Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/542250-ba0b-4a10-8bdd-45794924cb53/1/OP2E9nVz4VsS6UlAgnG9VggkB8E.roa
File: OP2E9nVz4VsS6UlAgnG9VggkB8E.roa (raw, json)
Hash identifier: e6iw1prkDtoMqnWYtdRKFMZzniesDxYXzm0ZKOGcrW8=
Subject key identifier: 38:FD:84:F6:75:73:E1:5B:12:E9:49:40:82:71:BD:56:08:24:07:C1
Certificate issuer: /CN=8f54fc81e5153386cb42c17333050da831ada9e5
Certificate serial: 0184AA082586223287D1F06F6BABBAC5FE4C
Authority key identifier: 8F:54:FC:81:E5:15:33:86:CB:42:C1:73:33:05:0D:A8:31:AD:A9:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j1T8geUVM4bLQsFzMwUNqDGtqeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/542250-ba0b-4a10-8bdd-45794924cb53/1/OP2E9nVz4VsS6UlAgnG9VggkB8E.roa
Signing time: Thu 24 Nov 2022 14:26:11 +0000
ROA not before: Thu 24 Nov 2022 14:26:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48746
IP address blocks: 91.212.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:08:25:86:22:32:87:d1:f0:6f:6b:ab:ba:c5:fe:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f54fc81e5153386cb42c17333050da831ada9e5
Validity
Not Before: Nov 24 14:26:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38fd84f67573e15b12e949408271bd56082407c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8a:bc:d1:be:ad:4d:44:32:98:2a:4a:55:94:
d9:24:e4:f3:7e:ee:7a:4d:a2:1f:2b:50:25:e8:d7:
00:bd:92:9d:ee:f4:cc:28:b2:70:d2:f2:f6:00:50:
70:a8:49:e2:a0:56:1e:e7:17:8f:dd:0a:ae:9f:8a:
b8:06:a4:2a:8f:38:e0:9c:35:f3:2b:5d:af:25:1e:
6b:81:6d:66:cc:38:ef:b2:53:5d:b4:e0:29:60:d9:
27:ba:00:d4:87:e6:a0:96:3d:1a:9a:b9:00:3a:51:
e2:6d:bb:4e:f8:9f:8b:0d:fb:2f:e1:ae:7f:a0:62:
aa:05:2f:55:05:93:29:34:42:2e:bb:ce:5f:72:a0:
90:f7:cd:57:96:b6:4b:5d:1e:27:ce:76:c5:ff:67:
2f:9c:fb:65:43:03:97:d9:94:c8:cb:5e:4d:ae:be:
14:9c:dd:67:54:28:b1:fb:21:a6:3d:96:6c:5a:25:
99:95:ce:df:0e:4b:f2:63:63:ca:4f:27:c1:2d:b0:
eb:c2:69:f5:51:5b:73:fc:d1:3c:61:f7:d9:af:37:
f9:00:3d:b9:23:65:2e:93:48:ce:66:20:30:da:08:
b3:86:78:24:72:9a:cd:ac:5a:31:de:fd:be:10:73:
24:c3:27:b1:73:a3:66:86:7d:c8:d5:d0:a8:2b:6e:
8a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:FD:84:F6:75:73:E1:5B:12:E9:49:40:82:71:BD:56:08:24:07:C1
X509v3 Authority Key Identifier:
keyid:8F:54:FC:81:E5:15:33:86:CB:42:C1:73:33:05:0D:A8:31:AD:A9:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j1T8geUVM4bLQsFzMwUNqDGtqeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/542250-ba0b-4a10-8bdd-45794924cb53/1/OP2E9nVz4VsS6UlAgnG9VggkB8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/542250-ba0b-4a10-8bdd-45794924cb53/1/j1T8geUVM4bLQsFzMwUNqDGtqeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.37.0/24
Signature Algorithm: sha256WithRSAEncryption
38:06:34:0c:b2:24:2c:32:de:65:13:8f:c8:b8:7e:e4:81:f8:
15:c5:b4:ce:5c:19:1d:6d:24:11:ef:0b:a1:92:c8:29:23:37:
f0:99:9b:ff:54:a0:16:66:b9:00:f6:d4:01:4b:19:6f:06:e0:
dc:4a:7e:b5:45:6a:2f:da:e7:68:b8:56:ec:70:a0:2d:90:9e:
ef:28:0d:af:d3:e4:1a:11:2d:25:6c:27:f7:6a:94:63:ee:1d:
54:b6:5d:03:21:f6:0d:bf:be:b1:e7:83:14:aa:8e:ad:bb:99:
ba:48:68:0e:e9:f7:d9:3a:99:c4:88:26:80:24:62:04:72:af:
dd:38:89:a2:16:05:1f:d9:74:e1:4b:1b:6b:c2:f6:e5:4c:8f:
84:11:b4:17:a9:df:71:76:03:62:89:dc:a8:86:84:03:0f:fa:
31:85:f1:c7:3e:66:bb:7a:45:c6:25:46:a2:38:5b:3e:e2:c0:
28:09:0a:26:c2:c9:06:54:06:a4:3e:87:5a:a0:1a:93:f2:09:
d3:a9:a3:2f:1c:13:bb:9f:ec:06:7c:32:ba:99:ad:82:a9:91:
47:66:35:73:c6:67:64:c3:99:ac:3c:cc:82:83:3e:44:72:57:
59:1c:b4:dc:60:24:27:9d:50:3e:10:ca:e1:8e:f8:1c:07:ae:
31:71:bb:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:54 2024 by rpki-client on console-fra.rpki-client.org