Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/eEPrVzpUau-NoZsrMnyJCMxfbZw.roa
File: eEPrVzpUau-NoZsrMnyJCMxfbZw.roa (raw, json)
Hash identifier: pbBcwa6p0JaCLQZwU3WRuxU0da2y91P8LGJSFn1Lkw4=
Subject key identifier: 78:43:EB:57:3A:54:6A:EF:8D:A1:9B:2B:32:7C:89:08:CC:5F:6D:9C
Certificate issuer: /CN=7252c7d5ed8c5a2bc2ad03065d41c3e4b3ac1575
Certificate serial: 03A23880
Authority key identifier: 72:52:C7:D5:ED:8C:5A:2B:C2:AD:03:06:5D:41:C3:E4:B3:AC:15:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clLH1e2MWivCrQMGXUHD5LOsFXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/eEPrVzpUau-NoZsrMnyJCMxfbZw.roa
Signing time: Sat 01 Jan 2022 11:56:53 +0000
ROA not before: Sat 01 Jan 2022 11:56:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47919
IP address blocks: 91.208.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60962944 (0x3a23880)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7252c7d5ed8c5a2bc2ad03065d41c3e4b3ac1575
Validity
Not Before: Jan 1 11:56:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7843eb573a546aef8da19b2b327c8908cc5f6d9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1a:d2:e5:d7:c5:d6:9d:3d:be:1b:cf:ea:7d:
c8:d9:89:fc:d3:60:c7:7f:03:b7:87:21:95:d8:95:
84:89:af:00:ed:5d:b9:6d:8a:e9:fd:a8:4d:bc:67:
e4:30:65:58:da:0a:f7:47:70:72:84:4e:17:b8:b3:
7f:6b:39:44:2a:19:08:38:b7:5c:a5:bd:a0:75:d1:
d7:ff:d0:af:9f:e8:42:c0:c5:23:7e:a6:39:f9:22:
7e:74:3d:da:a4:4b:ec:ee:2d:fa:3a:41:07:d6:85:
23:1b:3c:a7:b4:91:0d:58:bb:01:65:32:90:c2:80:
f9:64:d0:ad:c6:b3:e6:b2:c1:f3:9a:3b:ed:b8:a0:
25:13:a4:40:2b:20:ab:86:28:ec:69:73:2e:80:cd:
09:18:06:4b:57:12:b4:af:7d:70:71:91:ac:a8:d1:
82:9d:a6:78:b9:42:3c:b3:6e:76:6f:0f:91:23:66:
7a:c1:84:16:15:92:9d:4c:51:43:17:bd:5f:65:49:
cd:30:fd:3c:ca:01:41:be:ed:cd:5b:e2:21:78:c1:
56:47:92:06:73:89:2a:39:63:31:d2:02:df:e6:e3:
60:7b:9f:2b:94:08:f6:02:0d:a4:e6:b1:9b:ac:d8:
ca:dd:95:cd:d8:b9:7d:e7:a7:0c:e6:a5:c2:7b:ed:
fc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:43:EB:57:3A:54:6A:EF:8D:A1:9B:2B:32:7C:89:08:CC:5F:6D:9C
X509v3 Authority Key Identifier:
keyid:72:52:C7:D5:ED:8C:5A:2B:C2:AD:03:06:5D:41:C3:E4:B3:AC:15:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clLH1e2MWivCrQMGXUHD5LOsFXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/eEPrVzpUau-NoZsrMnyJCMxfbZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2b9d89-ed82-4401-81d9-67d1b2a61bb0/1/clLH1e2MWivCrQMGXUHD5LOsFXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.198.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:16:92:08:b9:34:b6:7e:65:b4:bf:29:2b:2c:72:98:1e:4d:
eb:46:43:76:b7:11:ba:d5:07:28:3b:1e:02:e4:1f:8d:98:69:
da:77:6e:77:72:28:89:33:9a:39:6c:57:69:11:ce:fa:a1:48:
f6:43:4c:3f:b0:5e:7d:7d:26:d6:31:9f:95:f1:aa:1d:b5:e5:
69:b0:2d:d6:b6:76:4f:d2:71:4a:c0:94:63:83:8b:5b:bf:a8:
04:86:01:cf:22:d4:1f:f0:09:47:c6:fc:56:10:75:38:53:67:
c0:77:57:14:22:78:3f:69:2c:f4:0f:c8:aa:99:0c:a6:44:f8:
60:2a:98:0d:8f:3d:43:ed:92:53:f4:37:87:2f:45:43:14:6f:
fe:95:ae:fa:ab:24:ab:ec:b0:40:31:ad:5a:24:f7:e5:6a:64:
c1:72:37:e6:54:2c:5e:18:82:b5:07:a4:96:6a:c6:3d:d4:4e:
0a:c3:61:70:1f:48:56:f6:ab:3c:e3:e1:a8:d8:b6:c4:4a:00:
9f:be:55:e9:36:f5:fa:89:90:36:9f:bf:1c:68:6e:62:4b:22:
94:75:f0:0d:ce:5e:2b:2d:8d:8a:80:ad:6f:15:89:42:98:5c:
e4:2a:b4:00:b7:ba:1a:3d:cd:42:a5:b1:da:e6:d6:df:da:21:
0b:c1:a7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:30 2024 by rpki-client on console-ams.rpki-client.org