Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/06803f-dd2e-4fd1-9a7f-bbf826aa67c0/1/rdXebJlbCdhQpgTykYRQXNXaQ6o.roa
File: rdXebJlbCdhQpgTykYRQXNXaQ6o.roa (raw, json)
Hash identifier: 6SHvLtIh0x07iKpYBxwB2Z0YqLXaCGX4pnIDIu4pKVE=
Subject key identifier: AD:D5:DE:6C:99:5B:09:D8:50:A6:04:F2:91:84:50:5C:D5:DA:43:AA
Certificate issuer: /CN=6e7103fa85acec57c4648591cc3e41cdf7fee397
Certificate serial: 19B5
Authority key identifier: 6E:71:03:FA:85:AC:EC:57:C4:64:85:91:CC:3E:41:CD:F7:FE:E3:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bnED-oWs7FfEZIWRzD5Bzff-45c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/06803f-dd2e-4fd1-9a7f-bbf826aa67c0/1/rdXebJlbCdhQpgTykYRQXNXaQ6o.roa
Signing time: Tue 15 Feb 2022 12:09:01 +0000
ROA not before: Tue 15 Feb 2022 12:09:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39380
IP address blocks: 91.209.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6581 (0x19b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e7103fa85acec57c4648591cc3e41cdf7fee397
Validity
Not Before: Feb 15 12:09:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=add5de6c995b09d850a604f29184505cd5da43aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:64:f5:40:d3:c7:3c:24:3c:32:86:14:fe:08:
c4:a9:9d:a3:c9:a8:6f:a3:23:18:fa:6e:df:e7:d0:
fb:7a:7b:1b:3b:45:40:bb:b4:56:03:e1:41:26:6f:
30:b5:45:4d:b4:42:7e:20:43:8f:43:ac:e8:0d:c0:
b6:9b:e2:f2:4f:93:70:37:a6:03:d2:e6:a1:49:91:
01:95:bb:49:45:89:44:43:ea:bf:fd:a2:e0:07:a7:
67:c6:d6:ac:59:21:7f:61:78:b1:f4:7d:6a:1c:47:
71:34:01:7a:a9:2f:d3:e5:4c:b2:f4:ec:a2:bc:ce:
35:2b:88:04:1f:23:40:cc:ae:b2:9a:40:14:15:47:
4e:a3:c5:e6:a1:12:4a:1f:95:db:9b:71:9c:60:61:
ee:54:79:a7:f5:c5:6c:6d:41:7d:19:00:ca:ad:1f:
69:f6:86:22:f9:23:d5:dd:38:0c:63:cc:dc:b3:36:
ce:cb:d8:a1:0f:7e:c2:5a:c2:dc:24:59:bb:cd:8a:
72:fa:d7:90:3c:6b:84:0a:67:dc:69:83:0e:a9:4a:
78:af:0d:17:51:61:91:58:5a:a0:a3:db:3e:04:17:
60:51:df:40:79:cf:53:e6:28:73:22:eb:03:e9:2d:
76:ae:2c:4f:57:ad:4f:c3:6a:95:2f:7c:c7:95:9b:
87:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:D5:DE:6C:99:5B:09:D8:50:A6:04:F2:91:84:50:5C:D5:DA:43:AA
X509v3 Authority Key Identifier:
keyid:6E:71:03:FA:85:AC:EC:57:C4:64:85:91:CC:3E:41:CD:F7:FE:E3:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bnED-oWs7FfEZIWRzD5Bzff-45c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/06803f-dd2e-4fd1-9a7f-bbf826aa67c0/1/rdXebJlbCdhQpgTykYRQXNXaQ6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/06803f-dd2e-4fd1-9a7f-bbf826aa67c0/1/bnED-oWs7FfEZIWRzD5Bzff-45c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.250.0/24
Signature Algorithm: sha256WithRSAEncryption
75:35:e0:e8:d5:d1:45:86:9f:07:2a:c5:c0:5e:45:7f:94:c7:
8e:d1:fd:58:97:3e:da:63:81:19:6b:b1:27:3a:70:52:55:95:
d8:cf:27:3f:ff:4b:2a:31:42:60:53:2f:1f:16:9a:fb:57:41:
b3:ad:eb:6b:90:3c:25:39:4d:8f:38:a0:1b:f7:77:75:38:c6:
c9:9e:ee:51:1b:7f:02:cc:67:db:69:25:31:11:73:a4:13:c9:
0f:41:27:7f:72:06:ac:cd:d5:8d:20:bd:24:b1:90:fe:3a:85:
9c:d8:66:04:75:81:f1:7c:ef:5c:3a:14:6c:70:14:4f:71:4f:
fd:6d:88:7f:d3:fd:ad:2c:93:52:a3:34:fb:4d:a5:94:a2:cc:
d7:55:17:fc:cb:87:36:01:47:8c:f8:d6:26:73:71:68:3d:74:
8f:31:33:f2:26:0f:f7:a2:bd:97:b0:f2:e7:1a:ec:bf:0f:97:
61:08:b6:f1:9e:fb:b5:e0:04:bb:c0:c7:e0:9e:2e:93:c2:c0:
45:b9:03:e3:f2:47:a1:b9:57:d4:74:98:0b:5c:b6:47:9d:b4:
20:18:a5:c7:f0:fd:cb:2b:5e:e4:73:2b:dd:11:be:e9:33:d0:
34:23:61:85:eb:7f:58:96:37:35:e0:40:97:43:e4:1e:a2:bb:
08:bc:a4:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:44 2024 by rpki-client on console-fra.rpki-client.org