Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e3c971-5324-4134-bead-597c43598577/1/7xv7ksAGG7ZOmOp_5vOhERbXWLQ.roa
File: 7xv7ksAGG7ZOmOp_5vOhERbXWLQ.roa (raw, json)
Hash identifier: W7RFfFqeacQgFS55+s18rb3DbE4RNr8wl/s7nYSVLNQ=
Subject key identifier: EF:1B:FB:92:C0:06:1B:B6:4E:98:EA:7F:E6:F3:A1:11:16:D7:58:B4
Certificate issuer: /CN=bf1f6cd6fab95d241cd9ac5f85f4d05f9de58f9b
Certificate serial: 04653F13
Authority key identifier: BF:1F:6C:D6:FA:B9:5D:24:1C:D9:AC:5F:85:F4:D0:5F:9D:E5:8F:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx9s1vq5XSQc2axfhfTQX53lj5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e3c971-5324-4134-bead-597c43598577/1/7xv7ksAGG7ZOmOp_5vOhERbXWLQ.roa
Signing time: Sat 01 Jan 2022 02:52:05 +0000
ROA not before: Sat 01 Jan 2022 02:52:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213172
IP address blocks: 91.217.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73744147 (0x4653f13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1f6cd6fab95d241cd9ac5f85f4d05f9de58f9b
Validity
Not Before: Jan 1 02:52:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef1bfb92c0061bb64e98ea7fe6f3a11116d758b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:cd:8a:f9:47:6a:e3:af:d0:53:6e:df:bd:d1:
bb:db:99:92:ce:3e:8a:5b:5a:ac:1e:92:b8:ba:5d:
aa:65:3c:99:6c:0e:7f:21:23:c7:cc:7c:58:17:82:
03:a2:cb:e1:1b:f0:76:42:7d:b3:8c:2c:f1:a5:19:
03:f7:6a:65:29:d5:08:ef:c8:07:31:b8:22:dc:f9:
6a:6b:e5:1e:71:24:db:0b:83:98:ea:4f:8d:ce:30:
1d:26:e2:96:7f:a0:61:10:2d:ee:34:7a:b4:e4:11:
7a:dd:c7:59:20:20:15:ee:37:de:0a:aa:24:46:a1:
6f:ed:42:49:a3:a4:4b:69:17:fc:05:c1:78:e9:a7:
27:e3:2e:51:fa:c8:f4:da:01:bc:20:79:5a:3d:49:
03:43:e3:e1:de:c9:5e:11:fe:26:cd:c6:ed:e1:7c:
b7:83:b6:b8:a6:62:8c:5e:8e:36:75:5a:c2:4a:19:
16:da:40:b8:bb:3a:2b:11:ee:ee:8c:2d:ac:f1:4c:
59:a3:ad:50:73:a9:6b:16:5f:3f:2d:f2:51:c2:ae:
7b:77:c0:db:53:bf:99:aa:58:8f:b4:e6:06:58:72:
6c:a4:71:fb:4f:c9:93:6e:7e:5d:d8:a0:22:c8:16:
b9:c6:b4:fa:40:7e:49:04:bf:07:bd:d4:c1:2b:24:
18:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:1B:FB:92:C0:06:1B:B6:4E:98:EA:7F:E6:F3:A1:11:16:D7:58:B4
X509v3 Authority Key Identifier:
keyid:BF:1F:6C:D6:FA:B9:5D:24:1C:D9:AC:5F:85:F4:D0:5F:9D:E5:8F:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx9s1vq5XSQc2axfhfTQX53lj5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e3c971-5324-4134-bead-597c43598577/1/7xv7ksAGG7ZOmOp_5vOhERbXWLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e3c971-5324-4134-bead-597c43598577/1/vx9s1vq5XSQc2axfhfTQX53lj5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.240.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:62:4d:61:76:a5:89:1d:6c:4a:d3:de:c8:2f:34:6b:cb:3f:
12:c4:52:29:5d:77:f3:e4:8b:5b:cd:86:01:2e:3f:19:11:d9:
3f:6e:3a:76:4c:6c:4e:f9:c3:43:d3:53:04:c0:71:98:1f:bf:
e7:29:1a:d1:03:89:5e:58:86:67:df:68:86:6e:68:fa:ae:41:
c8:ba:a9:96:8e:3c:1c:f0:5c:43:f0:36:6a:34:8f:b3:d8:3c:
19:cb:e0:4c:53:b7:06:b8:86:c3:b9:b6:90:89:18:60:14:8d:
18:07:4f:ed:f5:ea:bb:3c:0b:b8:a7:49:66:3a:08:36:b1:ce:
c9:85:dc:3f:09:25:29:70:37:dc:ce:63:88:da:c6:f3:fc:1e:
4d:3a:cc:c7:e7:a2:41:fb:ee:65:f0:05:3f:46:b6:a1:61:9b:
ea:60:e7:c3:a6:68:fc:e5:cf:8e:0c:74:69:68:9c:d0:70:02:
26:d1:14:ad:7c:79:ba:87:fd:2f:da:b7:0a:65:4c:f0:7b:d2:
55:87:6c:ed:b1:c5:19:65:65:38:70:f0:a5:86:a0:a7:1e:5f:
7a:64:78:93:e2:18:9a:25:2c:73:df:ff:86:dd:bb:1b:11:fb:
b6:1c:2c:73:f6:1f:26:a8:cf:5d:c5:54:ba:20:7e:7c:f8:1c:
1a:6c:41:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:32 2024 by rpki-client on console-fra.rpki-client.org