Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/054a71-8253-4089-b962-cbbf76f3533a/1/xi0vhIyGy4rMi1zjT3owHxKUBYg.roa
File: xi0vhIyGy4rMi1zjT3owHxKUBYg.roa (raw, json)
Hash identifier: BC9SMoR/bPsh1y1HvaOLnpmEUd961RdQdRggFQiI9YE=
Subject key identifier: C6:2D:2F:84:8C:86:CB:8A:CC:8B:5C:E3:4F:7A:30:1F:12:94:05:88
Certificate issuer: /CN=2f600d291d4823835af103aad39ede05bd12c9b6
Certificate serial: 0C5DEF86
Authority key identifier: 2F:60:0D:29:1D:48:23:83:5A:F1:03:AA:D3:9E:DE:05:BD:12:C9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L2ANKR1II4Na8QOq057eBb0SybY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/054a71-8253-4089-b962-cbbf76f3533a/1/xi0vhIyGy4rMi1zjT3owHxKUBYg.roa
Signing time: Sat 01 Jan 2022 10:56:33 +0000
ROA not before: Sat 01 Jan 2022 10:56:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59573
IP address blocks: 91.243.160.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 207482758 (0xc5def86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f600d291d4823835af103aad39ede05bd12c9b6
Validity
Not Before: Jan 1 10:56:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c62d2f848c86cb8acc8b5ce34f7a301f12940588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:49:d1:1a:76:ff:43:f2:9e:24:f9:5a:2a:24:
36:ec:04:be:d7:cc:60:cf:10:a5:b2:1d:c0:0d:21:
05:f3:42:8c:c1:45:18:8e:ea:0c:82:1e:65:88:89:
62:f6:1f:80:ca:ef:a5:f5:fc:43:49:e9:24:b7:23:
1d:15:8a:48:e9:ac:3c:6c:8c:a0:dd:05:ff:0d:9b:
3d:a6:e6:be:01:03:04:76:29:4f:6c:48:10:55:38:
93:0f:40:f5:fc:57:7e:b8:1e:12:10:a2:13:fd:e8:
d5:e7:64:1a:94:d8:f9:70:49:4e:c1:d0:26:1d:1e:
99:34:01:3c:43:12:43:01:74:4a:66:c3:dc:a4:47:
7b:8c:cb:09:bb:79:e3:55:4a:5a:a6:05:7a:4b:1e:
d0:61:5d:c0:c5:0e:14:1b:2c:f7:78:58:72:ec:e0:
40:09:95:c9:86:53:a6:ba:e7:9c:80:fc:38:7d:83:
28:eb:25:64:7b:0b:5c:bc:34:ac:0a:07:a8:ab:44:
ef:60:53:4f:f6:95:25:b6:12:f7:8e:06:9f:cc:f8:
ea:a4:23:b1:61:c9:8c:81:0d:58:5e:8c:1e:b5:b9:
0b:47:75:bd:50:08:06:d2:81:8f:0b:7c:1c:1b:dc:
4b:60:d8:c8:25:32:e2:5c:ce:d7:e1:6f:03:c8:ac:
25:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2D:2F:84:8C:86:CB:8A:CC:8B:5C:E3:4F:7A:30:1F:12:94:05:88
X509v3 Authority Key Identifier:
keyid:2F:60:0D:29:1D:48:23:83:5A:F1:03:AA:D3:9E:DE:05:BD:12:C9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L2ANKR1II4Na8QOq057eBb0SybY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/054a71-8253-4089-b962-cbbf76f3533a/1/xi0vhIyGy4rMi1zjT3owHxKUBYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/054a71-8253-4089-b962-cbbf76f3533a/1/L2ANKR1II4Na8QOq057eBb0SybY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.160.0/20
Signature Algorithm: sha256WithRSAEncryption
93:2b:fe:0b:9f:0a:0d:2a:ea:e0:d3:79:d4:63:06:1e:e7:a8:
f9:1c:a6:6c:69:67:a9:19:8a:ec:e8:dd:30:03:29:20:09:22:
8e:c2:f5:59:ad:1f:cf:d6:87:50:9c:d4:0d:08:63:1e:b9:42:
10:5d:a9:f2:c1:93:c2:ab:96:7d:1d:a4:2c:2f:86:61:7b:27:
0e:c3:ba:5f:b5:80:3b:fa:34:48:b7:2f:82:95:97:66:4b:fa:
5a:03:05:6f:db:bc:04:63:58:50:fa:7d:c4:10:4a:4f:af:b3:
01:c1:83:9d:82:df:57:e1:c3:75:59:5f:8b:11:ec:22:39:b0:
84:76:fa:3a:91:47:17:a6:67:6a:f8:dc:e8:d0:af:d0:3d:6a:
3d:79:0b:00:5b:87:4f:c4:65:ea:2a:02:7e:17:f8:a4:01:6f:
da:62:80:42:99:b1:bc:37:0c:98:b2:41:df:1b:c0:cf:bb:32:
25:ab:13:1c:df:57:51:66:52:cb:5b:a4:ed:0b:06:c3:73:e7:
d7:0a:16:5f:eb:83:7e:e9:be:94:86:fc:48:ca:32:e6:12:18:
da:db:7d:22:11:71:5c:ea:1e:35:5f:d2:93:30:2e:cf:0b:f3:
0d:f8:6a:60:15:da:d8:c3:ab:12:9c:46:b0:40:5a:ab:03:6e:
0f:ed:ff:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:33 2024 by rpki-client on console-fra.rpki-client.org