Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/1dced4-c45c-4515-a8ad-eb89c5c4d384/1/ywbS-8D3LruPyQ5eUOPTfDEQXRU.roa
File: ywbS-8D3LruPyQ5eUOPTfDEQXRU.roa (raw, json)
Hash identifier: eduK9tJK/6wkpurn7Y6Np2Q2z6NLv86ugmkKd+OF9d4=
Subject key identifier: CB:06:D2:FB:C0:F7:2E:BB:8F:C9:0E:5E:50:E3:D3:7C:31:10:5D:15
Certificate issuer: /CN=9b5182aa966af4b9b3cc3ce3eced53fceb0e915f
Certificate serial: 03DC619B
Authority key identifier: 9B:51:82:AA:96:6A:F4:B9:B3:CC:3C:E3:EC:ED:53:FC:EB:0E:91:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1GCqpZq9LmzzDzj7O1T_OsOkV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/1dced4-c45c-4515-a8ad-eb89c5c4d384/1/ywbS-8D3LruPyQ5eUOPTfDEQXRU.roa
Signing time: Sat 01 Jan 2022 09:56:11 +0000
ROA not before: Sat 01 Jan 2022 09:56:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57749
IP address blocks: 91.234.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64774555 (0x3dc619b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b5182aa966af4b9b3cc3ce3eced53fceb0e915f
Validity
Not Before: Jan 1 09:56:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb06d2fbc0f72ebb8fc90e5e50e3d37c31105d15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:19:be:d5:06:86:6a:68:fa:d6:5e:f2:52:f0:
8f:47:7a:a1:86:b3:57:fd:af:92:4a:14:d1:99:30:
55:a2:32:62:24:1e:ea:c2:b6:6c:94:af:e7:54:3d:
fb:99:5c:ba:93:ee:f8:40:98:76:b9:f4:bb:f1:6a:
65:51:a9:15:65:b5:e0:eb:0b:d8:f8:de:29:3b:8b:
b2:9b:9a:f5:34:d8:c6:e5:96:c0:83:57:c7:45:74:
58:8d:c0:96:04:e1:2c:b5:43:e2:27:78:b2:05:ea:
60:10:e0:3b:74:f1:0e:59:92:35:a4:dd:b2:1c:4f:
5c:bb:3a:fb:b5:92:cb:a6:8f:f6:bf:e0:d7:8c:14:
0b:e8:68:c8:29:89:e6:0e:ed:2a:06:e7:91:9e:14:
43:36:79:6f:2a:af:e9:40:27:1f:1c:96:c2:9d:2f:
95:3b:c4:63:5a:4c:9f:74:2f:c4:d1:aa:c4:f9:c4:
6f:4a:9d:69:12:20:fc:4e:8b:02:e6:9b:c9:8a:9e:
88:65:22:2d:ae:70:fe:8d:43:bf:76:2e:6e:dd:3c:
94:44:c8:74:d0:73:b2:4b:cf:4a:ae:ea:21:fd:2d:
2f:fb:d1:20:7a:16:46:28:48:42:b9:88:c7:6b:06:
5e:6d:9f:57:16:0b:5f:c9:88:e5:f3:57:d1:bb:04:
87:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:06:D2:FB:C0:F7:2E:BB:8F:C9:0E:5E:50:E3:D3:7C:31:10:5D:15
X509v3 Authority Key Identifier:
keyid:9B:51:82:AA:96:6A:F4:B9:B3:CC:3C:E3:EC:ED:53:FC:EB:0E:91:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1GCqpZq9LmzzDzj7O1T_OsOkV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/1dced4-c45c-4515-a8ad-eb89c5c4d384/1/ywbS-8D3LruPyQ5eUOPTfDEQXRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/1dced4-c45c-4515-a8ad-eb89c5c4d384/1/m1GCqpZq9LmzzDzj7O1T_OsOkV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.177.0/24
Signature Algorithm: sha256WithRSAEncryption
08:a4:ec:0b:d3:e9:c5:d1:fe:e3:35:40:87:3c:14:ae:5b:d4:
72:ab:fd:d0:3c:99:5e:66:2d:28:99:d5:af:58:8d:1c:8b:fe:
f8:f4:e1:56:66:e3:3b:80:81:92:91:f8:d7:a7:56:69:1e:73:
80:6a:5a:36:e3:79:24:3d:c7:ff:b5:a2:2b:1f:2d:6b:60:09:
01:dd:53:c8:77:dc:cc:04:03:77:fe:30:4d:09:1f:db:31:32:
df:bc:c1:d8:09:a5:bd:ff:63:a7:8c:cd:f0:c3:4a:df:72:b6:
a7:90:29:0c:b9:1e:5b:bb:b7:84:08:c5:03:a6:cf:29:5a:1c:
68:5c:9b:81:9f:61:3c:3a:91:7d:4e:eb:af:94:87:67:b8:94:
54:d2:b9:64:10:5f:fe:ec:43:57:da:2d:3d:3c:38:0b:e7:8b:
f9:64:19:76:0b:f1:5c:5c:2b:42:d7:86:eb:6e:ba:9e:14:7a:
37:b3:27:0d:f6:53:e6:9d:3e:37:b3:55:9a:be:2f:9c:71:cf:
59:89:a4:d0:a6:ef:b2:6a:b8:02:98:f2:fd:ec:66:aa:5f:8c:
85:ec:1c:a9:50:a3:a3:19:39:b2:44:65:0d:d3:e8:83:91:44:
08:fb:75:6b:43:39:9b:dc:8e:51:78:e7:40:45:59:7c:f1:7f:
61:bc:91:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:03 2024 by rpki-client on console-fra.rpki-client.org