2:4e:6e:6b:77:35:82:ca:d7:51:55:62:
4d:f6:8f:2d:5a:36:c2:a4:27:a9:3c:7d:7b:b9:99:
9e:9b:32:59:4b:88:a5:80:f2:3b:ea:7f:55:3d:2a:
16:ef:61:56:2c:42:02:54:89:e2:55:83:e3:6e:f3:
a2:e1:50:c0:28:ab:31:05:d3:cd:b8:a4:cd:58:0c:
f6:f1:f0:a4:d9:4a:89:84:aa:94:b2:87:6c:b6:cf:
fa:dd:2d:d3:fd:4b:33:e3:92:52:fc:e8:19:f4:86:
82:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:09:AB:F5:DB:F8:C8:73:85:8E:77:B2:C5:8D:A9:5C:8B:1B:CF:B4
X509v3 Authority Key Identifier:
keyid:2F:27:09:CB:39:9C:4E:16:8C:CB:DA:16:DB:13:6B:5B:C8:B9:6D:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LycJyzmcThaMy9oW2xNrW8i5bdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/Pgmr9dv4yHOFjneyxY2pXIsbz7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/LycJyzmcThaMy9oW2xNrW8i5bdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.236.0/22
Signature Algorithm: sha256WithRSAEncryption
16:c8:26:13:14:b1:94:76:93:1c:7c:02:8d:a1:25:80:b6:93:
a8:ed:d7:7f:66:bd:c7:36:71:b5:e4:a6:bf:81:a1:83:20:da:
aa:a7:57:c8:19:06:ef:8d:25:58:d1:a9:49:f1:2a:12:af:5a:
8c:7a:a8:50:23:49:6b:1f:c3:45:42:e8:5d:b5:af:64:0e:26:
f0:f6:d0:12:d2:b4:b9:a1:b2:d7:88:23:a1:fb:5d:5b:69:7d:
0b:51:31:ba:20:41:ce:54:f3:7d:b0:1a:1d:61:bc:77:61:7b:
bf:b5:f7:27:0f:a3:03:e5:64:7d:4a:66:41:59:27:4a:3f:f9:
72:bd:fa:2f:f6:8f:22:4d:be:02:4b:4d:34:64:f7:a6:5e:68:
1c:8e:f6:04:76:9e:24:c3:19:ea:b7:83:33:ba:8c:99:2a:d0:
71:52:df:ba:7d:ee:9d:f2:de:90:57:ad:6e:a0:1b:4b:58:23:
9d:ab:d0:ed:7d:0b:c1:fe:07:c5:ed:03:0a:0f:a1:53:c7:4d:
55:11:01:e5:3e:37:51:cc:e4:6f:89:54:57:be:44:02:52:92:
56:68:cc:db:10:96:58:ca:93:cb:14:ae:93:8e:0c:16:ed:d7:
b2:0f:a0:78:f2:88:3b:58:01:c5:9f:ca:d9:25:d9:59:c3:da:
f2:b2:39:8c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEC8ycoDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZjI3MDljYjM5OWM0ZTE2OGNjYmRhMTZkYjEzNmI1YmM4Yjk2ZGQ2MB4XDTIyMDMy
MDEyMTIzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2UwOWFiZjVkYmY4
Yzg3Mzg1OGU3N2IyYzU4ZGE5NWM4YjFiY2ZiNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKErelJc+JDjgzHzJbv24Cq/XFrfCIeDVi9Vz8qY/b8tlbqi
bf84VzfSZ7OHlnJjYFNoBvVmk83vS/nOBdWHEDN2VDfCDRGcDGR/O90dsqT+Frh+
+XZfLq/Eownr5ugvHjS8f+VZS2e48QeDBlNvgRhOFnuz/6jHMygnEUQrtyafiCk6
lXdStnG59d0sXzxJgtvFkVUtPUXTsk5ua3c1gsrXUVViTfaPLVo2wqQnqTx9e7mZ
npsyWUuIpYDyO+p/VT0qFu9hVixCAlSJ4lWD427zouFQwCirMQXTzbikzVgM9vHw
pNlKiYSqlLKHbLbP+t0t0/1LM+OSUvzoGfSGgs8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ+Cav12/jIc4WOd7LFjalcixvPtDAfBgNVHSMEGDAWgBQvJwnLOZxOFozL
2hbbE2tbyLlt1jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0x5Y0p5em1jVGhhTXk5b1cyeE5yVzhpNWJkWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOGQvZjgzNzgxLTI5NDktNDhjNy04OTAwLTIwMTY3Y2Q0MmI4Mi8x
L1BnbXI5ZHY0eUhPRmpuZXl4WTJwWElzYno3US5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGQv
ZjgzNzgxLTI5NDktNDhjNy04OTAwLTIwMTY3Y2Q0MmI4Mi8xL0x5Y0p5em1jVGhh
TXk5b1cyeE5yVzhpNWJkWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAlvt7DANBgkqhkiG9w0BAQsFAAOC
AQEAFsgmExSxlHaTHHwCjaElgLaTqO3Xf2a9xzZxteSmv4GhgyDaqqdXyBkG740l
WNGpSfEqEq9ajHqoUCNJax/DRULoXbWvZA4m8PbQEtK0uaGy14gjoftdW2l9C1Ex
uiBBzlTzfbAaHWG8d2F7v7X3Jw+jA+VkfUpmQVknSj/5cr36L/aPIk2+AktNNGT3
pl5oHI72BHaeJMMZ6reDM7qMmSrQcVLfun3unfLekFetbqAbS1gjnavQ7X0Lwf4H
xe0DCg+hU8dNVREB5T43Uczkb4lUV75EAlKSVmjM2xCWWMqTyxSuk44MFu3Xsg+g
ePKIO1gBxZ/K2SXZWcPa8rI5jA==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:54 2023 by rpki-client on console.sobornost.net