Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/9a6cf5-1342-4c3b-87af-160c24c66630/1/IYSbTuj634FnkL-uV6cAV-ei04I.roa
File: IYSbTuj634FnkL-uV6cAV-ei04I.roa (raw, json)
Hash identifier: JovecYk2H3ivIxg44BFCUv9ER0aNIoAuzIV07c06XwY=
Subject key identifier: 21:84:9B:4E:E8:FA:DF:81:67:90:BF:AE:57:A7:00:57:E7:A2:D3:82
Certificate issuer: /CN=8898db8cb861bbbdd1fb7562def4d77d8642c324
Certificate serial: 03A4B817
Authority key identifier: 88:98:DB:8C:B8:61:BB:BD:D1:FB:75:62:DE:F4:D7:7D:86:42:C3:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iJjbjLhhu73R-3Vi3vTXfYZCwyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/9a6cf5-1342-4c3b-87af-160c24c66630/1/IYSbTuj634FnkL-uV6cAV-ei04I.roa
Signing time: Sat 01 Jan 2022 10:05:32 +0000
ROA not before: Sat 01 Jan 2022 10:05:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44351
IP address blocks: 91.199.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61126679 (0x3a4b817)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8898db8cb861bbbdd1fb7562def4d77d8642c324
Validity
Not Before: Jan 1 10:05:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21849b4ee8fadf816790bfae57a70057e7a2d382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:47:99:0f:54:6f:22:34:61:2c:c5:77:db:e5:
fc:5d:59:26:3d:97:df:2f:e1:74:d0:72:e3:53:1e:
87:d9:2c:5a:d5:17:0e:62:6d:13:6d:15:bd:75:82:
0d:2d:34:ca:33:4b:eb:3a:c3:ab:d2:a6:f7:3c:eb:
c7:99:ff:c1:d8:b0:56:0d:c6:23:e1:88:7d:12:85:
3c:9a:ea:9c:64:37:13:f4:2c:3f:47:1e:53:32:53:
79:cc:26:05:5e:ac:8f:57:4c:69:61:58:9b:6d:67:
d6:ea:c8:93:86:d1:53:6b:77:6a:17:1c:b6:9e:66:
95:ad:d9:9a:b0:5b:4c:0b:6c:f7:46:e6:c9:fc:ee:
98:c0:c5:05:ee:ad:ce:1c:d4:7f:a1:3d:d4:86:4f:
55:c2:2f:82:db:92:7a:ab:6f:4f:4f:74:1f:43:12:
fb:5e:f6:41:dd:1b:2f:93:ba:85:1b:b3:15:93:22:
48:00:ee:48:23:aa:3c:ce:97:57:5d:a9:9a:a4:63:
95:0c:3a:48:53:47:0e:5e:71:82:21:49:55:de:94:
ee:8d:2b:61:b5:20:d9:d6:9f:32:d5:78:c3:32:ab:
c4:33:c5:fb:07:9b:62:a8:af:5f:de:b9:df:ff:05:
5b:ae:e1:84:16:dc:6f:76:4f:4a:ae:46:31:66:5b:
1a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:84:9B:4E:E8:FA:DF:81:67:90:BF:AE:57:A7:00:57:E7:A2:D3:82
X509v3 Authority Key Identifier:
keyid:88:98:DB:8C:B8:61:BB:BD:D1:FB:75:62:DE:F4:D7:7D:86:42:C3:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJjbjLhhu73R-3Vi3vTXfYZCwyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9a6cf5-1342-4c3b-87af-160c24c66630/1/IYSbTuj634FnkL-uV6cAV-ei04I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/9a6cf5-1342-4c3b-87af-160c24c66630/1/iJjbjLhhu73R-3Vi3vTXfYZCwyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.92.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:04:00:e7:1e:33:b1:27:96:da:04:52:24:82:48:d9:a1:67:
a2:68:9b:70:1f:6a:c0:2a:f4:b3:93:12:13:bb:15:54:c0:02:
40:86:fd:09:f0:4b:a1:16:9d:48:f6:24:2a:af:56:81:e0:fd:
47:cd:cc:28:52:d6:0a:9d:1a:fc:ad:9e:7f:26:d8:3d:05:c6:
4a:f1:a4:4c:89:dd:7b:b5:fd:dc:38:91:39:a5:51:b2:3e:2e:
7a:83:ed:70:64:e3:29:6d:1f:55:3f:d2:e6:de:b9:b7:c8:6c:
6c:89:7b:d3:65:f1:43:f3:9e:7c:46:46:35:e0:c7:a5:87:77:
b5:24:f4:38:41:89:0f:8b:e7:b0:a9:10:3d:07:b5:8a:ce:f0:
69:29:32:72:2c:f7:a5:ad:b6:bc:79:57:fd:0a:98:40:6a:d1:
8c:4c:be:18:6d:ec:5a:bd:42:06:3b:cc:ac:4c:32:c0:76:9a:
37:d3:c0:cf:d9:21:75:ca:b5:96:ca:be:4f:4d:5e:f5:f6:06:
c8:ea:db:de:68:3b:76:f0:f3:c8:f5:56:35:a0:3f:7d:d4:cd:
11:62:7b:a1:f2:c2:9d:bd:4b:7a:4a:50:dc:21:fb:f9:2b:d0:
49:d5:98:c4:34:8c:6b:80:92:1f:8d:9f:cb:fe:bc:f5:3e:a5:
a5:21:fc:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:37 2024 by rpki-client on console-fra.rpki-client.org