Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/_sYng0SRXDTt-TMSirOB5m6JzQs.roa
File: _sYng0SRXDTt-TMSirOB5m6JzQs.roa (raw, json)
Hash identifier: E1oOU2yRpWCQV6ztDgWEipU+L/g7ln8AW3acI9cmSx8=
Subject key identifier: FE:C6:27:83:44:91:5C:34:ED:F9:33:12:8A:B3:81:E6:6E:89:CD:0B
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 0182438F574E81CE8B2902ADB552B8ADA3D9
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/_sYng0SRXDTt-TMSirOB5m6JzQs.roa
Signing time: Thu 28 Jul 2022 06:47:23 +0000
ROA not before: Thu 28 Jul 2022 06:47:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36007
IP address blocks: 91.202.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:43:8f:57:4e:81:ce:8b:29:02:ad:b5:52:b8:ad:a3:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jul 28 06:47:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fec6278344915c34edf933128ab381e66e89cd0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:9b:e5:a3:da:89:67:67:79:2e:b0:51:dc:82:
a7:aa:89:6a:f3:f0:dd:7c:c1:5e:93:2e:41:cf:4a:
2e:9e:29:b1:95:bd:6b:32:f0:3b:da:f1:ca:dd:68:
11:cc:8d:ce:12:40:13:3f:fa:49:ce:f0:04:05:1a:
e3:70:63:f4:09:a0:c6:7d:7c:46:35:4f:0d:57:41:
16:8d:fa:a2:44:10:03:81:52:2c:b6:35:5e:ac:ab:
90:11:b1:46:e8:aa:c7:83:2e:e8:2a:01:22:1a:c4:
86:5d:6d:0d:68:e3:98:84:5d:0b:e6:3b:29:36:80:
86:e7:0e:7a:71:f8:2e:36:70:48:8f:80:30:a0:e3:
e1:a9:70:18:ee:63:8e:d1:8d:ab:86:2b:41:cf:6c:
17:87:1c:fb:f9:72:61:70:f4:a3:7f:98:00:3c:35:
34:72:e5:7a:fa:07:6c:cf:29:91:d9:f2:03:21:d4:
68:4f:44:b7:5a:ce:87:58:db:78:73:17:ac:6d:38:
43:fc:d9:aa:89:8a:a6:28:e4:3a:a6:f7:97:24:a9:
89:4d:cd:c6:97:86:35:88:b5:02:df:99:2d:e0:63:
01:d7:35:9e:19:38:6c:f7:42:67:b8:79:05:4b:83:
6a:ad:bf:5f:4c:dc:1e:74:fd:01:1e:80:0e:ab:0d:
2d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C6:27:83:44:91:5C:34:ED:F9:33:12:8A:B3:81:E6:6E:89:CD:0B
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/_sYng0SRXDTt-TMSirOB5m6JzQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.170.0/24
Signature Algorithm: sha256WithRSAEncryption
19:4b:ce:c9:c0:2e:5e:77:1a:f1:3e:f7:5f:f8:8e:63:90:c3:
22:1d:72:05:db:58:a8:ee:7e:71:ff:06:7d:3f:28:d7:09:bd:
6a:f6:ea:e5:37:4b:b4:e5:bd:77:93:de:6b:25:e0:9d:5c:1c:
3b:99:22:2f:69:49:17:f7:73:2f:89:45:fa:cc:5b:0b:bc:8f:
24:89:ee:eb:9b:94:73:9b:59:a8:12:87:74:e1:1c:95:36:68:
57:32:54:87:39:1e:eb:97:09:a8:64:20:7f:87:a3:ea:93:b8:
52:35:b7:1c:21:25:d8:eb:fa:a7:43:b1:05:66:5b:02:8b:9c:
29:14:0d:e9:c6:12:01:40:33:09:a7:b6:6a:79:25:0f:71:30:
38:e2:83:6a:16:d1:3f:28:f4:c8:76:0b:8b:ef:be:ba:e3:b6:
3c:69:82:84:25:07:b2:d9:0e:63:1b:1a:7c:71:d9:dd:43:52:
da:d3:0c:87:f4:4e:c8:a2:a7:ba:8a:dd:8d:5a:d2:64:4b:17:
de:c1:20:43:70:1d:e7:8f:03:20:a8:da:37:fd:55:b5:8e:63:
18:12:96:e6:22:93:b6:4e:bd:fa:ed:a5:af:a4:a5:b5:e6:9d:
ec:6c:50:4c:f0:1e:12:24:a8:da:83:ac:d4:c4:b2:ae:4b:8f:
dc:d9:15:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:32 2024 by rpki-client on console-fra.rpki-client.org