Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/Oo3SreI0ehdI5Bkd25unoHHm3Ho.roa
File: Oo3SreI0ehdI5Bkd25unoHHm3Ho.roa (raw, json)
Hash identifier: 5HSz6Uxlb/XgnvefE2X33k4zBLNcfJg68vFu7nccBdU=
Subject key identifier: 3A:8D:D2:AD:E2:34:7A:17:48:E4:19:1D:DB:9B:A7:A0:71:E6:DC:7A
Certificate issuer: /CN=46224dc9396e580ff7120f257353a70c72379c93
Certificate serial: 05C8675B
Authority key identifier: 46:22:4D:C9:39:6E:58:0F:F7:12:0F:25:73:53:A7:0C:72:37:9C:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RiJNyTluWA_3Eg8lc1OnDHI3nJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/Oo3SreI0ehdI5Bkd25unoHHm3Ho.roa
Signing time: Sat 01 Jan 2022 12:04:30 +0000
ROA not before: Sat 01 Jan 2022 12:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31704
IP address blocks: 91.216.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97019739 (0x5c8675b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46224dc9396e580ff7120f257353a70c72379c93
Validity
Not Before: Jan 1 12:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a8dd2ade2347a1748e4191ddb9ba7a071e6dc7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:97:eb:de:3c:8d:83:9a:0e:f8:88:1e:e7:47:
db:37:b3:05:c4:bb:87:ab:3e:3e:44:58:49:87:e4:
c3:44:39:1a:71:62:b9:a1:5d:40:d1:0a:63:de:fb:
43:c8:b9:70:0e:25:d7:8a:e5:b6:62:17:e6:f0:79:
2e:fe:bf:62:04:ba:f7:a8:cf:fc:57:3c:f4:b0:a1:
81:ae:1c:b0:15:93:2f:28:24:09:74:1e:17:eb:cd:
d3:4d:0a:18:73:3a:7c:27:f3:e7:21:70:a8:3b:19:
55:bb:2c:a6:bd:c9:97:cb:97:cc:5b:1b:bc:1a:ce:
0b:c6:7a:8f:6b:57:27:22:72:6b:04:e8:5a:ee:e3:
ea:f3:45:6a:90:52:83:3a:7b:bb:2d:25:4e:4f:1e:
f4:53:a6:6d:66:70:a2:be:70:60:02:6d:b8:99:39:
23:e1:e5:e7:a8:58:0d:fe:58:6c:00:cb:a2:c4:2a:
9f:96:62:e4:1b:2b:8a:76:b4:54:27:e5:c5:68:76:
79:5c:38:69:84:a9:fa:03:e7:13:15:39:a3:47:04:
e0:8d:cc:d7:42:2c:48:42:23:a1:72:d1:a1:58:a0:
7c:f8:90:d0:12:63:0d:77:32:af:01:fe:32:b6:80:
72:31:1e:67:e1:3a:57:3f:ba:dc:f5:0b:4f:6f:87:
14:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8D:D2:AD:E2:34:7A:17:48:E4:19:1D:DB:9B:A7:A0:71:E6:DC:7A
X509v3 Authority Key Identifier:
keyid:46:22:4D:C9:39:6E:58:0F:F7:12:0F:25:73:53:A7:0C:72:37:9C:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RiJNyTluWA_3Eg8lc1OnDHI3nJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/Oo3SreI0ehdI5Bkd25unoHHm3Ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e05dff-be12-4e82-873d-d31a33fc5e99/1/RiJNyTluWA_3Eg8lc1OnDHI3nJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.170.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:7f:3a:a0:80:54:94:76:59:21:e5:c5:08:ca:a3:aa:88:5a:
85:cc:73:cd:c1:e2:f8:8f:32:0b:21:2f:22:aa:3c:f3:d2:a3:
4d:de:cf:32:59:b8:7f:26:b6:22:95:cb:09:48:b8:db:05:08:
1a:22:d9:a7:bc:31:7b:e9:3b:21:34:b0:0f:b8:73:d3:63:06:
f5:58:c0:8b:91:34:ea:eb:4c:56:31:fd:53:16:c1:7e:f3:b3:
fa:4c:c2:4e:df:f4:78:d4:25:e8:7a:68:98:61:52:31:1f:0c:
78:9e:00:bf:07:0a:2d:11:78:3e:a7:be:9a:9f:71:cb:15:a9:
db:f0:87:93:32:82:5f:1e:cf:74:3b:32:47:39:20:f6:fd:4c:
72:17:56:e5:9c:5b:91:25:8d:c6:e6:8a:bc:a6:4c:f9:8a:75:
87:6d:d2:a6:9a:81:52:63:9c:e1:1e:4f:1c:5a:94:00:b2:88:
25:d9:ce:a6:d4:e2:ce:c7:16:be:55:9b:54:86:e3:94:d9:a1:
b9:9a:b1:14:6f:a6:db:ad:c8:b7:d6:30:a8:38:ba:79:18:6c:
b7:f1:e6:d0:e9:9e:18:f7:1a:4e:2a:30:be:26:72:8a:76:66:
40:08:5a:b1:64:7c:5e:c8:09:8b:88:a1:31:b2:a4:71:bc:36:
a7:c7:af:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:03 2024 by rpki-client on console-ams.rpki-client.org