Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/9eY9khL1l-La0NPnMTvu4gkuDl4.roa
File: 9eY9khL1l-La0NPnMTvu4gkuDl4.roa (raw, json)
Hash identifier: kLfWdJ+wMKbyWO/gtAKrHqLizj88JYtTIIneNKWEFW8=
Subject key identifier: F5:E6:3D:92:12:F5:97:E2:DA:D0:D3:E7:31:3B:EE:E2:09:2E:0E:5E
Certificate issuer: /CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Certificate serial: 469E39
Authority key identifier: B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/9eY9khL1l-La0NPnMTvu4gkuDl4.roa
Signing time: Sat 01 Jan 2022 02:52:41 +0000
ROA not before: Sat 01 Jan 2022 02:52:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213011
IP address blocks: 91.211.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4628025 (0x469e39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Validity
Not Before: Jan 1 02:52:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5e63d9212f597e2dad0d3e7313beee2092e0e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bd:2e:80:07:dc:d9:b6:82:05:ab:05:67:d7:
22:54:e9:10:69:4d:01:e5:56:16:d2:18:6b:e0:90:
f2:5d:40:af:68:5a:5b:75:f4:3d:8b:1a:5d:eb:e2:
08:57:3a:d1:7e:e2:74:bb:f3:98:d9:b9:77:28:cb:
fc:35:68:dd:40:96:7e:4d:5a:50:f8:c0:e7:fc:fa:
13:e3:34:17:17:86:55:3f:26:f8:ac:0b:db:0c:ff:
38:b5:9f:09:63:74:d9:1e:ef:2c:22:d5:c9:2f:07:
cd:28:0d:cf:01:fb:ea:7c:2d:7a:fe:b8:2b:fa:90:
a9:a9:9c:7f:94:e7:7c:c1:ab:8e:2b:e0:a7:da:b7:
d2:7f:f6:51:7f:28:c9:f5:3e:eb:9d:a0:59:ca:8b:
87:cd:23:62:12:8a:14:80:1f:ed:bc:15:c0:d5:da:
80:70:05:dd:52:3d:de:4a:0b:e2:b1:07:22:42:b5:
11:e1:eb:13:20:50:2d:20:0b:d4:fd:9c:07:af:2f:
66:79:ba:93:fa:ef:d0:7f:69:6d:3a:ff:57:45:f6:
ce:83:d3:0b:34:96:9f:e1:92:d6:49:f0:9c:a0:87:
8f:9b:ba:a4:99:d2:86:85:dc:d9:4e:f0:7a:1d:3d:
57:e7:9e:f1:91:ce:0d:f5:7f:57:17:be:1a:2f:f3:
7e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E6:3D:92:12:F5:97:E2:DA:D0:D3:E7:31:3B:EE:E2:09:2E:0E:5E
X509v3 Authority Key Identifier:
keyid:B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/9eY9khL1l-La0NPnMTvu4gkuDl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.1.0/24
Signature Algorithm: sha256WithRSAEncryption
45:06:3e:ac:bc:50:99:18:f0:13:50:6b:87:8f:92:e9:2a:96:
dc:69:d3:ee:76:51:a4:1d:1d:d6:1f:3e:62:c5:b3:cf:1c:fd:
3a:8f:23:18:6b:f0:85:af:4e:fc:d6:a2:b0:0e:2f:7c:fe:93:
76:7b:e6:1c:23:4e:ad:2b:c1:30:af:0e:5a:d2:2a:7f:17:bc:
af:3e:94:7b:33:88:8c:a2:4f:ee:d7:07:2c:06:95:4e:39:7d:
f7:03:bb:e4:f9:43:a1:1c:04:9d:5a:77:b2:d4:6d:08:ec:dd:
0c:95:98:d1:c9:5a:b6:cc:c8:9d:18:07:f5:21:f0:e6:d8:ed:
e5:bd:88:da:78:15:34:17:06:63:9d:bb:e5:9e:f9:7d:3e:ef:
41:6a:eb:a3:3b:39:a5:e5:de:ed:32:c4:a8:ce:f5:48:64:dc:
3b:52:d4:51:6d:e2:30:2d:e5:63:e0:67:60:7d:bf:9e:08:76:
d9:a6:62:a3:4b:ef:80:7c:00:ea:11:03:43:c8:7e:d9:67:66:
d3:19:ff:08:01:aa:60:bc:93:0c:96:e3:a4:ca:23:6a:12:33:
e7:3d:e4:19:8a:7e:8f:ac:58:b3:fe:a9:14:c3:82:e1:d2:17:
2d:5a:e8:3d:ed:40:f4:03:2e:e1:ae:8b:12:82:40:47:42:04:
32:39:a6:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:23 2024 by rpki-client on console-fra.rpki-client.org