Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/YtXjftXEmWkSA8K8fHL_W32OBoc.roa
File: YtXjftXEmWkSA8K8fHL_W32OBoc.roa (raw, json)
Hash identifier: z/2YaaHyC255y2ePxCQvgMqcF8hIZGDIAj9pPODtj6g=
Subject key identifier: 62:D5:E3:7E:D5:C4:99:69:12:03:C2:BC:7C:72:FF:5B:7D:8E:06:87
Certificate issuer: /CN=a951e638a2cb95c68bbc54a2728605b27f570681
Certificate serial: 4180
Authority key identifier: A9:51:E6:38:A2:CB:95:C6:8B:BC:54:A2:72:86:05:B2:7F:57:06:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qVHmOKLLlcaLvFSicoYFsn9XBoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/YtXjftXEmWkSA8K8fHL_W32OBoc.roa
Signing time: Thu 12 May 2022 20:36:29 +0000
ROA not before: Thu 12 May 2022 20:36:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51885
IP address blocks: 91.223.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16768 (0x4180)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a951e638a2cb95c68bbc54a2728605b27f570681
Validity
Not Before: May 12 20:36:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=62d5e37ed5c499691203c2bc7c72ff5b7d8e0687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:07:9d:63:5c:71:99:ad:61:99:ad:e5:db:55:
db:2f:72:85:12:bb:76:e3:7c:5c:49:06:b6:4c:b9:
3d:6d:7f:1b:f6:4b:e9:3d:11:e6:86:7c:c3:a0:46:
98:1b:6b:fc:6f:10:3f:17:2b:5b:b2:a1:ad:63:00:
20:c0:a9:8c:26:1b:1f:e2:68:5c:5c:34:b8:54:5c:
11:88:c1:ba:f6:57:5a:9f:48:ad:0f:d3:c1:10:c9:
f8:d9:70:cb:40:22:1b:5e:01:b1:ab:88:1f:86:78:
1a:45:00:bc:78:9e:7c:39:e4:ce:35:3f:5e:ae:c7:
be:08:3a:2e:d7:ce:9c:36:68:96:4a:81:36:58:73:
bd:5a:84:cd:b1:4b:87:8b:a8:ae:68:56:e2:09:6d:
4d:4a:1e:c4:1a:c1:aa:e9:b7:a2:9b:06:00:b8:55:
7e:9f:cb:b7:b4:8a:4f:31:e8:ae:41:78:63:d3:5a:
61:4a:f2:bc:ac:00:b3:c0:ff:ae:a1:e1:54:28:9b:
86:b0:0a:1e:96:fd:04:af:fd:b3:a1:01:ee:b6:d8:
01:5f:db:e4:f9:13:a8:96:08:72:1e:91:df:b9:b4:
d5:90:57:ac:85:c3:ea:9e:1e:7e:d2:b5:dd:ef:22:
b6:ec:de:92:98:49:12:18:53:71:e1:74:d5:7a:46:
46:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D5:E3:7E:D5:C4:99:69:12:03:C2:BC:7C:72:FF:5B:7D:8E:06:87
X509v3 Authority Key Identifier:
keyid:A9:51:E6:38:A2:CB:95:C6:8B:BC:54:A2:72:86:05:B2:7F:57:06:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qVHmOKLLlcaLvFSicoYFsn9XBoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/YtXjftXEmWkSA8K8fHL_W32OBoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/qVHmOKLLlcaLvFSicoYFsn9XBoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.156.0/24
Signature Algorithm: sha256WithRSAEncryption
34:f5:a9:e9:a6:5d:ff:51:d8:5c:d9:92:ed:0c:c2:b1:85:f8:
53:10:09:8d:fb:6c:ca:d7:d1:81:7a:d9:87:c5:7e:76:2b:e4:
a1:df:ad:70:64:ec:7b:77:8f:eb:ed:3b:b5:58:f8:a1:55:8d:
ea:dd:ea:ac:e8:f7:99:bc:0a:c3:85:d2:82:6b:98:8e:b6:c9:
4c:75:ab:3a:25:57:fe:4d:1d:87:3a:1f:4d:0c:b4:c4:86:87:
08:19:40:ab:49:ef:5a:82:80:3a:6f:37:59:cf:b3:26:4a:3b:
9d:7d:03:d6:e5:c4:20:63:bf:86:60:4a:57:d3:ab:6c:1d:a1:
90:1c:84:ef:7f:fa:79:61:3a:5b:41:ad:79:1a:cf:7f:42:08:
4f:b0:20:2f:ba:05:6a:aa:e5:b8:d2:6a:1e:ba:0c:7f:bd:82:
f7:1b:e1:aa:61:a3:7d:90:65:67:3c:62:d3:14:36:54:5b:8d:
d8:33:26:51:cb:a6:84:da:36:97:c9:e9:36:ad:09:68:bc:13:
38:2f:f1:c2:5c:54:a3:b7:5f:8d:dc:b5:80:2a:ed:fe:75:0b:
68:91:84:a7:ac:90:28:0a:5e:7d:66:43:ad:0a:d6:7c:aa:2f:
79:6f:bb:9a:c0:56:7c:9b:b1:3b:83:dd:e5:99:e7:8b:63:e0:
52:9e:df:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:32 2024 by rpki-client on console-ams.rpki-client.org