Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/j7gvrIDPAc0M3J7PsYUhrxcZgcg.roa
File: j7gvrIDPAc0M3J7PsYUhrxcZgcg.roa (raw, json)
Hash identifier: z3BdP2MaHeC+5CI/kwm5f8VU7oc9rGTXN1Q10WSFDt8=
Subject key identifier: 8F:B8:2F:AC:80:CF:01:CD:0C:DC:9E:CF:B1:85:21:AF:17:19:81:C8
Certificate issuer: /CN=7870561798e5c8a26707620df082ef3778d7163d
Certificate serial: 052F4DEA
Authority key identifier: 78:70:56:17:98:E5:C8:A2:67:07:62:0D:F0:82:EF:37:78:D7:16:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBWF5jlyKJnB2IN8ILvN3jXFj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/j7gvrIDPAc0M3J7PsYUhrxcZgcg.roa
Signing time: Sat 01 Jan 2022 09:54:17 +0000
ROA not before: Sat 01 Jan 2022 09:54:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49964
IP address blocks: 91.220.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86986218 (0x52f4dea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7870561798e5c8a26707620df082ef3778d7163d
Validity
Not Before: Jan 1 09:54:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fb82fac80cf01cd0cdc9ecfb18521af171981c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:04:7c:e7:1a:36:d9:12:dd:cc:bd:79:93:00:
4e:d7:10:05:52:37:63:cd:34:af:ac:e9:cc:95:19:
a2:e2:62:ec:a4:b8:a5:30:a8:29:fa:f4:fb:18:ad:
e9:6d:c3:3a:cf:82:c6:a4:51:7a:ea:93:00:97:ac:
c4:61:c3:69:6f:1b:1f:42:d1:46:a1:1c:be:b7:be:
9d:f8:12:86:f5:39:61:32:bb:8e:f9:8e:46:70:a3:
59:04:d0:02:2e:20:97:c4:69:93:7f:71:2e:cb:4c:
9c:8c:04:57:60:44:ce:9c:00:2d:0f:a4:0e:25:b0:
06:ed:3a:59:ed:c3:4a:70:fc:03:fe:3b:2e:ef:20:
e9:e7:18:0d:e9:f9:1d:ef:7a:50:c3:e9:ce:70:69:
ba:ce:26:23:f4:cb:b7:6d:b5:92:47:9c:6e:b7:4d:
5d:3b:f4:bf:b5:e2:27:f8:68:56:cd:d4:d8:8b:6c:
6d:e2:d7:e1:4b:16:9d:bc:c6:93:0e:e5:94:1d:54:
18:ee:74:bb:ea:1a:2b:f2:d5:2e:44:8a:4d:45:4b:
ee:d2:7c:61:db:db:3e:8d:9d:a7:23:ac:05:1e:f4:
42:60:14:3c:06:3c:1a:83:fd:12:6d:b0:49:52:02:
6c:72:b1:70:5c:ce:3f:8e:43:ee:28:7f:39:4c:92:
88:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B8:2F:AC:80:CF:01:CD:0C:DC:9E:CF:B1:85:21:AF:17:19:81:C8
X509v3 Authority Key Identifier:
keyid:78:70:56:17:98:E5:C8:A2:67:07:62:0D:F0:82:EF:37:78:D7:16:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBWF5jlyKJnB2IN8ILvN3jXFj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/j7gvrIDPAc0M3J7PsYUhrxcZgcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/eHBWF5jlyKJnB2IN8ILvN3jXFj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.102.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:29:f4:a3:ef:9b:98:65:51:f3:d5:4a:5c:c3:0e:ff:1a:f7:
69:bd:a4:1f:2f:66:3a:f9:af:70:65:df:3a:8d:e3:ec:b0:4f:
ba:30:74:ea:ac:41:00:a9:93:24:31:66:e0:61:76:7f:35:2b:
06:86:15:c9:b2:6a:12:2a:18:da:ec:3d:0f:1f:60:43:3f:5a:
b8:e6:04:f4:1f:aa:5e:8a:d7:6b:e8:e6:e8:98:8c:c5:2c:4c:
14:25:95:68:0d:97:f0:11:95:24:fb:ea:b5:c3:0f:3e:d6:a7:
63:4b:a7:de:d8:ae:13:d0:08:10:54:8e:f8:53:d4:90:b0:fd:
c4:e5:4d:18:3e:de:b1:42:73:dc:07:bf:4b:d2:26:d9:f7:3a:
3f:8d:36:c6:63:33:7e:7f:d3:16:a4:b3:aa:b4:73:ff:fc:9a:
fe:89:d5:30:77:5b:12:d7:c2:36:63:89:2e:95:0e:f5:40:fa:
df:7b:f0:ba:a5:8e:87:99:47:8b:a8:da:a3:1b:8c:aa:09:f9:
10:9e:b1:ad:24:29:25:89:07:05:5b:b3:48:64:f4:cc:d3:cc:
40:93:c1:d8:aa:86:bf:e9:cf:81:6c:f3:17:48:17:3e:ad:3e:
ab:2e:55:f3:15:bf:9d:16:29:3a:45:d2:d9:48:49:eb:f7:fd:
76:59:05:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:02 2024 by rpki-client on console-fra.rpki-client.org