Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/204HjxHapJ6dgXQh25VX18kM7W4.roa
File: 204HjxHapJ6dgXQh25VX18kM7W4.roa (raw, json)
Hash identifier: j/kqJ1X6KSqGQ0OmUKPGrCaX6/KRlcij7NCj8XlVYw8=
Subject key identifier: DB:4E:07:8F:11:DA:A4:9E:9D:81:74:21:DB:95:57:D7:C9:0C:ED:6E
Certificate issuer: /CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Certificate serial: 02A835FB
Authority key identifier: 61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/204HjxHapJ6dgXQh25VX18kM7W4.roa
Signing time: Sat 01 Jan 2022 11:57:36 +0000
ROA not before: Sat 01 Jan 2022 11:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211796
IP address blocks: 91.202.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44578299 (0x2a835fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Validity
Not Before: Jan 1 11:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db4e078f11daa49e9d817421db9557d7c90ced6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ae:8d:4e:95:e9:9d:5f:58:3f:27:87:1a:c3:
53:8e:4b:d3:db:9f:bf:a9:13:48:bb:d0:9e:5b:f0:
97:ba:1a:76:50:2c:80:4a:10:fa:a9:52:b4:44:c3:
30:94:bd:c9:e2:fa:9e:63:bb:ae:3d:98:95:41:9c:
ff:b0:1a:5a:e3:00:22:86:e2:a4:96:d2:1a:10:1c:
3e:69:8c:75:03:03:b7:40:37:d4:ee:a6:52:92:57:
1c:ad:6a:9b:25:a6:fa:d6:1c:76:9a:93:cf:e4:1a:
34:54:76:69:4d:bf:47:f5:fa:53:63:0c:51:1b:8a:
c2:37:16:10:d8:c1:d0:86:6a:33:ed:74:a6:f6:5b:
b6:ef:9a:b5:26:95:fc:de:ca:d9:4e:69:52:8b:44:
08:e3:b0:73:4e:3b:1e:4a:39:4e:5e:94:09:d6:33:
d0:05:3c:1b:de:ef:03:0b:b3:0f:44:1c:1f:1b:33:
5d:9e:48:74:3c:bf:78:73:a7:ac:42:32:c9:02:d3:
af:dd:11:7a:3f:61:96:5a:ad:44:ec:dc:0c:8a:a6:
66:23:b9:82:b8:60:b9:d7:d1:b9:d6:08:bf:48:6f:
4f:9c:44:bd:a5:32:5a:da:f2:4a:da:6a:46:a4:85:
0f:d6:e3:5b:7a:b6:a5:8f:d8:07:7d:c5:87:f5:43:
ec:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:4E:07:8F:11:DA:A4:9E:9D:81:74:21:DB:95:57:D7:C9:0C:ED:6E
X509v3 Authority Key Identifier:
keyid:61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/204HjxHapJ6dgXQh25VX18kM7W4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.244.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:06:7e:ed:0c:fa:b0:b0:c5:ce:ae:ee:a0:50:db:90:9b:eb:
53:bf:11:7f:c5:7b:34:09:39:04:38:7e:39:0e:f4:b8:18:b4:
a3:fa:1c:a0:8f:c1:d9:5d:ee:98:66:58:24:6a:f0:99:b6:98:
12:d4:d9:0b:76:77:86:15:b4:2b:08:76:7f:6e:2d:37:25:3b:
89:e4:6e:79:4c:8a:25:df:b5:39:3c:0d:e4:14:41:6e:95:d0:
e4:14:32:9d:12:e8:9f:5d:7d:18:10:4d:a9:43:46:31:a5:a1:
fa:9c:97:4e:a4:35:2d:b2:51:3a:b3:a5:5f:ba:1a:db:a0:c3:
68:f2:37:d2:dd:19:b5:08:76:02:3c:c4:c3:f8:83:d7:93:d9:
05:42:5a:1e:f7:29:dd:79:4d:93:6a:59:32:a4:b4:18:3c:f2:
80:15:f6:e2:b8:cd:8e:57:5f:6f:50:91:cc:ef:a8:4b:42:a4:
a6:fe:88:62:48:77:45:22:ee:da:54:69:c5:52:61:a2:89:a0:
2d:f3:d4:c3:6d:b4:e8:a7:72:55:c9:8b:31:23:bc:a0:bc:48:
1c:28:f7:91:a1:5e:c9:c1:26:56:34:50:92:78:c2:4f:6c:1b:
08:7c:b1:50:e9:ff:f8:ce:89:64:28:cb:0f:17:f9:5a:d3:db:
b6:a7:01:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:46 2024 by rpki-client on console-fra.rpki-client.org