Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c6b65c-2fc3-4196-af30-3940d135b28b/1/5EKMOJIm9IIvDqODD-fgE5oCZ5A.roa
File: 5EKMOJIm9IIvDqODD-fgE5oCZ5A.roa (raw, json)
Hash identifier: uUWLAkYboovBTp6sBzHCcqfsX9pDXmt0AvUfYUGhilc=
Subject key identifier: E4:42:8C:38:92:26:F4:82:2F:0E:A3:83:0F:E7:E0:13:9A:02:67:90
Certificate issuer: /CN=bf70d6fc63d1777eedcd8f46a5593617c6319de6
Certificate serial: 0AA96830
Authority key identifier: BF:70:D6:FC:63:D1:77:7E:ED:CD:8F:46:A5:59:36:17:C6:31:9D:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v3DW_GPRd37tzY9GpVk2F8YxneY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c6b65c-2fc3-4196-af30-3940d135b28b/1/5EKMOJIm9IIvDqODD-fgE5oCZ5A.roa
Signing time: Sat 01 Jan 2022 07:58:29 +0000
ROA not before: Sat 01 Jan 2022 07:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52022
IP address blocks: 91.220.220.0/24 maxlen: 24
91.236.30.0/23 maxlen: 24
2001:678:220::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178874416 (0xaa96830)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf70d6fc63d1777eedcd8f46a5593617c6319de6
Validity
Not Before: Jan 1 07:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4428c389226f4822f0ea3830fe7e0139a026790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ca:45:00:63:1c:73:6a:e1:67:53:ec:4e:0b:
92:75:b8:fa:fd:7f:59:7e:5d:83:26:02:82:8c:8b:
c2:fd:8f:a3:8b:2c:b9:dc:bb:ae:cd:a1:c1:77:64:
44:e3:70:59:4e:df:a4:a7:4b:1b:6d:75:6c:0e:e9:
51:78:e8:af:65:71:a0:e3:b4:36:6c:1f:9e:33:e8:
61:2b:21:dd:e7:e0:1f:57:6b:75:48:1b:35:75:0d:
8b:c2:36:b2:11:2d:6c:32:34:fe:e8:7e:0c:66:a1:
b1:7b:ce:a1:da:35:1a:cd:21:04:83:ee:33:ca:2a:
3a:3e:4e:0c:3d:e4:11:de:6b:34:a9:b1:37:89:95:
25:14:ce:4f:f3:0c:10:58:9a:79:e0:68:e2:a2:a1:
bb:9f:0e:ef:66:57:5a:e8:5a:3e:57:e4:73:c6:c0:
64:91:57:30:e8:26:23:2c:00:8d:06:1f:31:f4:ba:
8f:f4:e3:36:8a:03:46:e8:f4:39:86:a9:4c:86:5b:
86:0e:dd:02:77:ea:a1:a3:e0:b4:89:4d:e7:bf:00:
99:5d:c0:e6:be:04:f6:35:ad:3b:60:15:31:41:58:
24:76:5f:fa:ad:01:10:62:56:e0:ff:8a:b7:8b:ed:
bf:63:c0:0b:0b:c1:d4:b5:ca:c4:71:66:86:26:31:
1b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:42:8C:38:92:26:F4:82:2F:0E:A3:83:0F:E7:E0:13:9A:02:67:90
X509v3 Authority Key Identifier:
keyid:BF:70:D6:FC:63:D1:77:7E:ED:CD:8F:46:A5:59:36:17:C6:31:9D:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v3DW_GPRd37tzY9GpVk2F8YxneY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c6b65c-2fc3-4196-af30-3940d135b28b/1/5EKMOJIm9IIvDqODD-fgE5oCZ5A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c6b65c-2fc3-4196-af30-3940d135b28b/1/v3DW_GPRd37tzY9GpVk2F8YxneY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.220.0/24
91.236.30.0/23
IPv6:
2001:678:220::/48
Signature Algorithm: sha256WithRSAEncryption
10:7e:94:ec:7a:0c:3a:e2:ab:0d:bc:23:26:43:14:f2:a1:cc:
77:81:80:21:99:29:7d:40:5a:bd:67:14:09:d5:0e:54:8f:19:
6c:58:0a:16:49:86:be:91:8f:88:31:5f:61:bb:1c:54:e7:9f:
97:32:79:77:6a:ba:9b:f1:0c:6e:be:17:0e:6b:cf:01:b1:0f:
3b:0c:c3:7f:3a:b5:4f:b4:57:94:ec:97:2f:7f:7f:42:00:39:
b7:2d:5c:a9:60:e6:b5:4b:45:45:0c:9e:39:9c:a3:d0:4a:9a:
67:75:97:c8:80:ca:ec:73:3d:72:0d:c5:17:5a:60:f9:7c:ce:
15:39:57:6d:77:10:ff:1d:b8:6a:f4:87:cf:3b:4d:de:00:1c:
75:c7:8f:0f:ac:44:18:6a:2b:3f:5c:6a:f2:ba:5e:03:ce:97:
2c:42:4c:8a:b1:df:31:4e:f1:82:2b:3c:5c:98:4e:d6:e6:27:
63:b7:67:47:ed:9a:80:7d:11:74:5e:59:a2:c2:f0:5b:6f:c8:
15:7c:b6:04:db:77:2f:12:fe:e9:9a:81:b4:ab:53:07:50:74:
12:28:82:b5:b7:05:15:5e:cb:6a:69:1c:23:62:7c:8e:41:b3:
78:7f:63:09:66:77:63:36:ae:a6:0b:9c:28:15:44:25:02:57:
f2:d6:26:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:10 2024 by rpki-client on console-fra.rpki-client.org