Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/425cc1-5014-4979-84eb-025540aff15d/1/0ZrewyB8FmUkCgAWz_6lteLQul4.roa
File: 0ZrewyB8FmUkCgAWz_6lteLQul4.roa (raw, json)
Hash identifier: Pu3tnQ7LKzdcjyYmu/1hwXY0mX3ZomKfclnPV44ErZY=
Subject key identifier: D1:9A:DE:C3:20:7C:16:65:24:0A:00:16:CF:FE:A5:B5:E2:D0:BA:5E
Certificate issuer: /CN=5e3a62f1347c1742e5b6e3740244d398b53a513c
Certificate serial: 08ECFED1
Authority key identifier: 5E:3A:62:F1:34:7C:17:42:E5:B6:E3:74:02:44:D3:98:B5:3A:51:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xjpi8TR8F0LltuN0AkTTmLU6UTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/425cc1-5014-4979-84eb-025540aff15d/1/0ZrewyB8FmUkCgAWz_6lteLQul4.roa
Signing time: Sat 01 Jan 2022 11:00:53 +0000
ROA not before: Sat 01 Jan 2022 11:00:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31463
IP address blocks: 91.232.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149749457 (0x8ecfed1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e3a62f1347c1742e5b6e3740244d398b53a513c
Validity
Not Before: Jan 1 11:00:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d19adec3207c1665240a0016cffea5b5e2d0ba5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a4:98:4f:6c:1b:88:4f:50:bf:91:e7:41:62:
46:1f:e5:49:01:a1:45:03:bf:3b:09:21:90:ef:e7:
9d:b9:42:ee:41:e5:27:20:76:21:26:48:ac:ec:75:
ae:70:12:66:c1:4f:d5:8e:0e:0c:2d:60:c0:7a:da:
2b:92:ea:af:39:a9:4b:fc:17:e3:5a:93:70:39:20:
d4:e8:bf:79:4c:ed:24:25:cd:96:5b:12:c5:f5:d9:
b6:fa:54:96:bc:14:57:a0:4e:4a:e0:20:95:23:87:
0e:61:d3:74:87:be:e8:83:91:b8:b0:77:d4:65:d1:
71:fa:f6:f1:20:cb:5c:91:b8:49:31:4e:9c:a3:21:
ca:0c:2d:d8:65:50:90:6b:4c:e5:14:e0:41:00:91:
51:5c:f8:40:57:a8:96:7f:da:b9:8e:85:d0:84:c2:
31:f4:65:7c:de:97:05:42:2f:f5:35:89:fc:bf:b5:
81:05:9b:b3:5b:fb:5d:8f:ab:7f:fe:c3:cb:cc:28:
75:03:c8:d9:ad:ed:98:08:c1:18:13:4b:cb:b5:bd:
99:d2:e8:ea:91:79:59:e6:bb:c8:0e:03:45:0f:19:
04:bd:08:57:19:d5:d4:f3:8f:a9:8a:07:87:93:bb:
a5:0c:b4:79:b1:b4:34:b8:93:0d:2c:86:f4:50:b9:
23:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:9A:DE:C3:20:7C:16:65:24:0A:00:16:CF:FE:A5:B5:E2:D0:BA:5E
X509v3 Authority Key Identifier:
keyid:5E:3A:62:F1:34:7C:17:42:E5:B6:E3:74:02:44:D3:98:B5:3A:51:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xjpi8TR8F0LltuN0AkTTmLU6UTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/425cc1-5014-4979-84eb-025540aff15d/1/0ZrewyB8FmUkCgAWz_6lteLQul4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/425cc1-5014-4979-84eb-025540aff15d/1/Xjpi8TR8F0LltuN0AkTTmLU6UTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.104.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:ea:9c:ef:37:03:f8:e1:84:f7:57:10:c0:4e:fe:5c:13:55:
15:86:5a:ce:fc:b7:c6:dc:1a:51:f6:b7:43:dc:82:a3:8a:ee:
4e:a2:05:9b:9b:c2:c8:2d:b1:1e:19:5c:1f:b4:a1:de:a7:21:
e9:00:65:de:92:77:25:f1:f6:ab:b5:4f:9d:12:84:44:35:2c:
1d:3c:dd:92:49:d9:1a:23:c0:5d:6e:e5:30:5d:0a:67:96:dd:
d3:18:1e:bf:62:f1:16:0a:c4:ea:7e:b6:96:cf:84:37:ca:47:
00:e9:87:6d:35:f2:7b:f0:c3:7f:37:85:df:17:94:55:91:ef:
aa:a9:4d:39:d0:dd:ee:a5:7f:cb:81:91:43:ab:db:5a:ae:08:
83:ea:7c:b4:1a:ac:47:35:70:1f:29:a8:c9:6b:ec:ad:54:88:
69:8b:71:09:98:a2:56:a7:f9:1b:7e:30:65:46:6e:b5:d6:11:
36:8a:06:db:e4:47:81:e1:37:ec:ae:03:9a:7c:8b:5c:19:55:
d2:aa:62:0a:3c:4a:e5:34:8a:d0:fd:42:85:99:80:35:93:66:
4e:1f:e9:a9:6f:a4:08:34:c7:94:dc:9b:21:e1:be:c7:59:73:
57:06:58:40:3b:a0:10:68:5b:08:99:97:9a:d3:d1:67:54:26:
fe:24:e8:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:58 2024 by rpki-client on console-ams.rpki-client.org