Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/J9hpVHiBlnA6JIASVdbNyoEq6ew.roa
File: J9hpVHiBlnA6JIASVdbNyoEq6ew.roa (raw, json)
Hash identifier: 6KozkvJohdij7jqBb9AXcJMjo4PruIv6ndXq+Fwq10k=
Subject key identifier: 27:D8:69:54:78:81:96:70:3A:24:80:12:55:D6:CD:CA:81:2A:E9:EC
Certificate issuer: /CN=391a0ecc2b9beaba9eb76d5519fe787b4033fc12
Certificate serial: 0634A7C1
Authority key identifier: 39:1A:0E:CC:2B:9B:EA:BA:9E:B7:6D:55:19:FE:78:7B:40:33:FC:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORoOzCub6rqet21VGf54e0Az_BI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/J9hpVHiBlnA6JIASVdbNyoEq6ew.roa
Signing time: Thu 10 Mar 2022 09:41:44 +0000
ROA not before: Thu 10 Mar 2022 09:41:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204717
IP address blocks: 91.132.7.0/24 maxlen: 24
91.132.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104114113 (0x634a7c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391a0ecc2b9beaba9eb76d5519fe787b4033fc12
Validity
Not Before: Mar 10 09:41:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27d86954788196703a24801255d6cdca812ae9ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:14:4d:0f:86:1c:62:bb:90:ea:92:25:ba:af:
29:99:d3:f5:a6:6f:54:82:31:17:ea:2e:f7:bd:3f:
aa:e1:43:5f:09:e5:b1:07:e1:4f:61:45:13:4c:b0:
a2:a3:c7:ca:29:32:f4:94:e6:57:52:16:53:8f:1b:
3f:de:bf:e6:97:55:86:78:dd:d4:d1:ec:22:ed:48:
79:61:be:67:84:6d:7c:7d:e1:85:bb:0c:32:e4:fc:
b0:c4:0c:87:ca:17:20:a1:4e:dc:1b:cc:44:5a:51:
b6:2c:da:fe:85:b1:43:f5:75:9e:a1:51:0b:73:85:
7e:74:d2:e3:a8:fd:b6:0c:1d:11:11:24:1a:4c:9f:
c2:dd:f7:66:61:22:db:41:fb:18:6f:a3:bf:ec:be:
ea:3a:db:34:d6:d2:9f:9a:98:d8:29:d0:6c:bb:3b:
fe:f1:56:fd:c6:af:88:ee:97:27:00:b0:0e:4a:3c:
80:2d:a6:e2:01:0e:b7:d6:b7:23:33:96:d3:7c:4e:
24:14:1c:98:a6:87:fa:f2:c3:ac:32:0d:7c:47:cb:
09:41:7d:c6:a7:02:4c:1f:fa:dd:ff:35:dc:21:3f:
52:95:e0:84:16:42:2c:f3:8c:7a:5d:07:5c:87:cd:
78:d5:4f:21:bf:db:06:ec:4f:d3:d9:3f:bb:48:0f:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:D8:69:54:78:81:96:70:3A:24:80:12:55:D6:CD:CA:81:2A:E9:EC
X509v3 Authority Key Identifier:
keyid:39:1A:0E:CC:2B:9B:EA:BA:9E:B7:6D:55:19:FE:78:7B:40:33:FC:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORoOzCub6rqet21VGf54e0Az_BI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/J9hpVHiBlnA6JIASVdbNyoEq6ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c27cd1-570b-47d1-b256-1814223d92ce/1/ORoOzCub6rqet21VGf54e0Az_BI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.6.0/23
Signature Algorithm: sha256WithRSAEncryption
69:f3:00:28:a6:17:6b:f8:98:ab:18:78:9a:d7:aa:08:db:c7:
9d:7c:17:ec:24:19:5a:68:b9:e6:fb:76:64:3a:17:d3:50:d1:
8c:90:19:50:bd:68:32:f0:36:ba:37:ae:87:fe:fa:ad:57:07:
2c:f6:0f:84:3c:c0:2b:6b:54:9b:27:f3:16:d5:ca:7d:19:cf:
7f:1d:34:85:47:d4:7c:f6:7c:35:24:d8:0a:53:01:de:dd:82:
ab:fb:72:db:4b:1e:20:c4:ac:79:a7:35:cd:91:37:6a:c6:8e:
c2:01:d1:4c:21:84:fa:9d:42:df:bb:3f:de:a7:ba:3f:3c:5f:
3a:52:bb:15:4c:a5:b5:f7:da:0b:cd:12:df:ff:74:56:38:5f:
e6:4f:a6:cb:69:ce:99:ff:37:f1:18:84:32:bb:75:d0:d2:fb:
65:6a:20:e0:71:4e:d2:13:03:2c:ad:a2:15:e0:0b:60:bb:d0:
68:f9:5f:72:5a:35:a6:af:0a:b4:df:44:59:ab:a0:6a:6c:61:
d7:30:32:2e:5e:81:99:d7:b8:c7:22:01:f6:92:81:c1:f5:be:
0e:cf:34:26:62:04:1b:5b:03:e0:6d:58:9c:91:50:3e:ab:e3:
1e:76:da:d8:44:c7:15:12:f9:e1:80:b4:6d:69:50:07:be:a2:
2a:7d:a3:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org