Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/cc4d76-3ae9-491e-9bd2-193cc61bce61/1/DHe3Pm_LKbkKHUMTtwWFLn4UOh8.roa
File: DHe3Pm_LKbkKHUMTtwWFLn4UOh8.roa (raw, json)
Hash identifier: GFMVYW3UYxIZg4E4IADSpWEUcinXQ/s1GiC0KxecVkk=
Subject key identifier: 0C:77:B7:3E:6F:CB:29:B9:0A:1D:43:13:B7:05:85:2E:7E:14:3A:1F
Certificate issuer: /CN=afa474a5ea601c809291ee79bae3918964d0871e
Certificate serial: 01C275
Authority key identifier: AF:A4:74:A5:EA:60:1C:80:92:91:EE:79:BA:E3:91:89:64:D0:87:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6R0pepgHICSke55uuORiWTQhx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/cc4d76-3ae9-491e-9bd2-193cc61bce61/1/DHe3Pm_LKbkKHUMTtwWFLn4UOh8.roa
Signing time: Tue 03 May 2022 08:17:28 +0000
ROA not before: Tue 03 May 2022 08:17:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48736
IP address blocks: 91.209.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115317 (0x1c275)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afa474a5ea601c809291ee79bae3918964d0871e
Validity
Not Before: May 3 08:17:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c77b73e6fcb29b90a1d4313b705852e7e143a1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:37:54:be:da:98:43:21:30:8b:43:b9:f1:42:
23:7d:06:14:73:84:3e:7c:8e:10:2d:9f:81:90:6c:
95:ae:3f:83:e0:7e:3a:63:9c:d2:02:7c:c8:81:52:
55:42:a6:b3:06:95:46:4a:c8:64:fd:45:9a:1b:f7:
6b:47:bd:a5:0b:e3:1c:c4:63:9c:b6:6b:ed:f0:97:
d3:51:9f:6d:80:60:9f:d1:70:a6:9f:c7:83:44:c1:
9e:e2:1b:a2:78:a0:5c:c1:d9:75:51:c9:ec:1f:e3:
13:f6:a7:db:68:7e:8b:98:b3:48:f0:13:ba:e8:fa:
1f:25:6c:e8:08:3f:1d:be:a5:5a:72:7b:de:32:94:
3b:6a:97:57:73:a2:05:38:3e:85:0f:18:e2:fa:48:
49:7b:bc:96:5f:09:9c:a2:f1:cf:ee:a0:90:29:09:
41:b5:5d:32:22:37:07:70:b9:50:a3:c0:05:c3:86:
3a:da:ad:66:3f:fb:2f:d2:5b:dc:61:15:92:22:fe:
f2:c6:b8:17:5c:28:91:10:44:86:d3:79:ba:3f:dc:
a0:f2:60:00:66:63:da:7f:be:ab:58:b5:03:46:0f:
2f:d2:45:ed:17:06:15:aa:5a:d6:e8:14:58:c8:22:
3c:3c:99:79:06:f4:04:37:ef:2e:35:92:1b:c5:7a:
35:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:77:B7:3E:6F:CB:29:B9:0A:1D:43:13:B7:05:85:2E:7E:14:3A:1F
X509v3 Authority Key Identifier:
keyid:AF:A4:74:A5:EA:60:1C:80:92:91:EE:79:BA:E3:91:89:64:D0:87:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6R0pepgHICSke55uuORiWTQhx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/cc4d76-3ae9-491e-9bd2-193cc61bce61/1/DHe3Pm_LKbkKHUMTtwWFLn4UOh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/cc4d76-3ae9-491e-9bd2-193cc61bce61/1/r6R0pepgHICSke55uuORiWTQhx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.241.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:82:e1:75:79:f9:e7:10:03:da:1c:16:79:f2:41:39:b9:de:
ae:7c:fb:4f:2f:00:87:5f:f7:44:29:1b:89:ce:05:d3:e9:8e:
f6:59:ee:d8:93:66:15:fa:46:18:53:4a:8a:ea:b0:ed:cc:d9:
0a:df:73:92:63:9e:8b:5c:42:8e:3e:17:b2:2c:69:ac:9a:40:
83:ed:d6:4d:63:fe:9e:e5:8e:da:6f:2c:e9:cf:a7:eb:93:1c:
3a:16:c4:3f:65:e1:83:3f:52:f6:62:fc:b1:f3:56:5a:79:00:
d4:bd:7c:1d:65:88:6b:fe:d6:5a:52:3f:d2:fc:34:c4:87:af:
38:26:c7:96:59:28:f6:ba:fc:ff:14:88:78:93:a5:47:15:75:
eb:02:ad:91:d9:21:7b:4a:54:28:e1:8a:2b:e7:01:01:e7:f9:
67:45:a4:e9:6d:f4:85:e1:c1:1c:b8:5a:af:89:da:86:d0:29:
5b:57:2b:32:ac:10:4f:88:93:b6:d7:b8:6c:26:0c:54:16:fa:
d1:f8:57:44:3a:5c:68:d6:9e:ad:e6:4d:a7:6f:58:f3:23:e6:
bc:a1:74:07:e7:8b:c3:2f:34:21:53:f6:e9:21:90:40:e6:1d:
b2:20:4f:89:0f:60:e6:96:dd:69:43:ce:9d:40:f8:e4:2b:32:
6c:82:1f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:51 2024 by rpki-client on console-ams.rpki-client.org