Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/1faa24-f086-4b48-b1bd-45527e8e44d2/1/jrP7-0oBvJM_92e1m6bmDQ5kdg4.roa
File: jrP7-0oBvJM_92e1m6bmDQ5kdg4.roa (raw, json)
Hash identifier: GUDES1VqEek4BxWxWrNtznY7lgLbPLYbZVa6X5vqotU=
Subject key identifier: 8E:B3:FB:FB:4A:01:BC:93:3F:F7:67:B5:9B:A6:E6:0D:0E:64:76:0E
Certificate issuer: /CN=72e12a3876ff7bd00d9d9ebb972ab1e621ea1e8d
Certificate serial: 071B60B6
Authority key identifier: 72:E1:2A:38:76:FF:7B:D0:0D:9D:9E:BB:97:2A:B1:E6:21:EA:1E:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuEqOHb_e9ANnZ67lyqx5iHqHo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/1faa24-f086-4b48-b1bd-45527e8e44d2/1/jrP7-0oBvJM_92e1m6bmDQ5kdg4.roa
Signing time: Sat 01 Jan 2022 01:59:45 +0000
ROA not before: Sat 01 Jan 2022 01:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12414
IP address blocks: 91.235.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119234742 (0x71b60b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e12a3876ff7bd00d9d9ebb972ab1e621ea1e8d
Validity
Not Before: Jan 1 01:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8eb3fbfb4a01bc933ff767b59ba6e60d0e64760e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f0:45:66:fe:74:3d:68:d1:65:22:a6:df:58:
f5:16:3c:15:90:d0:5a:a2:30:8c:9b:58:07:2b:17:
c3:01:c3:dd:c1:5b:58:ed:7d:60:5e:5e:2d:f0:cf:
06:71:81:66:82:13:39:28:1e:f3:32:96:ab:db:16:
25:6f:fa:9e:d2:01:2d:2b:68:d1:fd:23:e8:b5:6a:
1b:3e:01:86:32:76:9d:6e:27:e5:25:b4:8d:02:f4:
00:de:fa:5e:3a:6a:a7:52:8c:78:6c:21:c8:a4:f8:
72:dc:b0:b3:f3:cc:ca:fc:33:a7:66:bd:24:74:eb:
61:1d:2d:fc:75:6c:2a:41:fb:a2:1d:9c:fb:59:d4:
39:43:6e:19:98:62:ce:86:70:ce:24:74:30:fb:a4:
c3:29:80:d5:4c:d6:c0:53:07:29:f1:fc:1f:aa:77:
8d:1b:d1:bd:cc:01:ed:57:cc:dc:d4:bb:6b:88:04:
df:36:16:c8:9b:35:39:8c:9c:48:bf:ef:e2:a8:d8:
a6:18:69:96:1e:54:62:78:41:90:30:6c:2d:0c:0c:
1e:23:b2:75:6f:c0:26:a9:ab:68:df:c6:0f:1b:08:
11:c4:91:97:ca:5a:a7:38:a9:79:cb:22:5b:1a:15:
3b:80:b0:4e:46:b9:3e:c0:0e:17:c7:9e:db:8a:13:
a0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B3:FB:FB:4A:01:BC:93:3F:F7:67:B5:9B:A6:E6:0D:0E:64:76:0E
X509v3 Authority Key Identifier:
keyid:72:E1:2A:38:76:FF:7B:D0:0D:9D:9E:BB:97:2A:B1:E6:21:EA:1E:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuEqOHb_e9ANnZ67lyqx5iHqHo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1faa24-f086-4b48-b1bd-45527e8e44d2/1/jrP7-0oBvJM_92e1m6bmDQ5kdg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1faa24-f086-4b48-b1bd-45527e8e44d2/1/cuEqOHb_e9ANnZ67lyqx5iHqHo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.237.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:1e:e8:3c:c6:a0:7b:b4:b3:e6:ff:6e:a5:48:00:8f:48:91:
1b:7f:95:c1:f3:ff:ab:7b:62:be:6d:03:88:20:40:27:13:45:
7d:d4:17:69:ef:58:a5:76:4d:e6:27:5c:57:1d:03:fe:b9:91:
cb:11:30:80:4b:7f:2c:fb:cd:66:0b:a0:58:5c:71:d7:cd:bf:
b2:17:ab:f2:04:f8:db:da:20:1b:95:62:0f:55:e7:bc:c8:7c:
c2:8c:fd:18:fe:ad:72:78:66:5a:82:56:8d:2c:78:5a:c7:f2:
ae:7f:fc:63:52:00:82:ab:68:da:49:2d:d2:98:12:f4:db:20:
fd:04:02:a8:79:28:18:fd:d6:9a:51:f0:11:23:55:b3:46:52:
f8:2d:6b:65:a0:46:df:d0:8a:bb:70:e6:c2:03:bb:3a:35:f2:
f0:29:8c:0d:f1:7b:3d:f4:af:10:c7:13:bd:19:6f:14:07:35:
6a:61:ed:ab:9d:cd:21:4f:0c:e6:08:96:11:b2:ef:33:aa:a3:
9d:e5:23:7a:86:93:2f:40:5e:b8:9b:54:1c:e8:65:b8:35:27:
60:68:15:cc:13:df:c3:b3:e1:e1:87:fa:55:63:50:0f:c7:29:
37:42:5f:58:a8:ae:b7:5e:77:b9:f4:7d:6e:60:2c:41:60:33:
00:0d:5f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:29 2024 by rpki-client on console-ams.rpki-client.org