Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/hyL2M10mHf8fxQjPFUl-eUv-QAA.roa
File: hyL2M10mHf8fxQjPFUl-eUv-QAA.roa (raw, json)
Hash identifier: FSDnhyaKaPIalrWQ149DtNG6GDnoqOw0+4u/aXxuIYg=
Subject key identifier: 87:22:F6:33:5D:26:1D:FF:1F:C5:08:CF:15:49:7E:79:4B:FE:40:00
Certificate issuer: /CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Certificate serial: 178F813E
Authority key identifier: D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/hyL2M10mHf8fxQjPFUl-eUv-QAA.roa
Signing time: Sat 01 Jan 2022 15:04:56 +0000
ROA not before: Sat 01 Jan 2022 15:04:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197071
IP address blocks: 91.216.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395280702 (0x178f813e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Validity
Not Before: Jan 1 15:04:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8722f6335d261dff1fc508cf15497e794bfe4000
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9b:84:7b:0d:22:f5:18:d0:b8:36:05:f9:82:
6e:79:53:c6:f1:8e:84:5a:75:f4:89:d2:ff:b6:3a:
bb:0a:52:20:d7:65:65:ca:c7:c5:6a:0c:32:91:04:
b9:e6:a1:a7:5f:6a:ba:d9:5b:6a:c5:7e:0c:b2:2a:
f5:69:f3:8c:cc:80:de:db:fe:eb:68:e0:e8:52:6f:
90:01:f4:28:61:be:12:10:7e:16:06:2c:31:bb:78:
a4:d6:05:0d:e4:44:a4:c4:f3:d1:98:18:81:9a:54:
55:62:5d:8c:1c:60:f8:5c:22:91:0e:4c:c3:11:53:
22:d2:a0:24:7d:a6:dd:74:5f:92:09:a4:2c:a2:cb:
0e:6a:d1:2a:a6:59:0a:ae:40:77:2e:66:01:29:a6:
af:0e:39:42:70:e3:02:3c:62:e0:29:c9:77:be:d8:
c4:19:c5:17:24:8c:68:c9:6a:7a:ea:c1:77:8f:5b:
a6:ce:ba:3b:30:e8:87:55:49:6c:d3:30:93:04:94:
60:b6:a4:3e:61:a5:cb:d2:2b:a5:7a:80:52:4b:03:
d9:2b:71:e3:7d:55:62:ca:76:4d:05:4d:b3:de:5e:
df:7c:31:cb:c4:a8:04:9c:d6:cd:af:51:05:91:42:
68:76:79:56:5e:2d:22:94:b9:a8:8b:71:1d:cf:13:
9b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:22:F6:33:5D:26:1D:FF:1F:C5:08:CF:15:49:7E:79:4B:FE:40:00
X509v3 Authority Key Identifier:
keyid:D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/hyL2M10mHf8fxQjPFUl-eUv-QAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.35.0/24
Signature Algorithm: sha256WithRSAEncryption
88:02:d3:6c:2c:90:f2:68:7a:05:4a:69:2e:94:08:ab:16:d2:
66:d9:fd:3c:fc:1d:3f:d7:d8:fe:45:80:17:af:46:b8:3c:2d:
ec:b2:f3:5f:87:78:9f:03:87:56:76:13:63:ae:9a:5a:7a:b8:
9c:f7:bb:43:f2:77:d3:ed:b0:b0:88:74:a1:b5:0d:c0:61:79:
32:49:8e:90:1d:c5:fe:15:db:2f:f1:4e:0b:10:bf:f7:0f:53:
f2:f9:34:de:ed:49:f8:c6:e1:87:58:76:32:09:db:4c:d3:67:
12:0d:00:cb:e4:62:02:07:9c:c8:25:a2:c8:c3:a5:34:e0:5a:
2b:62:bf:54:19:19:9f:6a:24:78:ce:29:e7:d8:6e:2e:06:05:
0c:52:15:8c:ab:9e:9e:0d:78:f6:6e:dc:50:c0:c5:63:8c:7d:
13:ee:d2:df:38:34:bf:3e:9a:af:d0:92:be:e2:cd:10:fe:a5:
00:72:3d:a0:0d:82:4e:11:50:bd:da:c0:4a:7d:87:22:7c:4b:
21:95:54:62:aa:e0:c9:8e:d4:35:78:d7:3e:7e:6d:a7:34:67:
df:4d:2a:0f:c7:6b:1e:94:66:de:dd:29:eb:e6:4a:69:ba:50:
e9:a1:d5:81:a4:ce:ea:7a:16:27:fc:d3:77:35:5c:be:e2:cb:
9c:fd:cc:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:50 2024 by rpki-client on console-fra.rpki-client.org