Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/UhJ18JauwfpCdiC4zFzPOnOtQmA.roa
File: UhJ18JauwfpCdiC4zFzPOnOtQmA.roa (raw, json)
Hash identifier: w/J9Eh3vTOKSsCiXDtCp0rr1ChMYppGk76AFCgoeSog=
Subject key identifier: 52:12:75:F0:96:AE:C1:FA:42:76:20:B8:CC:5C:CF:3A:73:AD:42:60
Certificate issuer: /CN=29109da662f9d302fff2c5c4b4afb8f947fec1c0
Certificate serial: 15D0F254
Authority key identifier: 29:10:9D:A6:62:F9:D3:02:FF:F2:C5:C4:B4:AF:B8:F9:47:FE:C1:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRCdpmL50wL_8sXEtK-4-Uf-wcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/UhJ18JauwfpCdiC4zFzPOnOtQmA.roa
Signing time: Fri 04 Mar 2022 10:36:20 +0000
ROA not before: Fri 04 Mar 2022 10:36:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59747
IP address blocks: 91.207.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 366015060 (0x15d0f254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29109da662f9d302fff2c5c4b4afb8f947fec1c0
Validity
Not Before: Mar 4 10:36:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=521275f096aec1fa427620b8cc5ccf3a73ad4260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:89:89:d0:91:92:87:f4:09:2a:b3:6a:8b:25:
78:c9:a6:54:47:73:ad:aa:bc:43:0c:ac:04:3b:c4:
2e:6f:f2:36:53:4f:51:05:13:d2:fa:18:8a:07:07:
ff:70:3f:28:3e:65:c3:3d:5e:6a:21:59:8a:31:3d:
d2:92:07:4a:3d:cf:02:40:b8:b7:0d:a1:38:a1:62:
45:60:fe:45:0f:dd:d9:bb:c9:fc:6b:27:cd:d1:bd:
a9:b1:e8:3a:8b:92:1e:85:ed:9b:3a:fe:03:c9:9a:
1b:da:81:41:2b:63:68:01:4f:2d:41:1a:96:74:b4:
f3:17:bf:9f:83:18:f8:1f:76:fa:8a:57:61:02:5c:
69:32:a5:49:f7:11:8c:cf:27:1e:de:0d:49:94:84:
b8:48:08:51:45:0b:46:89:0c:b4:80:34:6c:26:98:
b6:ef:f1:23:8a:85:c8:77:8e:ef:f8:13:26:6a:86:
75:88:46:b9:7d:90:56:84:c0:eb:64:8a:5b:24:b6:
39:1a:5c:89:41:f3:f2:1b:98:26:f6:5c:8c:3a:86:
eb:88:8e:33:7e:74:e6:90:0a:57:06:5f:10:7c:b7:
27:70:e4:45:32:1c:09:a5:b2:38:22:da:f0:09:0b:
29:1b:3d:96:3e:d5:e7:74:5c:16:d9:9d:89:75:07:
15:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:12:75:F0:96:AE:C1:FA:42:76:20:B8:CC:5C:CF:3A:73:AD:42:60
X509v3 Authority Key Identifier:
keyid:29:10:9D:A6:62:F9:D3:02:FF:F2:C5:C4:B4:AF:B8:F9:47:FE:C1:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRCdpmL50wL_8sXEtK-4-Uf-wcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/UhJ18JauwfpCdiC4zFzPOnOtQmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/KRCdpmL50wL_8sXEtK-4-Uf-wcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.230.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:6f:67:8a:72:e4:0a:43:b4:f6:90:52:24:9e:ef:24:7e:2a:
a8:73:8d:36:bf:78:2a:4e:5b:4e:b5:7b:bc:20:8d:59:cd:f3:
b0:17:d5:73:62:8e:99:33:26:60:b4:97:a2:e1:fa:50:fa:ec:
4f:35:bc:fb:b5:68:f4:98:59:e9:4f:76:76:0b:3d:17:91:fe:
1f:4c:9c:35:1f:ec:aa:01:85:ce:96:dd:75:84:78:6b:95:ce:
75:09:07:4e:00:d4:2a:ba:f9:89:50:98:47:d0:0c:04:dd:dc:
c7:2f:75:63:23:8c:bb:24:0e:cf:b1:4a:1f:c7:87:95:1d:89:
71:2e:f2:9a:43:d0:db:97:af:82:b3:dd:bd:d0:ff:1e:ce:68:
a0:46:ec:09:d6:17:12:90:87:ed:03:d4:98:bb:7c:72:13:95:
91:0d:47:6b:d9:ba:11:98:36:06:d0:72:34:f9:56:12:3e:a0:
fb:25:cd:79:87:c9:c5:73:2b:37:c0:65:8e:87:24:e7:28:31:
54:5a:93:42:72:bf:0c:c0:2a:36:2c:11:be:4c:13:ae:ab:62:
21:74:c4:74:5d:3f:c3:37:cc:86:43:54:87:4f:18:e6:2e:e4:
bd:49:4c:15:6b:6b:1c:51:5c:b2:74:5c:a2:42:e7:3c:40:6c:
df:37:8f:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:47 2024 by rpki-client on console-fra.rpki-client.org