Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/AudexTrHuKZ578ywfoFOlndyEUQ.roa
File: AudexTrHuKZ578ywfoFOlndyEUQ.roa (raw, json)
Hash identifier: hljywq6ov2UhQ59vQDUbWZj9FK/F49LZlONKnf1xrVY=
Subject key identifier: 02:E7:5E:C5:3A:C7:B8:A6:79:EF:CC:B0:7E:81:4E:96:77:72:11:44
Certificate issuer: /CN=df8f961c6efbb7f9ce74217b1d5dbb54e981c6f2
Certificate serial: 0478CBC2
Authority key identifier: DF:8F:96:1C:6E:FB:B7:F9:CE:74:21:7B:1D:5D:BB:54:E9:81:C6:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/34-WHG77t_nOdCF7HV27VOmBxvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/AudexTrHuKZ578ywfoFOlndyEUQ.roa
Signing time: Sat 01 Jan 2022 16:06:57 +0000
ROA not before: Sat 01 Jan 2022 16:06:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.239.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75025346 (0x478cbc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df8f961c6efbb7f9ce74217b1d5dbb54e981c6f2
Validity
Not Before: Jan 1 16:06:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02e75ec53ac7b8a679efccb07e814e9677721144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0d:a7:43:4c:61:be:cc:49:ec:fb:5f:92:36:
12:b6:0f:d8:c9:ef:be:87:fa:81:0d:76:40:97:bf:
eb:f7:ad:21:b5:b8:37:09:d4:0d:7d:a6:43:09:ec:
36:54:1b:90:0e:36:09:d9:6b:3d:dd:25:10:fd:e8:
af:ae:d5:c9:bf:c6:42:50:b4:c6:3a:33:82:95:21:
e6:e0:d8:80:5d:67:ec:41:6e:f8:87:96:77:75:6f:
fe:41:91:53:43:cf:11:9e:5b:01:37:68:62:c9:29:
6d:27:7d:4a:8a:ea:1f:1a:9a:15:65:0c:81:7d:0a:
27:bc:00:f9:2d:c8:24:d3:ef:de:9f:cb:7d:66:c1:
e0:4b:67:d4:a3:9f:52:b1:c4:b6:43:7a:ca:d1:db:
5f:5e:4f:c3:3c:e7:b2:51:ce:d5:7f:52:30:03:8a:
eb:2f:a4:2e:d6:d2:ad:df:41:a8:93:70:ce:49:cd:
25:eb:62:d7:39:e5:d3:e4:b8:f5:9c:af:3a:ea:56:
e3:70:d3:ff:6c:8a:60:87:a5:87:7a:9a:6a:bf:cb:
21:71:e1:89:f2:19:f1:c0:52:40:2a:32:db:ed:f0:
8b:17:19:0a:72:93:30:a0:24:30:c2:76:29:23:12:
3f:e4:14:50:8f:53:2b:9c:ad:63:d4:1f:82:62:70:
31:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:E7:5E:C5:3A:C7:B8:A6:79:EF:CC:B0:7E:81:4E:96:77:72:11:44
X509v3 Authority Key Identifier:
keyid:DF:8F:96:1C:6E:FB:B7:F9:CE:74:21:7B:1D:5D:BB:54:E9:81:C6:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/34-WHG77t_nOdCF7HV27VOmBxvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/AudexTrHuKZ578ywfoFOlndyEUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/90e70f-85dc-44a9-bb23-27f2bc162a07/1/34-WHG77t_nOdCF7HV27VOmBxvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.58.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:1e:e4:93:36:a3:ca:17:3c:80:5d:92:12:04:34:7d:ca:11:
bd:30:ef:61:fe:a2:90:7f:89:e0:05:a1:f6:c3:2a:35:dc:3d:
74:0a:13:ff:a8:98:17:fb:ba:d9:1d:4e:d0:2f:74:86:af:e4:
32:e8:80:0b:f3:9f:59:f0:e2:4b:40:31:6b:cf:7b:7d:7d:7f:
c2:c5:a6:a1:78:d8:46:e9:c9:ac:c7:c9:a4:b2:0d:16:b3:6c:
d0:b9:21:85:a1:34:7b:a2:25:74:10:3b:78:c2:e3:dc:5c:da:
09:13:a7:49:85:0e:2e:d8:e7:2d:77:23:b6:df:bb:8f:47:5e:
7a:0b:05:5d:b6:39:dd:d1:5b:92:b3:fe:41:22:e4:46:b0:b8:
5b:8c:82:34:0a:c5:35:73:6b:fc:e0:b7:8b:78:91:61:3a:b7:
22:d9:1a:6d:bb:22:fe:09:50:42:73:6b:26:22:81:7b:47:ae:
17:72:95:a3:9b:d3:ab:94:2d:d9:98:f7:75:87:83:8c:77:6f:
74:e7:66:b4:f8:cd:4b:56:4b:e4:27:69:87:35:df:a0:99:9d:
3b:fd:8e:9f:3b:af:7c:b2:7c:c8:0e:dd:2e:e4:79:73:41:d8:
6b:95:fd:d5:2d:60:6d:cd:d9:73:6d:e3:21:60:b1:91:11:fb:
00:ea:48:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:01 2024 by rpki-client on console-ams.rpki-client.org