Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/8jTZ4WCB1YKuLmkjSLPgcdwnZAA.roa
File: 8jTZ4WCB1YKuLmkjSLPgcdwnZAA.roa (raw, json)
Hash identifier: +RZX4QvpMhiTxpNY2kyE4BMgPllTiTU2MLMyAGZYWnQ=
Subject key identifier: F2:34:D9:E1:60:81:D5:82:AE:2E:69:23:48:B3:E0:71:DC:27:64:00
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: DF92E4
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/8jTZ4WCB1YKuLmkjSLPgcdwnZAA.roa
Signing time: Tue 26 Apr 2022 06:54:26 +0000
ROA not before: Tue 26 Apr 2022 06:54:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142111
IP address blocks: 91.232.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14652132 (0xdf92e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Apr 26 06:54:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f234d9e16081d582ae2e692348b3e071dc276400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ea:47:25:be:1e:8e:ed:f1:51:67:6c:b7:20:
af:e1:22:7c:6c:a4:5d:da:07:b5:0c:8a:58:60:82:
14:07:2a:f7:c9:f9:ce:e3:f6:fd:05:59:15:fe:69:
96:15:f2:22:f9:5b:d5:6c:ab:7f:56:7a:5a:a5:ba:
67:51:bc:af:85:c3:21:69:8d:29:a3:6d:f4:a4:bf:
8e:f0:fa:25:d1:fa:67:cc:d2:e3:fa:63:b2:23:f4:
cc:8e:69:f8:71:67:ed:84:13:72:85:2e:53:af:82:
32:01:19:35:4c:ef:13:83:68:ac:bf:e2:e3:56:b7:
62:8e:30:fa:4d:db:6f:dd:9d:ca:5b:23:bb:bf:6a:
23:6a:27:94:99:53:17:14:16:ed:31:9c:6e:a5:3a:
79:93:f4:38:74:0c:eb:40:b3:d5:96:4c:68:cf:85:
66:ca:56:2e:4e:b6:3e:98:74:68:3e:a2:2f:c8:01:
4e:27:fb:40:72:3e:e9:6c:0e:83:44:89:c2:f3:2a:
80:51:8b:78:35:af:27:61:60:89:59:7c:b9:5d:29:
3f:0d:c9:06:c1:88:67:4a:0f:14:70:c1:49:09:cc:
36:8b:e7:50:86:73:12:4d:81:f7:26:b1:7f:87:bd:
69:b5:1d:68:f8:1b:b0:35:71:a5:17:37:45:df:f5:
6a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:34:D9:E1:60:81:D5:82:AE:2E:69:23:48:B3:E0:71:DC:27:64:00
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/8jTZ4WCB1YKuLmkjSLPgcdwnZAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.99.0/24
Signature Algorithm: sha256WithRSAEncryption
21:0e:44:4a:c0:05:d8:3e:9e:20:b2:4c:8c:2d:54:e2:45:66:
66:c1:74:d1:85:c6:54:e5:0d:d1:78:14:f9:40:b7:0d:99:67:
eb:bc:1a:59:c4:a8:f7:56:d9:2c:16:18:3c:28:16:e7:e7:15:
8f:d4:77:8e:8f:75:5b:74:e5:b7:5c:7e:f0:9c:89:9d:43:8d:
1d:fb:2d:5f:2d:8a:58:76:f8:61:80:1a:6a:a5:d4:be:de:5b:
ca:49:70:14:26:1a:ca:8c:a9:d7:85:b3:2e:3f:3a:74:15:ef:
64:05:f6:4b:dc:d7:b7:22:3a:a8:05:67:10:7d:d4:5e:1a:2d:
54:41:ec:dd:f0:75:d2:ea:67:16:23:93:15:93:a8:58:1b:46:
5d:1e:3c:11:66:04:43:3c:09:6d:dc:9e:cf:48:20:10:5c:98:
42:0d:0e:b9:e8:c9:f2:78:48:6c:09:9a:ab:af:a0:87:b1:f0:
b7:c3:df:02:28:6d:fa:55:7b:a3:cd:ea:77:77:47:29:38:21:
a3:66:ff:c7:f3:95:aa:75:07:c6:e2:c8:05:49:91:a4:0c:90:
cf:44:c2:7a:3f:f9:1e:78:84:a6:02:8f:7d:74:e3:1a:d5:4b:
a6:59:d8:ec:3d:b5:dc:66:12:4f:e1:35:28:18:f4:ca:73:17:
97:78:c4:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:25 2024 by rpki-client on console-fra.rpki-client.org