Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/deb874-f90b-42c4-bcd2-47bbf21eac9f/1/TI-CzLNmyhb62KSXXAaHHt_4wMc.roa
File: TI-CzLNmyhb62KSXXAaHHt_4wMc.roa (raw, json)
Hash identifier: /IMUYlyglsvZojPhVxSHTT6eFWKcTK0hnbcnhXEojAc=
Subject key identifier: 4C:8F:82:CC:B3:66:CA:16:FA:D8:A4:97:5C:06:87:1E:DF:F8:C0:C7
Certificate issuer: /CN=ad10cdd0b8b73304c985fde1b10e40182bf13902
Certificate serial: 0A0D5506
Authority key identifier: AD:10:CD:D0:B8:B7:33:04:C9:85:FD:E1:B1:0E:40:18:2B:F1:39:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRDN0Li3MwTJhf3hsQ5AGCvxOQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/deb874-f90b-42c4-bcd2-47bbf21eac9f/1/TI-CzLNmyhb62KSXXAaHHt_4wMc.roa
Signing time: Sat 01 Jan 2022 10:01:06 +0000
ROA not before: Sat 01 Jan 2022 10:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57442
IP address blocks: 91.232.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168645894 (0xa0d5506)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad10cdd0b8b73304c985fde1b10e40182bf13902
Validity
Not Before: Jan 1 10:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c8f82ccb366ca16fad8a4975c06871edff8c0c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:00:f3:1a:d1:89:36:e2:96:40:ab:5c:a4:bc:
8c:ac:57:d3:76:92:06:5d:b4:11:c8:7a:ca:63:98:
66:c7:7b:4f:96:e5:b4:10:5e:8a:9a:fc:6e:f0:a5:
51:c4:28:c5:38:80:cf:63:2c:4e:50:2f:d9:63:a0:
02:cf:d7:52:8d:92:d7:e4:58:1d:e2:66:d8:11:e5:
6b:b9:6b:59:28:93:c2:e2:47:5d:da:13:af:fa:19:
87:47:65:90:95:46:71:ee:0f:56:13:7e:b8:03:8b:
6b:e4:0e:db:09:f0:92:85:e8:96:1b:f1:8b:0f:47:
82:73:56:32:7f:55:84:0a:c1:25:32:b3:6b:43:be:
ab:11:b5:38:41:1d:12:0e:fc:26:2e:5b:04:dc:84:
e1:d1:5b:2d:85:70:45:64:24:6b:e9:f6:5b:6c:8a:
c6:e2:ba:28:63:8d:9d:56:5c:ef:d5:81:50:4f:46:
91:60:c7:81:80:80:aa:86:7c:d5:2d:ff:d9:4d:f5:
b9:01:f0:a9:95:76:cc:27:32:7a:80:7c:73:e2:7e:
47:cd:70:6a:fa:8d:49:cf:7b:67:d5:f5:11:05:ff:
8f:05:b1:93:14:31:82:25:50:92:39:c0:4e:89:bc:
5c:d0:e3:f1:38:53:9c:44:6f:59:49:8b:4a:e8:d1:
8b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:8F:82:CC:B3:66:CA:16:FA:D8:A4:97:5C:06:87:1E:DF:F8:C0:C7
X509v3 Authority Key Identifier:
keyid:AD:10:CD:D0:B8:B7:33:04:C9:85:FD:E1:B1:0E:40:18:2B:F1:39:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRDN0Li3MwTJhf3hsQ5AGCvxOQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/deb874-f90b-42c4-bcd2-47bbf21eac9f/1/TI-CzLNmyhb62KSXXAaHHt_4wMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/deb874-f90b-42c4-bcd2-47bbf21eac9f/1/rRDN0Li3MwTJhf3hsQ5AGCvxOQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.21.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:aa:05:b1:ea:8b:f6:d4:ed:5e:25:10:f4:66:dd:e8:b2:c1:
e2:99:2f:a5:be:ce:c9:95:fe:d3:1f:f6:b9:43:b7:22:90:33:
a0:e2:6a:c5:ab:92:6d:12:93:7a:23:0a:9e:d4:43:e7:7a:93:
28:2c:62:56:ed:bf:2b:e3:33:5b:e3:1e:43:92:21:35:b9:2b:
0f:ff:87:ac:7d:85:a1:09:5f:d4:15:70:13:72:6f:15:a3:ed:
f5:6b:cf:27:b8:fc:ee:74:07:49:09:31:3a:47:00:6c:84:3b:
99:38:d6:f5:e5:be:83:9c:bf:7a:88:72:45:ee:e4:21:12:cd:
f9:71:d1:97:5c:31:70:fd:c0:39:98:1c:8a:3c:45:48:c8:e1:
d5:0f:0c:1d:6e:b6:23:e0:00:29:4a:f0:6e:55:63:40:25:0d:
8d:2e:1d:62:7c:d3:ff:0a:35:ca:7f:83:e1:a4:f0:f8:9d:b3:
e3:bb:9d:05:a2:e6:52:13:6d:c5:d1:b9:29:d5:78:44:4f:14:
63:b1:25:89:56:d3:19:5a:78:f7:59:45:2c:56:d8:97:d7:9f:
96:23:c3:c6:36:2f:f3:52:31:55:12:36:09:9a:49:e1:bd:8e:
54:9c:45:89:4e:9a:28:2b:31:3c:fa:c0:f0:74:d2:c3:ba:b0:
fe:fc:c2:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:55 2024 by rpki-client on console-fra.rpki-client.org