Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/iM8IS2SVf5nrmbE8hnEHKA7g7ug.roa
File: iM8IS2SVf5nrmbE8hnEHKA7g7ug.roa (raw, json)
Hash identifier: tFXnfg31Vu6fhJDr77IL6RzDmkL0id5sp/Hs4TyBgzs=
Subject key identifier: 88:CF:08:4B:64:95:7F:99:EB:99:B1:3C:86:71:07:28:0E:E0:EE:E8
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 012394
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/iM8IS2SVf5nrmbE8hnEHKA7g7ug.roa
Signing time: Wed 06 Apr 2022 13:07:18 +0000
ROA not before: Wed 06 Apr 2022 13:07:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47811
IP address blocks: 91.208.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74644 (0x12394)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Apr 6 13:07:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88cf084b64957f99eb99b13c867107280ee0eee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:91:55:0e:44:a1:6b:25:6b:18:ac:d3:66:1c:
2e:70:2d:5e:05:9a:eb:48:ed:74:0c:18:e6:40:b2:
65:6f:bd:9d:2b:08:41:c2:53:9c:fe:86:f9:e1:bc:
9e:90:af:4b:87:8c:ce:72:d0:e0:17:e2:4f:74:65:
4a:4e:2a:c7:06:50:c2:45:08:22:60:5a:00:f3:b3:
ff:c3:90:11:3a:4e:13:b7:a7:35:5a:55:5e:37:03:
12:bc:9d:d9:5b:ee:09:f0:77:92:9c:ce:aa:76:34:
8d:0e:ee:d2:d9:aa:b9:1f:0b:c5:b2:30:d2:65:f6:
f8:40:73:23:16:35:4c:bb:00:7c:04:cf:db:6a:cb:
4f:07:db:78:d6:ff:76:0f:13:71:0e:fa:89:20:84:
fd:75:ae:b6:ba:20:84:75:f0:47:12:7a:0a:d2:7d:
93:e4:99:ec:78:b2:cf:7a:af:bb:a1:78:cb:11:1b:
9e:c8:70:02:3e:3f:07:a7:73:1a:33:09:b3:23:34:
95:a0:ef:8d:d4:f4:c6:ba:dc:a0:23:d9:3d:6e:33:
1d:1e:7c:7a:40:11:8e:cd:4e:a8:d5:d6:53:ee:07:
6b:cd:73:de:88:d9:7a:47:d6:83:fd:d9:14:60:67:
97:33:06:bf:09:a9:8f:c4:df:17:b9:04:5b:e1:82:
2a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CF:08:4B:64:95:7F:99:EB:99:B1:3C:86:71:07:28:0E:E0:EE:E8
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/iM8IS2SVf5nrmbE8hnEHKA7g7ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.154.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:c4:b7:b0:37:5c:93:a0:1b:a1:a1:41:9b:3e:ae:9c:10:86:
70:c9:2e:08:7b:19:b8:51:19:13:9b:1c:b4:ea:96:44:31:7b:
af:39:be:e0:ed:80:9a:68:20:32:62:43:f6:6e:bf:a1:ed:b1:
4e:50:e2:4a:c3:a5:2e:34:63:42:80:de:f0:99:1e:09:ab:7f:
e7:3c:b2:95:c0:5f:d5:6f:75:0e:2a:54:be:62:83:58:f5:f8:
41:8b:2d:b4:c5:6f:e4:b3:4e:4a:1e:c3:d9:d4:45:68:12:f6:
0c:a8:a0:3a:f8:6f:d0:da:4e:9b:9b:80:5b:ae:ed:4f:10:cd:
88:f1:32:c7:f3:6c:54:b3:42:a3:74:a6:18:96:21:11:61:b2:
d0:94:06:2d:32:c8:68:c3:b2:cb:00:35:e1:2a:07:df:98:16:
1b:b2:2c:42:7d:3d:0c:32:f7:c8:4b:60:5a:17:00:41:78:a0:
8b:9c:93:45:69:78:1f:d8:c0:f2:58:ff:14:dc:1c:dc:2c:81:
81:b3:a4:3e:dd:26:7b:52:d2:f0:f0:36:1e:04:ff:7f:d5:f4:
d5:e7:4d:86:4e:a2:23:ab:2a:f0:d8:41:6c:6a:84:50:4e:e6:
af:61:2d:b5:0c:9f:89:93:b8:ba:bc:5b:66:95:40:17:15:b4:
d8:6f:a1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:31 2024 by rpki-client on console-fra.rpki-client.org