Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/2Y5zpQKPDOAx-A04ShP8907OnZw.roa
File: 2Y5zpQKPDOAx-A04ShP8907OnZw.roa (raw, json)
Hash identifier: JJJFdwPeeBTK/AlL8flzMjPXPADHKQFmRSvIrZGPYRA=
Subject key identifier: D9:8E:73:A5:02:8F:0C:E0:31:F8:0D:38:4A:13:FC:F7:4E:CE:9D:9C
Certificate issuer: /CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Certificate serial: 05F6747D
Authority key identifier: 89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/2Y5zpQKPDOAx-A04ShP8907OnZw.roa
Signing time: Sat 01 Jan 2022 13:01:50 +0000
ROA not before: Sat 01 Jan 2022 13:01:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42926
IP address blocks: 91.216.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100037757 (0x5f6747d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89939ff1293b7e22779fc55b4c83f13e52e94428
Validity
Not Before: Jan 1 13:01:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d98e73a5028f0ce031f80d384a13fcf74ece9d9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a0:53:ec:4a:ce:88:20:0e:ca:38:54:99:68:
4f:6f:e5:1e:36:ca:02:fa:64:a6:48:d9:21:21:14:
86:9a:14:33:0c:2c:24:82:c8:56:37:1d:7b:6d:a6:
33:17:4d:c2:08:1a:f9:33:5a:b0:ca:45:65:42:66:
3d:29:ce:f0:09:29:55:c0:25:a6:98:59:04:8d:bd:
d9:eb:1e:48:de:59:b0:21:69:46:38:67:05:34:74:
48:5f:b4:42:2a:91:d9:19:11:a9:f5:66:5e:ba:d5:
47:d5:1d:cf:0b:a7:09:18:32:19:cc:05:30:98:f2:
f7:d3:3d:66:38:5a:7d:83:c0:a7:7c:da:60:d7:af:
e6:2e:0c:cb:3a:e1:ed:8f:86:ad:bd:9a:eb:51:f9:
1c:f9:1e:14:59:9d:05:0d:6b:05:64:aa:e6:22:97:
33:7c:70:ea:bc:4a:e0:05:88:61:e0:e7:af:22:35:
be:ad:14:48:5c:65:3c:3e:25:82:d7:98:1c:a3:02:
51:bb:dc:8b:52:e1:8c:ab:2a:6d:f1:fc:e1:19:4a:
57:1c:68:41:2f:3c:8e:32:73:ad:17:38:e7:da:88:
63:20:59:ef:dd:b2:54:72:6d:74:b6:7b:ea:27:50:
97:a5:19:8e:b1:01:43:ff:3b:2d:76:ff:b4:55:f4:
f9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8E:73:A5:02:8F:0C:E0:31:F8:0D:38:4A:13:FC:F7:4E:CE:9D:9C
X509v3 Authority Key Identifier:
keyid:89:93:9F:F1:29:3B:7E:22:77:9F:C5:5B:4C:83:F1:3E:52:E9:44:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/2Y5zpQKPDOAx-A04ShP8907OnZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/a10ddf-bb6e-4bb0-beff-0e68000b3537/1/iZOf8Sk7fiJ3n8VbTIPxPlLpRCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.119.0/24
Signature Algorithm: sha256WithRSAEncryption
47:04:4c:52:38:73:59:30:1d:89:19:14:01:61:5a:0b:69:59:
70:e3:75:ea:fb:ca:d5:fd:e6:4f:60:26:ba:a6:7d:14:e2:fe:
8e:72:9a:d7:19:f6:ed:88:60:14:5f:a8:47:b1:fb:61:11:9f:
12:cd:6d:d9:f8:ab:7c:e8:d1:a9:f7:d9:a7:26:4c:01:06:d8:
f5:87:06:f2:83:8a:74:37:26:4b:ed:de:e8:c1:59:77:16:23:
24:04:0d:df:85:c7:08:59:8c:b4:af:64:c4:9b:30:1e:b3:9b:
97:e2:52:93:89:7c:bf:c4:f1:9a:b3:1b:40:79:93:a5:90:b9:
0d:d5:60:14:2c:2e:30:00:95:81:44:4d:0b:ba:b2:6c:f0:31:
3a:6a:3c:0a:4f:e0:75:ec:22:59:f7:50:60:0e:7a:2e:da:a5:
fd:45:f3:67:1a:1d:06:be:f9:6d:76:f8:91:9d:75:c3:38:55:
9b:ae:c7:ce:60:55:fa:c2:9e:a8:c2:5e:ff:66:08:3b:91:b4:
d4:6b:cc:d8:66:de:c8:73:2b:70:0e:65:46:0f:26:ef:8b:1f:
32:37:35:29:08:0c:99:df:3e:f4:29:1b:72:d7:c5:08:1a:d9:
de:06:a6:08:b8:1c:77:96:77:c9:76:27:f8:e9:0f:80:5a:6a:
72:71:db:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:20 2024 by rpki-client on console-ams.rpki-client.org