Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/aG_g1Ku79e59UlHCgpDLScgVCoA.roa
File: aG_g1Ku79e59UlHCgpDLScgVCoA.roa (raw, json)
Hash identifier: fTjisZimPXfUVOXskAIeP+v1YZkpDy5B+gDDErlIVA0=
Subject key identifier: 68:6F:E0:D4:AB:BB:F5:EE:7D:52:51:C2:82:90:CB:49:C8:15:0A:80
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17EB570D
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/aG_g1Ku79e59UlHCgpDLScgVCoA.roa
Signing time: Sat 01 Jan 2022 03:59:55 +0000
ROA not before: Sat 01 Jan 2022 03:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34653
IP address blocks: 213.91.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401299213 (0x17eb570d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=686fe0d4abbbf5ee7d5251c28290cb49c8150a80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d5:df:a5:b7:e9:8a:5e:c7:ce:9e:2d:51:52:
d3:a3:7e:4d:29:e0:76:a2:56:55:4c:94:a2:eb:59:
6d:8e:61:6a:01:fa:da:0e:84:af:7d:43:df:ba:d5:
d9:b4:ce:a3:f3:ef:47:f8:25:18:a7:96:81:b2:c4:
ab:8a:b8:d4:3d:b8:c2:2e:b4:8a:ea:04:00:ba:d8:
63:18:ff:db:28:3c:31:78:5e:ab:8f:b9:04:17:6b:
67:e0:1a:15:09:04:9b:e9:5c:12:4d:d5:e7:b4:aa:
0d:ef:f3:d9:b9:08:32:12:8d:a5:bd:94:98:e5:85:
2a:7e:ae:4e:ae:b5:c5:cc:d4:18:3a:58:e4:7d:b0:
ce:fe:86:f2:44:1b:18:6b:ed:e3:f6:00:4a:12:eb:
df:28:bc:e8:bb:54:d3:25:a3:fa:ef:39:ae:0b:bc:
18:d2:b6:a3:e3:c7:db:d5:41:30:61:31:66:c7:31:
b1:be:83:d3:a1:83:48:87:8e:23:27:cc:b3:79:c3:
b9:35:44:57:ed:6f:48:a1:9b:41:00:1c:8a:83:55:
db:e1:7d:ca:45:80:89:58:96:9e:75:1e:76:ac:7a:
63:0a:79:e3:95:36:83:8a:a1:a8:20:2f:90:f8:5e:
56:f4:a0:a4:5d:8b:47:a4:a4:82:28:4a:00:46:b1:
ef:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6F:E0:D4:AB:BB:F5:EE:7D:52:51:C2:82:90:CB:49:C8:15:0A:80
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/aG_g1Ku79e59UlHCgpDLScgVCoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.198.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:2f:47:de:4a:bd:01:1d:70:85:8e:e3:18:72:04:e1:20:96:
83:ce:54:7e:3d:d4:20:ac:11:a9:6c:28:cd:f2:5e:72:6a:4b:
f6:1e:3e:a7:f3:b1:c2:7b:ee:d7:4e:0a:f3:3d:6a:f5:97:6e:
de:bb:f5:50:e9:66:8e:4d:fd:cb:aa:a1:07:43:97:b9:3b:ee:
a0:69:88:8f:2b:79:15:41:da:4c:ed:37:9d:eb:9a:88:02:ab:
1b:5c:25:39:fa:19:a3:cc:fe:38:1d:50:45:cc:dc:50:30:8f:
3c:5c:eb:95:34:c7:52:9d:3a:af:16:6e:16:fb:47:b6:23:e6:
a5:39:7a:57:7a:5a:7d:bb:f8:74:ad:04:d3:6a:d1:bc:50:99:
36:a8:ec:39:35:25:24:8e:88:d0:07:2c:c7:3d:d0:20:67:74:
07:51:53:14:68:c1:6c:02:ea:6a:24:05:05:6d:ba:e1:bd:ce:
14:41:f1:16:bd:9a:58:f4:27:2e:e1:1f:33:ea:7e:89:e2:02:
5f:db:e5:e2:a4:4e:c2:6b:f8:f1:2c:0c:4f:7f:0b:6c:41:e2:
8c:32:fd:09:dd:5a:8e:e5:f2:47:51:de:0f:6d:8f:6a:a6:aa:
cb:8a:5a:24:4a:72:2a:e9:f7:ab:10:39:5a:c7:7a:2e:e2:fe:
4b:7a:eb:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org