Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/z97wMa2m332hyIEA5JS09vNuCsA.roa
File: z97wMa2m332hyIEA5JS09vNuCsA.roa (raw, json)
Hash identifier: iVGcW9n5sDuZjse6H9oQ8jWls7WO1fbUvmU22qi1ztE=
Subject key identifier: CF:DE:F0:31:AD:A6:DF:7D:A1:C8:81:00:E4:94:B4:F6:F3:6E:0A:C0
Certificate issuer: /CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Certificate serial: 01852AB73093F69A781176657A0F5EF887F5
Authority key identifier: 1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/z97wMa2m332hyIEA5JS09vNuCsA.roa
Signing time: Mon 19 Dec 2022 14:08:46 +0000
ROA not before: Mon 19 Dec 2022 14:08:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48357
IP address blocks: 91.149.192.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:b7:30:93:f6:9a:78:11:76:65:7a:0f:5e:f8:87:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Validity
Not Before: Dec 19 14:08:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfdef031ada6df7da1c88100e494b4f6f36e0ac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:29:c6:f0:f2:45:3e:28:fa:c3:b7:f4:72:14:
48:61:5a:ff:3d:84:12:57:44:1b:c2:ac:c0:b1:d2:
02:3f:2b:90:fe:56:c3:c1:55:fd:a4:af:4e:58:67:
f1:a0:a3:a7:e5:50:64:50:e3:f8:79:2d:81:4d:cc:
31:60:02:c8:d8:3e:f7:93:75:62:6a:2b:0b:d6:fb:
01:ff:3f:61:b1:c9:cd:a9:6d:15:1b:a2:6a:3f:b6:
99:61:ab:29:07:88:99:10:76:d4:19:50:36:1c:27:
6b:19:17:2b:65:f0:fe:cf:d3:1f:bd:60:1a:0a:f7:
87:60:1e:59:7a:1d:86:e4:fe:10:dd:cf:d4:ab:93:
0f:ef:d5:0c:6d:8a:72:86:90:69:4d:7a:4a:6c:17:
c8:9c:1e:59:15:6a:2c:49:ee:e3:1a:fc:a2:84:0d:
40:d5:24:e1:7e:2e:26:df:12:0f:27:cd:2a:54:33:
ec:02:44:8b:14:54:9a:6f:c4:05:b0:f1:d6:6d:fd:
2d:b3:8e:1e:08:13:61:ee:f3:fc:c0:57:f3:59:b7:
7f:53:0b:72:fa:f5:60:5e:16:5f:05:67:56:bb:8a:
ef:cf:34:a5:6b:df:fa:4b:2b:fb:f5:58:fb:dc:b5:
7b:75:05:67:ce:e2:67:47:ca:cb:24:df:8c:20:ef:
1d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DE:F0:31:AD:A6:DF:7D:A1:C8:81:00:E4:94:B4:F6:F3:6E:0A:C0
X509v3 Authority Key Identifier:
keyid:1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/z97wMa2m332hyIEA5JS09vNuCsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.192.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:c4:2c:e4:06:c6:a3:58:bf:3e:5e:32:b3:ab:de:60:9e:a4:
09:b0:6a:55:11:0a:10:fb:23:43:db:bf:b2:3f:32:74:7b:43:
1c:56:a5:ba:3c:45:a2:93:b2:ff:97:af:0c:80:d6:9a:c3:47:
ea:25:9e:af:73:af:97:bc:65:53:89:63:59:61:fd:96:45:05:
ae:ea:97:57:7b:bc:cd:d3:3f:14:51:a3:58:45:9f:ea:9d:aa:
8a:23:b3:eb:5d:4b:ce:02:61:e4:c3:56:6f:f2:ca:71:a4:a6:
c5:2d:fe:7c:f8:93:d8:7a:8c:60:76:bc:34:7b:31:0a:dc:a1:
e0:5d:87:f7:6b:f9:28:c9:46:8e:b9:b2:96:0e:65:39:2e:47:
4b:a8:fc:80:b3:43:38:54:91:95:33:c3:82:5a:6b:ac:6f:51:
26:78:be:23:d1:71:83:ee:de:47:ab:5d:f1:c1:a3:07:16:ba:
59:30:41:9e:1f:23:cc:bd:d9:80:e7:37:e2:4a:9c:12:b3:3e:
46:d0:96:bb:41:f5:2b:de:17:9a:3f:be:c6:03:37:1b:be:5c:
c6:52:c7:2b:e0:64:5b:e1:ac:ed:be:fd:47:9d:21:63:71:0a:
fa:a3:64:4d:8c:8a:ef:2d:f4:6a:64:86:c3:f5:5f:14:5c:d7:
a7:0c:04:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:21 2024 by rpki-client on console-fra.rpki-client.org