Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/7edd9a-fb72-43d7-b252-4cd11e8b7497/1/U6LxlkSTs1574f-VF1bWdj2VVos.roa
File: U6LxlkSTs1574f-VF1bWdj2VVos.roa (raw, json)
Hash identifier: dD8LjMNJyCbPDLHiYyEoeJX7n638ayPC+S/rCRNlaeY=
Subject key identifier: 53:A2:F1:96:44:93:B3:5E:7B:E1:FF:95:17:56:D6:76:3D:95:56:8B
Certificate issuer: /CN=178c8f20c939aaa9c80cce6a0d1567183ca1c599
Certificate serial: 02576023
Authority key identifier: 17:8C:8F:20:C9:39:AA:A9:C8:0C:CE:6A:0D:15:67:18:3C:A1:C5:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4yPIMk5qqnIDM5qDRVnGDyhxZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/7edd9a-fb72-43d7-b252-4cd11e8b7497/1/U6LxlkSTs1574f-VF1bWdj2VVos.roa
Signing time: Sat 01 Jan 2022 08:53:11 +0000
ROA not before: Sat 01 Jan 2022 08:53:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1273
IP address blocks: 91.199.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39280675 (0x2576023)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=178c8f20c939aaa9c80cce6a0d1567183ca1c599
Validity
Not Before: Jan 1 08:53:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53a2f1964493b35e7be1ff951756d6763d95568b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ea:e4:8f:55:31:22:db:c1:c0:87:55:57:ae:
71:6d:2c:f5:26:50:36:e4:e8:0b:2f:77:ee:01:6b:
8b:eb:ea:ec:26:ca:e8:9a:92:d8:f7:14:0e:cf:a6:
b5:11:da:6f:44:a7:18:3d:ed:e7:e9:7b:44:62:e2:
67:08:f7:78:65:4f:d6:5b:b8:f3:6e:c8:13:32:56:
2b:b1:67:78:6c:bb:99:46:cc:21:87:46:e0:a6:df:
d8:7a:7b:a3:75:dd:ae:9b:bf:43:06:0c:a8:12:dd:
e3:17:83:53:32:c1:58:10:b3:50:36:1a:de:c7:f4:
65:e8:d1:a1:05:16:87:fb:90:61:34:a1:41:79:41:
c9:08:8e:a1:be:2f:e8:95:08:23:77:27:9a:0b:cd:
53:d9:d9:9d:1e:2e:8a:89:bb:e6:5f:54:e4:ac:50:
9b:5f:62:7a:53:c9:c3:9e:41:0b:f2:87:ca:4a:53:
3f:59:8a:53:4a:c4:7e:a4:e8:a5:86:11:39:65:74:
e9:f6:c9:c8:1d:a2:08:bb:17:ff:f7:b5:35:41:56:
65:d0:44:2c:d3:f9:a3:1d:61:3f:ea:c1:df:42:a0:
b3:b0:98:4b:92:9c:a9:fe:21:b8:26:71:e6:69:a7:
b6:e6:c8:5b:ba:95:fd:8f:61:1e:c8:5a:9e:ce:7f:
a5:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A2:F1:96:44:93:B3:5E:7B:E1:FF:95:17:56:D6:76:3D:95:56:8B
X509v3 Authority Key Identifier:
keyid:17:8C:8F:20:C9:39:AA:A9:C8:0C:CE:6A:0D:15:67:18:3C:A1:C5:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4yPIMk5qqnIDM5qDRVnGDyhxZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7edd9a-fb72-43d7-b252-4cd11e8b7497/1/U6LxlkSTs1574f-VF1bWdj2VVos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7edd9a-fb72-43d7-b252-4cd11e8b7497/1/F4yPIMk5qqnIDM5qDRVnGDyhxZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.74.0/24
Signature Algorithm: sha256WithRSAEncryption
94:73:ae:13:24:41:57:04:af:9c:05:1f:a4:46:02:cb:43:6e:
48:f8:d0:bc:15:97:5b:2f:95:77:e7:a6:02:f0:28:df:45:4b:
83:7a:00:a0:a9:3b:c7:95:4d:11:08:9d:b3:91:04:65:cb:8f:
87:d8:e2:d2:a2:f8:00:e0:f3:9c:3b:4d:91:d7:ad:04:37:5c:
70:af:0b:87:c5:59:ba:4e:8f:53:96:b8:6c:66:2c:08:16:fa:
d7:a4:90:b6:f2:d2:73:39:73:cd:32:c7:54:62:4a:a7:5a:93:
f1:4f:2b:90:e0:f5:cb:d9:63:79:2a:20:8a:f1:eb:b2:55:29:
c6:c7:c6:8d:ef:4f:de:9d:9f:fd:95:32:b5:a9:35:12:60:14:
fb:e9:da:59:cc:74:e0:3d:e0:93:b2:d6:b6:97:28:d7:5d:53:
fe:33:d0:d7:4f:86:54:e2:2e:23:da:d9:af:35:f3:04:0b:e7:
d6:f8:b0:9e:95:84:10:94:50:4d:62:f4:5a:47:e0:50:aa:1b:
e6:8f:ad:12:93:f2:8e:c2:30:bf:07:02:bc:0a:da:09:4a:e7:
57:46:d1:f6:00:68:fc:8e:25:39:0d:1d:02:9a:6f:0f:28:03:
88:33:fe:bf:6e:45:69:45:a7:9f:a4:ca:1e:72:7a:be:45:53:
97:20:e6:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:30 2024 by rpki-client on console-ams.rpki-client.org