Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/rXhjA6KjbSslenvKsUyiy3teGKQ.roa
File: rXhjA6KjbSslenvKsUyiy3teGKQ.roa (raw, json)
Hash identifier: FeMi/RVhlLVqoUb9WLE1Errl+WlMEzKYCTpjibZJIz8=
Subject key identifier: AD:78:63:03:A2:A3:6D:2B:25:7A:7B:CA:B1:4C:A2:CB:7B:5E:18:A4
Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Certificate serial: 2927C2BD
Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/rXhjA6KjbSslenvKsUyiy3teGKQ.roa
Signing time: Sat 01 Jan 2022 12:07:01 +0000
ROA not before: Sat 01 Jan 2022 12:07:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35120
IP address blocks: 91.223.100.0/24 maxlen: 24
91.209.212.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 690471613 (0x2927c2bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Validity
Not Before: Jan 1 12:07:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad786303a2a36d2b257a7bcab14ca2cb7b5e18a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:73:83:c8:a3:17:9b:35:4f:49:fd:ac:95:1b:
67:ef:f7:b0:25:b4:c2:87:03:6f:1e:d0:bb:d2:aa:
27:5f:50:5d:47:1d:74:a0:e8:9f:88:33:03:94:cb:
c9:47:97:17:a7:bd:29:14:83:42:7c:85:b6:af:9a:
e9:44:71:fb:49:85:c2:68:71:1b:99:85:5f:78:38:
57:23:ba:76:e2:08:e3:34:a4:09:66:24:6e:d3:3d:
9b:93:5e:96:6e:a6:02:9f:58:74:58:9e:a5:fe:2a:
0c:74:7b:88:9b:91:c8:f3:fc:3a:ad:6c:c6:95:29:
be:33:0e:2b:b0:db:a7:7f:c2:ee:b1:b5:ca:5a:0f:
cd:17:84:29:c6:e1:ef:38:d9:8f:da:70:2a:40:23:
b5:8d:b1:2c:33:fd:4b:7f:60:a7:10:f3:8d:7e:ee:
8c:a6:dd:80:c5:6b:2b:e8:bd:52:41:f0:a9:78:b3:
0c:34:68:f3:49:92:a9:e2:03:e0:b1:0f:ae:08:6a:
b6:69:ac:9d:eb:dd:33:51:ac:99:03:aa:ff:30:65:
d0:66:20:00:1d:41:d0:e5:b0:9d:b8:53:ad:60:30:
3d:3b:55:f1:b4:5b:e1:ac:7d:ee:79:8a:4a:be:6e:
62:58:55:1d:1a:f1:f7:77:a7:c0:d1:17:60:7b:4a:
1b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:78:63:03:A2:A3:6D:2B:25:7A:7B:CA:B1:4C:A2:CB:7B:5E:18:A4
X509v3 Authority Key Identifier:
keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/rXhjA6KjbSslenvKsUyiy3teGKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.212.0/24
91.223.100.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:e4:d2:5e:c9:b5:3f:cc:b7:82:b4:ce:55:7c:59:48:11:6e:
3f:f6:00:88:ba:69:e1:6e:c6:3f:8c:e1:f0:b1:74:dc:c1:3e:
a5:97:b2:7d:92:0a:a9:f5:bf:0f:08:00:d8:7e:1e:f4:a2:ac:
f9:0c:79:67:80:c4:d7:12:78:17:6a:63:a6:17:25:0f:38:1a:
8e:56:98:43:96:97:1a:61:63:db:f4:f2:9a:d7:74:fc:b6:d9:
ec:41:a9:b7:3c:eb:0a:c2:5c:fe:cd:2b:b3:f5:df:5b:fe:bd:
79:30:28:17:f0:03:a6:53:fd:d5:4c:bf:ba:e1:19:1f:ad:58:
bd:bc:35:42:38:d7:0c:d5:62:61:de:06:82:4b:5b:40:01:6c:
89:4d:8d:e1:1f:54:65:af:61:3b:e3:a3:ab:4d:73:3d:4b:20:
01:0f:49:62:46:46:f6:1d:5a:fe:ee:93:99:14:37:e5:32:df:
d4:eb:fe:80:93:0b:8e:65:80:17:2d:b6:3c:f8:56:5a:b1:d4:
86:69:b0:03:20:9d:18:9e:1c:39:ff:78:e7:0c:67:b8:c1:53:
d2:56:95:30:5c:9a:63:42:06:b8:9f:9e:17:7c:0e:2c:cf:2d:
07:db:0e:b8:e7:05:2f:28:93:01:76:22:47:4c:a2:cc:6e:e2:
b0:4a:47:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org