Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/yIWtnICF-BtvNJrwbxSQKfux7dw.roa
File: yIWtnICF-BtvNJrwbxSQKfux7dw.roa (raw, json)
Hash identifier: PkpRlPlZh0UX7/JCWMTqKXNiDGlPH+Y+pIXrVJAEC2c=
Subject key identifier: C8:85:AD:9C:80:85:F8:1B:6F:34:9A:F0:6F:14:90:29:FB:B1:ED:DC
Certificate issuer: /CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Certificate serial: CE1B6D
Authority key identifier: 9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/yIWtnICF-BtvNJrwbxSQKfux7dw.roa
Signing time: Sat 01 Jan 2022 12:05:31 +0000
ROA not before: Sat 01 Jan 2022 12:05:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44710
IP address blocks: 91.217.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13507437 (0xce1b6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Validity
Not Before: Jan 1 12:05:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c885ad9c8085f81b6f349af06f149029fbb1eddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:76:85:5b:93:85:1f:d7:fa:36:76:64:d2:75:
fe:58:d2:6f:02:42:7a:d3:d9:68:9f:98:23:10:00:
76:40:a6:75:fa:96:77:f0:34:97:68:57:33:f9:f7:
c9:57:7a:33:cf:5f:cc:b7:c2:21:83:0b:9b:a3:0c:
1e:98:c1:cd:8c:9b:39:99:a9:ef:5b:a5:46:7d:d3:
28:af:8e:75:4f:7c:c5:e4:f8:8a:71:ba:71:af:3f:
b7:56:2a:a3:21:46:b1:97:69:de:96:ca:62:f0:44:
41:ad:0a:b6:09:50:08:d7:a1:f4:35:df:7e:14:03:
2d:30:3c:34:d2:47:f7:4f:d3:37:40:c7:ef:4a:c7:
95:0a:ff:fd:07:9f:c6:98:d4:5a:13:f7:e8:fb:eb:
28:8f:53:09:1a:96:51:bd:f6:81:3f:21:ed:ae:d2:
52:38:c9:0e:3b:b4:72:9a:1b:d6:71:af:b5:94:2b:
4f:e2:35:7c:64:99:5a:14:62:be:35:2a:15:d9:75:
ee:0f:bf:ea:eb:9a:4e:bd:ed:0d:c0:40:d7:09:60:
19:28:a2:54:c4:1d:d1:51:fa:f5:11:54:88:6b:72:
8d:28:33:35:d1:6f:df:4e:23:8c:91:e2:31:59:e5:
7c:9b:fe:9e:14:dd:e9:9f:8e:ad:e0:51:7b:bb:c1:
60:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:85:AD:9C:80:85:F8:1B:6F:34:9A:F0:6F:14:90:29:FB:B1:ED:DC
X509v3 Authority Key Identifier:
keyid:9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/yIWtnICF-BtvNJrwbxSQKfux7dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/nozX1qQQV1C_iXWn0LlnlMHv5iI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.244.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:cc:a7:0c:3a:d2:5a:30:8d:bb:34:19:00:21:34:1e:f6:00:
18:19:c3:f3:6d:f3:01:e9:2f:d1:1a:3b:e7:4d:7c:0f:2f:a0:
f0:54:77:df:9d:17:9e:f8:3a:02:ea:de:f7:cd:37:80:df:8b:
be:25:34:90:14:71:52:1f:6f:3b:72:44:14:6a:5d:4a:10:6a:
a9:3c:a5:90:0b:9c:06:a8:dc:1d:84:a2:e3:45:b9:89:d1:d2:
43:37:6a:86:02:5e:64:dc:1a:a3:b5:d4:ee:ee:66:ee:4d:b4:
3c:27:81:47:87:d2:df:48:07:d0:a3:e1:3c:5d:1e:78:83:ae:
70:11:e2:0c:09:f0:66:a2:92:63:41:e4:1f:be:5f:88:35:05:
06:29:01:b3:4f:92:b6:e8:5e:3d:f9:d5:d6:a0:28:d3:ee:df:
5f:66:c8:5a:42:bd:ce:15:9e:37:a8:87:b6:81:89:fc:a7:88:
ff:86:c8:eb:59:02:50:2b:19:8a:14:84:73:4c:3f:b1:7a:1f:
30:96:2e:85:02:9b:ce:bf:f9:9d:66:ba:a1:e0:21:f5:52:2c:
23:e2:bd:12:ef:61:6b:88:03:fc:de:4a:90:11:38:9f:41:d0:
f1:05:6f:be:c1:c1:f9:5f:61:57:32:56:ae:bc:69:68:13:89:
23:16:2a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:21 2024 by rpki-client on console-fra.rpki-client.org