Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/zLEmYubrR1IiRJl1ULng8Rw0Nxc.roa
File: zLEmYubrR1IiRJl1ULng8Rw0Nxc.roa (raw, json)
Hash identifier: WLgL1IHoGWt25tPESqNg/KWyG7DR4MWgUDaQECxBTkI=
Subject key identifier: CC:B1:26:62:E6:EB:47:52:22:44:99:75:50:B9:E0:F1:1C:34:37:17
Certificate issuer: /CN=233e3828411bafab006e75fd0dd5f5f9ef55ec25
Certificate serial: 035D813E
Authority key identifier: 23:3E:38:28:41:1B:AF:AB:00:6E:75:FD:0D:D5:F5:F9:EF:55:EC:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iz44KEEbr6sAbnX9DdX1-e9V7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/zLEmYubrR1IiRJl1ULng8Rw0Nxc.roa
Signing time: Sat 01 Jan 2022 08:01:32 +0000
ROA not before: Sat 01 Jan 2022 08:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59452
IP address blocks: 91.241.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56459582 (0x35d813e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=233e3828411bafab006e75fd0dd5f5f9ef55ec25
Validity
Not Before: Jan 1 08:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccb12662e6eb47522244997550b9e0f11c343717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b5:87:f9:0f:38:c6:eb:d0:4f:fe:0c:2b:6e:
dd:c0:08:21:d0:25:af:66:0d:f6:cd:8c:79:3c:69:
4d:78:98:7b:fd:fb:d8:95:35:ee:e4:7c:7f:92:df:
1c:7f:50:13:28:a4:95:69:ed:cd:1b:70:6e:8a:4a:
d5:ab:20:da:dc:69:3e:74:b4:6e:8b:a1:48:23:45:
15:32:34:25:9e:bc:72:e4:ad:aa:eb:7c:e3:35:a2:
bf:bc:2f:30:db:fd:e2:63:33:25:97:fa:4f:81:a8:
90:41:94:63:39:ac:cf:23:98:6d:41:ae:6f:eb:b7:
68:1d:80:d0:15:dc:74:0d:b4:b8:f0:19:e7:de:cc:
2b:b0:33:b3:b0:c1:de:25:f4:ac:42:e4:eb:a6:4f:
80:80:37:e6:7b:01:ac:7e:03:fb:f8:ac:92:fa:65:
00:cf:88:0c:eb:fd:31:a9:64:61:f5:66:70:34:5e:
f9:aa:72:a9:25:87:26:0b:b2:6f:41:f0:66:50:eb:
29:23:1c:db:bd:aa:10:71:74:0b:21:46:73:dd:61:
01:5e:14:06:2e:84:ad:0c:e5:86:4c:bc:40:e3:da:
c9:84:29:f7:1e:f2:d5:b9:c4:43:31:d0:80:0a:b6:
a9:6e:e4:2e:6c:94:7f:95:2e:a5:48:2b:8b:e8:af:
8e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B1:26:62:E6:EB:47:52:22:44:99:75:50:B9:E0:F1:1C:34:37:17
X509v3 Authority Key Identifier:
keyid:23:3E:38:28:41:1B:AF:AB:00:6E:75:FD:0D:D5:F5:F9:EF:55:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iz44KEEbr6sAbnX9DdX1-e9V7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/zLEmYubrR1IiRJl1ULng8Rw0Nxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/Iz44KEEbr6sAbnX9DdX1-e9V7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.45.0/24
Signature Algorithm: sha256WithRSAEncryption
51:24:77:2c:37:32:7f:5a:b1:b8:9d:f0:4c:da:a0:29:eb:d3:
94:89:cb:4e:91:f7:ae:b4:89:0a:fe:86:5d:16:56:69:36:32:
6e:a7:20:69:bf:4a:0c:52:de:2b:e2:14:63:03:30:15:b7:de:
e9:8e:55:c7:0d:69:35:d9:16:35:33:e6:15:6d:eb:73:87:69:
94:6d:06:c3:0a:07:15:62:72:82:34:27:1a:d1:40:0c:ae:a0:
48:6d:ed:0a:09:a8:cf:74:4b:55:40:b9:32:06:a6:47:ae:01:
25:87:70:0d:33:ad:49:d8:ec:a8:00:24:0f:65:59:a9:2b:1f:
6e:e1:44:e2:18:a3:0a:6e:fc:9f:59:08:ad:7e:32:dc:f5:dd:
de:7a:15:b8:2d:c8:34:4c:e5:d9:82:bc:82:83:59:e4:19:db:
7e:e3:61:fd:31:f1:8d:35:21:ff:2e:06:af:a0:0e:41:ca:66:
73:4c:53:4e:d3:19:aa:ea:76:b5:79:8a:da:41:5e:e3:dc:33:
1c:de:15:58:94:17:c0:9e:15:d9:80:6c:0e:78:2d:0e:e9:1d:
16:05:83:10:cf:22:52:62:b5:8a:9e:c8:14:ec:fb:3b:f7:9c:
75:81:fe:02:fb:fb:29:0d:e2:ed:79:18:69:75:0d:b8:22:3a:
06:06:05:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:30 2024 by rpki-client on console-fra.rpki-client.org