Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/TQPlnVqxkH3hhmyIcOyFkFXouh8.roa
File: TQPlnVqxkH3hhmyIcOyFkFXouh8.roa (raw, json)
Hash identifier: Ws6SzyZK3ct7XyX5qSWAlkGBpKDgEwRcxNIMuv4hi2Q=
Subject key identifier: 4D:03:E5:9D:5A:B1:90:7D:E1:86:6C:88:70:EC:85:90:55:E8:BA:1F
Certificate issuer: /CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Certificate serial: 0170EE
Authority key identifier: BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/TQPlnVqxkH3hhmyIcOyFkFXouh8.roa
Signing time: Thu 12 May 2022 08:40:30 +0000
ROA not before: Thu 12 May 2022 08:40:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198851
IP address blocks: 91.239.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94446 (0x170ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85
Validity
Not Before: May 12 08:40:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d03e59d5ab1907de1866c8870ec859055e8ba1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6a:a5:34:37:f9:60:2c:b4:06:9f:7b:2f:c4:
88:89:d4:2e:b6:43:6f:ff:bd:9b:f9:17:df:d2:2a:
1a:da:90:b5:de:8a:f6:f3:43:c7:a2:88:45:d6:d9:
7b:89:8a:a0:71:31:a0:18:ef:32:db:7e:d4:b5:56:
e8:1e:d3:39:3d:ef:df:4a:00:6f:cd:b2:10:10:86:
0b:2f:ae:e9:83:d7:e6:00:c1:52:5b:f3:7c:ff:be:
eb:0d:0f:e4:bf:a0:f9:93:2a:63:78:9f:f5:81:f0:
6b:52:1d:53:85:2a:1e:24:7a:34:9a:a1:df:f7:1e:
4b:57:26:10:47:94:32:58:4f:d6:d1:c2:a5:fa:f7:
e8:8c:f4:3c:b0:85:be:fd:9f:66:7a:95:0b:be:f9:
d8:45:7c:b1:55:5f:38:1c:2e:a6:2b:4b:81:7d:92:
d0:66:51:c7:3a:e0:fd:54:27:c0:60:e9:1a:93:4b:
d3:c6:3f:b4:76:b3:a8:0f:24:2d:58:8b:62:ac:cb:
55:bf:1e:31:30:c7:a8:f9:fc:b2:fb:19:cf:76:dc:
4b:d2:8e:77:9f:a0:de:e8:95:ee:68:db:6e:26:a3:
ab:cd:26:22:96:3b:ae:d8:15:4c:df:ca:47:c1:65:
8e:d6:76:1c:96:df:ed:8b:b5:6d:27:ee:98:88:ff:
e1:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:03:E5:9D:5A:B1:90:7D:E1:86:6C:88:70:EC:85:90:55:E8:BA:1F
X509v3 Authority Key Identifier:
keyid:BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/TQPlnVqxkH3hhmyIcOyFkFXouh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.254.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:d5:cc:9e:28:f7:5d:38:a5:18:53:9a:6f:f6:0a:96:b9:c5:
aa:48:a5:49:98:60:ef:59:bb:fb:dd:44:45:36:87:51:c2:af:
a0:19:04:f4:eb:ad:7f:6d:fb:2b:3c:e6:7a:13:08:de:4e:51:
47:e9:a7:51:d4:7a:72:04:ab:82:5e:46:48:68:25:6e:31:33:
0e:37:28:60:7d:e8:ea:4f:8d:d5:b2:be:51:cf:f1:ce:04:81:
37:e3:ad:ad:c5:48:1e:98:e3:6a:07:27:3a:de:f6:e3:23:b8:
91:a9:be:91:cc:f0:95:5f:4a:60:25:83:9d:e8:60:8f:f5:6c:
42:47:a8:1a:05:2b:60:1c:4c:7c:42:99:58:c9:64:38:1f:cd:
e9:82:d3:e9:22:50:5c:b2:a2:b5:96:c6:69:e4:fa:5d:ab:59:
f0:fb:fe:e0:20:47:8f:a5:e1:44:e5:34:5b:38:41:4b:c6:2c:
22:dc:fe:9f:d5:94:b3:88:4e:af:93:55:99:60:1d:a5:a5:a9:
d2:12:ca:b6:0f:45:19:0c:2f:76:6e:ec:a2:3f:a4:0b:82:16:
37:6e:ee:44:ac:a0:e7:36:b4:a6:df:59:b4:bd:43:69:b8:93:
ee:f0:c3:17:82:ef:a6:be:e0:09:6d:21:05:a8:c7:fc:24:d5:
1b:4e:60:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:58 2024 by rpki-client on console-ams.rpki-client.org