Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/ab9881-be13-49a5-92c3-85730532bd9a/1/PD5WWJgi2JE-vVQRfbN_yUQb0Ks.roa
File: PD5WWJgi2JE-vVQRfbN_yUQb0Ks.roa (raw, json)
Hash identifier: 4hT+C+vxyWC1sQBfqf3SzmF7B7XMXVjeBmFdbyYAp6s=
Subject key identifier: 3C:3E:56:58:98:22:D8:91:3E:BD:54:11:7D:B3:7F:C9:44:1B:D0:AB
Certificate issuer: /CN=aa9156880773616f7c223aeddd33b5456101c1a1
Certificate serial: 01843CFF99AA19A4B64B0FFE2189F10687BB
Authority key identifier: AA:91:56:88:07:73:61:6F:7C:22:3A:ED:DD:33:B5:45:61:01:C1:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qpFWiAdzYW98Ijrt3TO1RWEBwaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/ab9881-be13-49a5-92c3-85730532bd9a/1/PD5WWJgi2JE-vVQRfbN_yUQb0Ks.roa
Signing time: Thu 03 Nov 2022 10:18:14 +0000
ROA not before: Thu 03 Nov 2022 10:18:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8423
IP address blocks: 91.198.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3c:ff:99:aa:19:a4:b6:4b:0f:fe:21:89:f1:06:87:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa9156880773616f7c223aeddd33b5456101c1a1
Validity
Not Before: Nov 3 10:18:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c3e56589822d8913ebd54117db37fc9441bd0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ac:65:a3:1f:57:90:21:3f:d5:95:c2:52:c5:
93:c3:82:16:77:51:bc:07:08:10:0d:9b:9c:cc:c0:
bb:f9:be:5a:c0:ee:e8:61:d0:65:fd:42:1b:86:81:
91:6c:a7:e3:92:9e:41:be:8e:92:5e:33:e3:73:2c:
c5:7b:05:67:62:21:61:d4:4c:54:1d:3e:e1:8a:ab:
0e:cb:ce:37:d6:fb:8e:48:65:37:e3:25:29:52:9c:
59:5f:7a:18:84:d1:19:db:e7:f2:fc:60:16:f3:ad:
c5:ae:ff:94:8f:8b:08:1b:b3:26:b6:d1:ea:f4:42:
f6:fe:d3:18:29:fe:9b:63:59:83:ee:ca:52:cc:ff:
61:81:d3:c8:ed:4b:0f:fe:5e:61:81:65:7a:71:b7:
25:5f:89:b5:a9:c5:90:58:80:3c:2e:cd:e7:38:3b:
ce:b6:72:78:a9:b5:9b:2a:56:b0:42:de:80:42:2e:
73:28:ea:b3:fa:02:7e:7a:b2:e4:68:14:78:01:a2:
67:f4:b2:a6:a2:fd:a3:da:c3:00:aa:bb:3e:ae:cc:
c9:1b:34:e7:4c:09:a3:a3:f9:09:de:5d:5a:a4:4c:
06:0b:d2:f4:6f:a6:16:b2:7f:bd:e0:76:96:33:ea:
11:6f:b6:05:c0:14:6d:79:7d:fc:ec:2a:61:02:31:
65:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:3E:56:58:98:22:D8:91:3E:BD:54:11:7D:B3:7F:C9:44:1B:D0:AB
X509v3 Authority Key Identifier:
keyid:AA:91:56:88:07:73:61:6F:7C:22:3A:ED:DD:33:B5:45:61:01:C1:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qpFWiAdzYW98Ijrt3TO1RWEBwaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/ab9881-be13-49a5-92c3-85730532bd9a/1/PD5WWJgi2JE-vVQRfbN_yUQb0Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/ab9881-be13-49a5-92c3-85730532bd9a/1/qpFWiAdzYW98Ijrt3TO1RWEBwaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.59.0/24
Signature Algorithm: sha256WithRSAEncryption
95:6c:b3:19:5c:08:c7:cc:d0:b6:14:5d:2b:12:cc:35:88:ad:
77:20:a6:60:9a:66:44:fa:e3:36:4f:1c:33:35:c1:cc:1c:f5:
3a:b7:75:b3:7f:ef:69:4d:2f:7d:16:7d:fb:ed:55:c1:bc:0b:
42:f0:06:c5:4b:c9:3b:fe:c7:60:1b:49:6e:6c:31:83:c5:bb:
0a:79:48:2a:89:74:79:6e:98:ea:8f:ce:50:d4:4a:14:de:64:
39:86:7f:ac:b2:2a:db:79:e8:09:db:3a:a7:59:6a:c7:ba:da:
68:1d:fb:6a:04:39:60:06:52:90:2d:4f:6a:06:3e:a4:6f:ae:
f0:d5:85:40:81:bd:84:e6:52:42:db:6c:40:56:3a:b1:ad:5f:
4e:4a:83:dd:90:d0:51:2c:92:52:56:56:46:f1:60:93:4f:46:
b9:f7:4b:db:1a:29:d2:31:5e:7b:1b:9d:dc:ca:d4:1e:4e:80:
aa:0a:aa:8a:54:8d:d8:17:49:9b:d6:b8:59:15:09:e3:9c:54:
92:a7:fe:ba:3b:c5:15:89:04:77:45:88:21:3b:e3:74:9a:5b:
7e:5d:9c:97:29:5a:a3:85:20:c2:5e:71:69:ea:d2:cc:40:31:
57:b3:75:68:42:2f:e7:2f:8c:74:6f:51:d5:65:d0:b3:3f:5d:
6e:de:18:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:51 2024 by rpki-client on console-fra.rpki-client.org