Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c68bd1-8a98-41b2-b36b-386eea8d8dd6/1/f18DsPVlQp-1UqmPg94OmyHnOxQ.roa
File: f18DsPVlQp-1UqmPg94OmyHnOxQ.roa (raw, json)
Hash identifier: yUy+Sf4o9oiGXB+Hi322AIUbWmQxAQDB0HPScUXRElA=
Subject key identifier: 7F:5F:03:B0:F5:65:42:9F:B5:52:A9:8F:83:DE:0E:9B:21:E7:3B:14
Certificate issuer: /CN=4eee86b22c24bca7713071de95d6822c339cfd1c
Certificate serial: 03C4AD00
Authority key identifier: 4E:EE:86:B2:2C:24:BC:A7:71:30:71:DE:95:D6:82:2C:33:9C:FD:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tu6GsiwkvKdxMHHeldaCLDOc_Rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c68bd1-8a98-41b2-b36b-386eea8d8dd6/1/f18DsPVlQp-1UqmPg94OmyHnOxQ.roa
Signing time: Sat 01 Jan 2022 15:02:31 +0000
ROA not before: Sat 01 Jan 2022 15:02:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 91.240.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63220992 (0x3c4ad00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4eee86b22c24bca7713071de95d6822c339cfd1c
Validity
Not Before: Jan 1 15:02:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f5f03b0f565429fb552a98f83de0e9b21e73b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:58:76:a4:bf:f2:bd:86:9c:64:36:dd:c5:21:
b2:01:0f:aa:35:e5:31:59:53:fc:44:41:c5:66:f6:
06:8c:32:da:1d:a3:ce:b7:f4:7c:94:01:f3:7c:5c:
13:96:b3:2a:d9:6b:bd:0a:95:30:9c:aa:ea:f4:3e:
be:64:36:d4:ae:ff:41:71:88:8f:f3:28:dc:0d:11:
4d:ba:b6:d9:e4:e2:10:9a:cf:ee:f1:43:dc:ec:8f:
1a:32:3b:61:3d:a2:46:e2:3b:f4:1b:b1:b9:c2:b2:
ab:ff:23:bc:07:35:c8:41:78:77:af:f9:2e:cc:06:
35:31:b3:4f:4d:3f:dd:59:82:39:a1:95:3b:02:00:
6b:a3:9b:90:48:b3:c0:77:2d:b6:4d:73:a4:5f:7c:
e5:ae:2d:74:5b:e8:33:ec:00:be:05:cc:ac:01:89:
9a:83:fa:f5:25:eb:2a:71:a2:bf:0b:f7:5b:8a:1e:
8c:c3:c6:87:f8:c4:dd:f6:5a:a5:b6:68:6e:21:a2:
d8:fc:14:03:4c:30:9c:bb:8b:92:9e:b2:a4:ab:d3:
08:e7:4c:55:1e:bc:00:71:87:30:69:fd:c2:4c:38:
0c:76:0c:04:e3:1c:3a:6f:93:22:38:a9:e2:11:62:
72:84:86:b6:fe:77:24:53:b0:93:13:58:53:17:d5:
7d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:5F:03:B0:F5:65:42:9F:B5:52:A9:8F:83:DE:0E:9B:21:E7:3B:14
X509v3 Authority Key Identifier:
keyid:4E:EE:86:B2:2C:24:BC:A7:71:30:71:DE:95:D6:82:2C:33:9C:FD:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tu6GsiwkvKdxMHHeldaCLDOc_Rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c68bd1-8a98-41b2-b36b-386eea8d8dd6/1/f18DsPVlQp-1UqmPg94OmyHnOxQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c68bd1-8a98-41b2-b36b-386eea8d8dd6/1/Tu6GsiwkvKdxMHHeldaCLDOc_Rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.109.0/24
Signature Algorithm: sha256WithRSAEncryption
81:91:49:55:d3:a0:4b:fd:ff:cd:4c:14:b9:a7:62:28:8c:ae:
c6:3e:86:0e:d8:85:a7:f7:b3:b2:9f:20:fd:31:1f:47:b6:29:
06:0e:95:98:0a:11:42:e8:28:5d:84:e4:ed:bc:c6:96:2b:38:
3a:e6:23:97:a8:ed:52:9c:6b:f9:04:70:4e:19:36:a4:2d:5a:
8d:65:f2:69:a9:71:b3:9b:4c:38:fa:14:25:3a:3c:25:3a:1a:
2c:53:a2:e3:fa:e6:f9:7e:62:23:be:70:31:e3:f5:ec:a1:bd:
fb:bd:ca:01:21:17:19:e2:2f:ae:e6:00:62:14:0f:95:89:9f:
e2:14:bd:5a:b1:65:d9:f5:e0:f3:fe:a2:09:58:f1:bc:b7:5d:
4a:d5:27:a9:21:08:a2:43:8d:fc:0b:05:15:f5:a2:56:3f:af:
63:4e:5a:1d:4d:61:37:8a:79:62:1e:09:30:7d:11:ba:61:17:
e4:d1:d3:2a:bd:43:c7:79:b7:91:85:8d:50:4d:cf:59:da:e2:
ab:08:43:d4:a9:4e:f7:1e:4e:f5:b5:45:59:8e:c6:8a:02:93:
68:f8:93:a7:75:bc:1d:e6:f5:f1:38:5e:1e:cf:b8:5d:f8:c9:
93:c7:2c:0f:a1:c3:cc:c3:cc:27:6d:f0:46:3e:ff:0d:1a:06:
6e:05:48:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:24 2024 by rpki-client on console-fra.rpki-client.org