Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/SOJFD8CgftJ0f_v14tlM1DG23J0.roa
File: SOJFD8CgftJ0f_v14tlM1DG23J0.roa (raw, json)
Hash identifier: Ggi2Y/xamTTY+4cOY0R5vlZ5g7dqJaEeoN8u8RF1VMU=
Subject key identifier: 48:E2:45:0F:C0:A0:7E:D2:74:7F:FB:F5:E2:D9:4C:D4:31:B6:DC:9D
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 162D1814
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/SOJFD8CgftJ0f_v14tlM1DG23J0.roa
Signing time: Fri 22 Apr 2022 12:41:17 +0000
ROA not before: Fri 22 Apr 2022 12:41:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34494
IP address blocks: 91.211.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372054036 (0x162d1814)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: Apr 22 12:41:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48e2450fc0a07ed2747ffbf5e2d94cd431b6dc9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:65:86:71:c2:bf:38:c4:ba:6a:c6:ef:d6:98:
a2:1d:36:27:55:6f:c0:66:fe:35:03:61:8f:d7:7a:
03:3c:b8:fe:87:d4:3e:4f:43:3a:6b:20:1e:bf:de:
02:00:38:83:0c:4d:dc:ff:1d:2f:57:45:ae:65:13:
60:e5:80:eb:69:a9:23:9f:8b:61:68:33:7d:27:92:
20:f4:12:d0:5d:bd:55:0c:a8:85:a2:8b:d1:32:ae:
19:d0:ba:4b:0b:a5:13:1e:8b:3c:8f:f6:98:ea:5d:
34:7c:6b:a9:14:d9:85:5a:4c:1e:1d:b5:5a:a8:6e:
63:58:fb:e9:e7:6c:60:e7:2d:56:f0:52:5c:b1:7b:
71:30:de:b2:e6:e5:59:92:ad:1b:c1:9e:95:87:89:
fa:84:80:11:5f:8c:8c:4b:41:de:6a:71:4f:d7:2f:
21:f1:9d:39:18:a0:a7:01:41:9a:97:74:9f:48:ec:
56:3c:e2:5f:a0:7a:12:1a:d2:9d:c2:25:7c:13:1b:
64:a5:b6:ca:36:b6:df:41:4a:ad:c0:1a:45:c5:16:
54:f3:71:5b:f5:20:51:8f:c5:e6:b9:88:e4:61:f2:
b6:a4:76:87:35:7a:dd:47:62:0b:b0:8a:3f:ab:6f:
65:6f:0d:5a:ec:37:7a:8d:93:91:a3:d1:35:e4:70:
bb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E2:45:0F:C0:A0:7E:D2:74:7F:FB:F5:E2:D9:4C:D4:31:B6:DC:9D
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/SOJFD8CgftJ0f_v14tlM1DG23J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.100.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:78:02:12:85:c7:cf:08:99:f0:dc:6c:af:a1:72:29:80:e1:
fe:d8:a9:9a:65:c6:a9:52:a4:d3:81:7f:48:81:8a:58:2c:ce:
64:c6:f8:e2:f3:80:82:06:06:59:b8:aa:b4:31:df:82:46:62:
43:5d:3c:86:6e:82:22:d4:ca:a8:e8:72:69:20:00:6a:4c:9a:
18:61:88:16:35:bc:af:e8:e8:14:62:f1:b4:aa:74:11:dd:20:
e3:92:ae:2c:12:13:96:67:a2:43:c8:86:f4:dc:c2:98:b8:21:
9b:f0:54:e9:87:da:b0:32:4e:1f:a1:ca:d1:39:cc:a4:aa:b1:
4a:94:04:33:f6:d5:65:b7:e9:b6:87:8e:69:9e:8c:da:06:82:
24:e0:ba:0a:8f:72:af:03:b1:20:bb:4c:91:a1:73:3b:11:f3:
14:b5:c3:17:a4:70:3b:1b:c4:cf:d9:cc:60:3a:e0:79:21:c8:
95:53:11:e9:ba:53:2b:d6:5f:fa:fe:9a:51:82:79:28:17:c0:
60:21:ae:b2:0a:01:cc:f3:8a:fa:61:00:3d:25:fb:3e:62:bd:
5b:81:f9:72:0c:30:48:5b:8f:f2:e0:fb:42:b0:9c:78:b0:4c:
6a:d6:93:b2:94:63:58:08:5a:85:eb:57:0b:68:7f:c5:f5:48:
7a:5d:1f:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:18 2024 by rpki-client on console-fra.rpki-client.org