Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b1e0ff-9696-4b61-bd5e-7f6e4930f25a/1/Lb3GHjbSmPQVUVOYYw9II-UQlNg.roa
File: Lb3GHjbSmPQVUVOYYw9II-UQlNg.roa (raw, json)
Hash identifier: 9EmmOVFIzDj53MfEkJaamh3AREuiMI+aTLkWTGwa7Dk=
Subject key identifier: 2D:BD:C6:1E:36:D2:98:F4:15:51:53:98:63:0F:48:23:E5:10:94:D8
Certificate issuer: /CN=b542bc0d8cc28f558615ed3fae53cace4a6ef081
Certificate serial: 01822025C7D93B1B7EADCBC572280589A88F
Authority key identifier: B5:42:BC:0D:8C:C2:8F:55:86:15:ED:3F:AE:53:CA:CE:4A:6E:F0:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUK8DYzCj1WGFe0_rlPKzkpu8IE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/b1e0ff-9696-4b61-bd5e-7f6e4930f25a/1/Lb3GHjbSmPQVUVOYYw9II-UQlNg.roa
Signing time: Thu 21 Jul 2022 09:45:23 +0000
ROA not before: Thu 21 Jul 2022 09:45:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204054
IP address blocks: 91.216.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:25:c7:d9:3b:1b:7e:ad:cb:c5:72:28:05:89:a8:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b542bc0d8cc28f558615ed3fae53cace4a6ef081
Validity
Not Before: Jul 21 09:45:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2dbdc61e36d298f415515398630f4823e51094d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d8:b7:b5:d5:4c:b3:b5:f4:c2:28:62:e1:67:
0d:65:01:27:85:76:05:88:3e:52:c0:0b:0c:d0:47:
48:42:f5:13:d6:48:cf:1b:4e:03:a3:0a:13:b9:f8:
01:aa:a6:41:00:5a:51:ca:ab:3c:03:ce:12:91:a0:
5d:25:f8:5b:9e:52:11:ec:71:4c:91:43:ef:8b:eb:
6b:db:0f:f4:3b:1d:92:43:ce:56:90:4c:0b:42:59:
a1:29:58:99:ac:d6:fd:ce:3a:b0:69:ba:a7:37:6e:
18:ad:60:3d:a9:6c:1c:6b:3f:af:6c:8c:11:f4:88:
b2:41:b5:c2:9d:b1:d2:38:7a:75:13:73:9e:1b:c8:
b4:a6:70:f3:90:d4:a0:df:bf:42:96:3d:91:d9:26:
d0:29:4f:34:09:93:fa:ce:a6:b4:31:d2:77:0b:3a:
fd:dc:63:3d:42:e1:15:b5:49:19:be:cc:eb:f5:ee:
7c:e2:70:03:e4:11:b2:9f:10:be:ce:ee:41:a9:62:
6a:86:ae:21:c9:81:15:51:95:55:14:9e:ae:8c:64:
dd:9a:6c:c8:a1:4a:51:62:77:b0:82:2e:31:da:eb:
88:f0:50:c1:24:b0:f7:dc:ad:68:0c:27:33:3d:a6:
01:3f:17:9e:8e:0e:3d:02:13:79:04:9c:42:00:ab:
9e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BD:C6:1E:36:D2:98:F4:15:51:53:98:63:0F:48:23:E5:10:94:D8
X509v3 Authority Key Identifier:
keyid:B5:42:BC:0D:8C:C2:8F:55:86:15:ED:3F:AE:53:CA:CE:4A:6E:F0:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUK8DYzCj1WGFe0_rlPKzkpu8IE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b1e0ff-9696-4b61-bd5e-7f6e4930f25a/1/Lb3GHjbSmPQVUVOYYw9II-UQlNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b1e0ff-9696-4b61-bd5e-7f6e4930f25a/1/tUK8DYzCj1WGFe0_rlPKzkpu8IE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.223.0/24
Signature Algorithm: sha256WithRSAEncryption
94:57:26:80:72:5d:88:aa:0d:be:f7:94:8a:54:85:a1:87:23:
c1:b3:5b:e8:28:2a:74:45:ad:f1:17:f8:b2:c6:6f:85:78:ef:
69:6f:2c:11:14:42:81:01:0b:dc:8a:e6:1b:9b:81:ab:48:5f:
c5:13:86:45:09:5e:65:ca:37:17:51:b6:1c:ad:c5:f8:eb:cb:
5d:e4:78:2d:a6:b9:ba:91:ad:6a:ee:c9:c6:09:ad:5a:48:99:
67:9b:bc:c3:6d:b5:6f:b6:aa:4c:52:fb:69:d5:0b:ac:73:cb:
55:55:ab:c3:f5:17:c9:0d:2e:fb:6b:84:1d:2d:ab:08:d1:9e:
e2:a2:94:b2:67:0d:f3:e3:a6:65:d7:93:eb:ab:3e:bb:15:6d:
b1:e8:f8:32:4e:3e:7f:eb:57:3c:d0:44:06:dc:40:43:26:f3:
00:3d:b1:77:24:7c:a3:08:93:b5:80:c7:a9:03:f2:16:81:6d:
77:b1:f8:29:aa:fb:56:37:af:2b:fd:bd:5c:bb:71:eb:fc:c2:
d2:6f:54:40:5d:4d:6d:9f:48:e3:67:b7:69:d4:c0:d6:ca:e1:
b7:50:fb:fb:d2:3e:ad:9b:b3:6d:db:b5:da:7b:32:93:e9:7d:
8d:c8:08:90:ef:f5:90:00:c5:e2:99:05:69:77:af:97:f5:e1:
79:78:44:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIgJcfZOxt+rcvFcigFiaiPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NDJiYzBkOGNjMjhmNTU4NjE1ZWQzZmFlNTNjYWNlNGE2
ZWYwODEwHhcNMjIwNzIxMDk0NTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGJkYzYxZTM2ZDI5OGY0MTU1MTUzOTg2MzBmNDgyM2U1MTA5NGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdi3tdVMs7X0wihi4WcNZQEnhXYF
iD5SwAsM0EdIQvUT1kjPG04DowoTufgBqqZBAFpRyqs8A84SkaBdJfhbnlIR7HFM
kUPvi+tr2w/0Ox2SQ85WkEwLQlmhKViZrNb9zjqwabqnN24YrWA9qWwcaz+vbIwR
9IiyQbXCnbHSOHp1E3OeG8i0pnDzkNSg379Clj2R2SbQKU80CZP6zqa0MdJ3Czr9
3GM9QuEVtUkZvszr9e584nAD5BGynxC+zu5BqWJqhq4hyYEVUZVVFJ6ujGTdmmzI
oUpRYnewgi4x2uuI8FDBJLD33K1oDCczPaYBPxeejg49AhN5BJxCAKueqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC29xh420pj0FVFTmGMPSCPlEJTYMB8GA1UdIwQY
MBaAFLVCvA2Mwo9VhhXtP65Tys5KbvCBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFVLOERZekNqMVdHRmUwX3JsUEt6a3B1OElFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9iMWUwZmYtOTY5Ni00YjYxLWJkNWUt
N2Y2ZTQ5MzBmMjVhLzEvTGIzR0hqYlNtUFFWVVZPWVl3OUlJLVVRbE5nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS9iMWUwZmYtOTY5Ni00YjYxLWJkNWUtN2Y2ZTQ5MzBmMjVh
LzEvdFVLOERZekNqMVdHRmUwX3JsUEt6a3B1OElFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9jfMA0G
CSqGSIb3DQEBCwUAA4IBAQCUVyaAcl2Iqg2+95SKVIWhhyPBs1voKCp0Ra3xF/iy
xm+FeO9pbywRFEKBAQvciuYbm4GrSF/FE4ZFCV5lyjcXUbYcrcX468td5Hgtprm6
ka1q7snGCa1aSJlnm7zDbbVvtqpMUvtp1Qusc8tVVavD9RfJDS77a4QdLasI0Z7i
opSyZw3z46Zl15Prqz67FW2x6PgyTj5/61c80EQG3EBDJvMAPbF3JHyjCJO1gMep
A/IWgW13sfgpqvtWN68r/b1cu3Hr/MLSb1RAXU1tn0jjZ7dp1MDWyuG3UPv70j6t
m7Nt27XaezKT6X2NyAiQ7/WQAMXimQVpd6+X9eF5eERk
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:53 2023 by rpki-client on console.sobornost.net