Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/7lK7lsM4nEH2T5IM11afsd3vmhU.roa
File: 7lK7lsM4nEH2T5IM11afsd3vmhU.roa (raw, json)
Hash identifier: +1dD08BJI615xxPAk8Z0Pey8IPC1W5taXXmqSuFHp/0=
Subject key identifier: EE:52:BB:96:C3:38:9C:41:F6:4F:92:0C:D7:56:9F:B1:DD:EF:9A:15
Certificate issuer: /CN=9f5646f7d8afc0a933fb33333f37013d83a04d00
Certificate serial: 062971B6
Authority key identifier: 9F:56:46:F7:D8:AF:C0:A9:33:FB:33:33:3F:37:01:3D:83:A0:4D:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n1ZG99ivwKkz-zMzPzcBPYOgTQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/7lK7lsM4nEH2T5IM11afsd3vmhU.roa
Signing time: Sat 01 Jan 2022 14:58:30 +0000
ROA not before: Sat 01 Jan 2022 14:58:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197642
IP address blocks: 91.223.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103379382 (0x62971b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f5646f7d8afc0a933fb33333f37013d83a04d00
Validity
Not Before: Jan 1 14:58:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee52bb96c3389c41f64f920cd7569fb1ddef9a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:8c:bb:e5:43:6d:47:e2:bb:91:45:fc:68:8f:
0b:f3:82:6a:66:dd:88:4d:27:b4:38:fa:04:f1:11:
1b:d5:d5:e9:0b:fd:50:16:33:37:bf:43:e7:c0:3b:
53:6b:0e:be:4e:8d:8a:5c:31:ff:00:95:f1:50:da:
8c:95:26:5f:05:95:d9:2d:1b:7e:e3:bf:25:64:cb:
da:b9:2d:bf:3b:0c:d0:47:45:95:f8:45:86:24:a1:
c9:a5:77:4a:4e:65:13:01:a7:93:32:6c:3c:4b:f5:
63:7c:10:aa:14:9a:14:85:fd:3f:c5:d4:4f:f5:95:
a1:c5:85:80:d7:a7:71:b7:cc:69:e4:22:0d:b6:65:
bd:ed:4a:72:33:b3:6a:24:6b:88:45:78:a7:e0:1d:
49:00:a7:15:f4:11:72:fb:e0:45:e9:17:26:29:11:
1c:3b:e1:52:44:dc:c8:5c:9b:c6:31:6c:45:a3:c7:
75:4a:e3:1d:c8:52:bc:2f:8a:f2:bd:a4:ae:f2:e3:
a5:43:29:0e:a3:f5:17:b0:8f:32:39:7d:09:0e:b2:
ab:6b:e9:9f:32:0b:8a:36:cd:93:bc:3c:b5:d9:83:
34:b0:f8:b1:b8:b3:34:75:5f:94:16:cc:89:df:ee:
3f:83:d1:51:f0:72:b2:6f:b2:e1:92:ee:93:3a:b6:
f5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:52:BB:96:C3:38:9C:41:F6:4F:92:0C:D7:56:9F:B1:DD:EF:9A:15
X509v3 Authority Key Identifier:
keyid:9F:56:46:F7:D8:AF:C0:A9:33:FB:33:33:3F:37:01:3D:83:A0:4D:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n1ZG99ivwKkz-zMzPzcBPYOgTQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/7lK7lsM4nEH2T5IM11afsd3vmhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/916917-88c5-4e7b-811e-7d32ca065b66/1/n1ZG99ivwKkz-zMzPzcBPYOgTQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.209.0/24
Signature Algorithm: sha256WithRSAEncryption
61:9e:36:23:f2:c1:f8:b7:56:35:ea:3d:1a:c3:e7:74:2e:e3:
63:ea:d6:e9:62:25:e9:3d:05:63:62:d1:01:b4:78:f7:4b:52:
9d:22:10:69:0b:76:49:41:87:ad:24:4a:ba:9c:ca:43:c1:a1:
42:83:83:bf:ca:32:fb:c4:d2:13:6c:1d:0f:ef:2d:62:8e:f8:
83:ac:59:12:c7:72:d0:0b:30:56:f6:cc:7c:1c:7b:e5:e1:98:
c0:c3:d8:72:89:c0:b9:4f:9f:5d:5a:9c:bc:73:12:62:45:fb:
b0:1b:3a:e0:88:bd:5d:83:4c:4a:ee:01:dd:30:54:9b:fb:2f:
35:60:8e:45:12:6b:cf:5b:a2:7b:be:fc:16:b5:9e:af:67:de:
38:eb:80:a9:2b:ce:f1:79:a8:5d:fd:f6:99:54:3c:0d:96:49:
24:70:82:22:a1:1d:7f:c1:3b:08:ee:d7:92:63:65:fc:52:ca:
17:e4:ce:02:05:4e:01:66:7e:28:c6:d4:40:35:cb:99:03:99:
5a:4d:ad:e6:a0:97:06:a1:42:a8:32:86:80:e3:a0:a0:30:af:
2a:86:9e:4a:c8:ad:61:03:fb:32:a3:28:a4:75:cc:9a:5f:c0:
19:04:fe:35:98:1e:c1:ec:9d:7d:eb:cc:40:f2:3a:c4:d3:1b:
cf:ac:ce:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:10 2024 by rpki-client on console-ams.rpki-client.org