Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cd8269-2b7e-4a78-a9c6-ec7a3603e17e/1/rFrlXgPGECiRwww6kotsVUXDYNo.roa
File: rFrlXgPGECiRwww6kotsVUXDYNo.roa (raw, json)
Hash identifier: ZDFCYoWxWwPNcboUrNE6b4KHXi4MNZtFGojEQsvT0jw=
Subject key identifier: AC:5A:E5:5E:03:C6:10:28:91:C3:0C:3A:92:8B:6C:55:45:C3:60:DA
Certificate issuer: /CN=96b122a7dba7432930c831f57a9406f73449c5b7
Certificate serial: 055F8856
Authority key identifier: 96:B1:22:A7:DB:A7:43:29:30:C8:31:F5:7A:94:06:F7:34:49:C5:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lrEip9unQykwyDH1epQG9zRJxbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cd8269-2b7e-4a78-a9c6-ec7a3603e17e/1/rFrlXgPGECiRwww6kotsVUXDYNo.roa
Signing time: Sat 01 Jan 2022 15:07:33 +0000
ROA not before: Sat 01 Jan 2022 15:07:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213374
IP address blocks: 91.234.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90146902 (0x55f8856)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96b122a7dba7432930c831f57a9406f73449c5b7
Validity
Not Before: Jan 1 15:07:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac5ae55e03c6102891c30c3a928b6c5545c360da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a1:6b:f8:23:21:e9:c6:97:fa:43:cd:7e:ac:
c1:62:c1:ce:4f:7c:e5:62:10:bb:6e:84:16:a2:ac:
31:6b:48:47:e4:f2:77:2f:22:49:7f:df:d0:a0:45:
27:10:41:db:b8:5f:6f:c9:a1:04:f9:2a:3f:fd:83:
94:26:c4:69:89:af:22:f1:9e:9b:a1:4a:72:65:8f:
46:32:d4:a6:5c:41:b3:e8:d0:16:e1:d5:40:af:0e:
03:d8:d2:90:2e:6f:34:7d:3c:32:73:7e:50:77:a4:
fd:6e:55:f9:96:29:02:c9:e2:74:e6:07:32:a3:4b:
9e:ae:6a:9f:f3:9c:2c:94:e1:c5:35:bc:c8:61:0d:
ab:e8:49:51:97:c6:84:00:6e:4a:a7:ea:0c:2c:41:
f2:2c:37:1f:f3:08:01:c5:80:96:44:2b:ef:e7:4d:
72:58:6e:13:f0:8b:ce:f1:b3:0c:5c:47:08:39:9b:
eb:63:d0:78:82:50:50:1b:3d:55:df:54:fa:32:09:
0b:54:92:a8:12:8d:78:ab:c2:ec:e7:84:6f:42:82:
2e:33:f0:aa:af:9f:77:6d:3d:e3:78:4a:43:93:47:
5b:74:36:34:7a:e3:57:7f:9d:16:54:2f:83:8a:19:
c4:50:ea:86:21:6d:a0:5f:b0:68:47:a5:dc:0d:ad:
3c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5A:E5:5E:03:C6:10:28:91:C3:0C:3A:92:8B:6C:55:45:C3:60:DA
X509v3 Authority Key Identifier:
keyid:96:B1:22:A7:DB:A7:43:29:30:C8:31:F5:7A:94:06:F7:34:49:C5:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lrEip9unQykwyDH1epQG9zRJxbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cd8269-2b7e-4a78-a9c6-ec7a3603e17e/1/rFrlXgPGECiRwww6kotsVUXDYNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cd8269-2b7e-4a78-a9c6-ec7a3603e17e/1/lrEip9unQykwyDH1epQG9zRJxbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.238.0/24
Signature Algorithm: sha256WithRSAEncryption
49:9a:47:3e:ca:66:06:e2:7a:89:e8:76:f0:09:3c:be:fb:33:
ae:5e:ab:ad:21:a0:d8:31:0a:e8:c5:dd:e7:e5:3a:b6:eb:9d:
5c:90:3f:dc:3f:cc:33:c5:af:20:dd:fc:8c:9a:57:57:40:1e:
04:34:2a:53:02:c5:ca:cd:b2:f7:f0:42:56:7c:75:37:aa:d5:
78:3c:06:bb:fc:f9:a6:0a:2c:73:3f:fa:9c:e0:ab:16:15:0a:
63:e4:61:c6:1e:6b:7e:9d:17:b9:8c:ea:1f:06:23:58:b7:06:
99:4b:2c:80:1c:64:b9:18:d8:58:3e:ae:25:ee:a1:2f:95:29:
31:f0:df:50:5e:43:15:d6:c4:1b:03:18:f0:5e:ac:dd:97:e5:
81:50:82:ef:9c:d9:74:9e:0a:89:39:68:08:9b:28:f6:dc:d7:
64:40:8a:1e:a6:fe:5f:93:9b:ee:05:cc:03:01:b8:00:98:33:
14:22:7f:61:2b:95:75:62:e2:ea:0f:c0:0a:2c:4a:c4:b8:e4:
58:c2:c4:14:40:c9:2f:7f:19:be:f0:fd:0a:3c:d5:e3:13:39:
01:d4:52:21:20:37:91:c8:09:02:e9:8a:25:5a:3c:05:59:ad:
5e:77:52:f8:d0:a0:ba:35:72:04:74:e1:71:2c:2c:c5:dc:62:
c4:58:5b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:07 2024 by rpki-client on console-ams.rpki-client.org