Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/69e7e4-e3ea-46a5-9867-1c8132d5f4b4/1/eUolnyJ5YHWxvmSEhkgr3nitX3I.roa
File: eUolnyJ5YHWxvmSEhkgr3nitX3I.roa (raw, json)
Hash identifier: RTHk6ayjUiw43cPuFm4JFbJ4XMmWp9UQD8NJyf1Gw2E=
Subject key identifier: 79:4A:25:9F:22:79:60:75:B1:BE:64:84:86:48:2B:DE:78:AD:5F:72
Certificate issuer: /CN=5ac8f68ac415059d56d1938c375a5986a6fff4b1
Certificate serial: 06BC9A99
Authority key identifier: 5A:C8:F6:8A:C4:15:05:9D:56:D1:93:8C:37:5A:59:86:A6:FF:F4:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wsj2isQVBZ1W0ZOMN1pZhqb_9LE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/69e7e4-e3ea-46a5-9867-1c8132d5f4b4/1/eUolnyJ5YHWxvmSEhkgr3nitX3I.roa
Signing time: Sat 01 Jan 2022 06:52:00 +0000
ROA not before: Sat 01 Jan 2022 06:52:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196731
IP address blocks: 91.212.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113023641 (0x6bc9a99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ac8f68ac415059d56d1938c375a5986a6fff4b1
Validity
Not Before: Jan 1 06:52:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=794a259f22796075b1be648486482bde78ad5f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:80:2a:b6:9f:8c:3b:d3:b5:a0:a8:b4:52:ef:
d7:c4:77:b3:02:25:dd:cd:42:49:f1:12:68:bb:eb:
ef:38:a5:76:4f:63:60:36:07:6e:3f:24:94:60:81:
bc:0a:71:b8:84:02:79:2f:15:5d:94:03:e8:3f:0f:
33:8b:f0:0a:96:d5:cb:6f:7d:41:e3:15:67:a4:26:
12:b7:02:dd:c5:7e:9d:50:1d:65:77:31:ee:75:e3:
1e:5d:04:4b:18:ef:8e:9d:09:83:98:f6:ed:57:c3:
0f:00:a1:5e:fd:0f:62:9d:2b:3c:55:4c:f6:fb:b9:
fd:40:c8:10:9b:0b:af:77:f0:c4:19:50:e9:d3:14:
7f:32:ce:43:17:60:3c:0d:75:ea:40:b1:1b:76:56:
4b:12:af:a5:cf:b0:d8:46:4a:9f:d6:10:1f:ec:3c:
0b:07:1b:e9:6d:43:cc:a4:e0:b1:68:51:59:e3:7b:
e3:1a:7b:71:1e:91:4c:e0:13:d2:25:e5:d5:b4:ea:
5d:30:49:54:43:2f:e3:9c:24:07:f5:27:7d:8e:82:
96:d9:e9:9a:33:e1:c8:05:f4:ad:c8:50:65:97:47:
4f:d0:9c:71:d1:cf:ad:f7:7e:29:0f:07:1a:73:e4:
ea:b0:dc:af:ce:c9:d1:ef:44:13:9c:3e:be:1b:d5:
14:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:4A:25:9F:22:79:60:75:B1:BE:64:84:86:48:2B:DE:78:AD:5F:72
X509v3 Authority Key Identifier:
keyid:5A:C8:F6:8A:C4:15:05:9D:56:D1:93:8C:37:5A:59:86:A6:FF:F4:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wsj2isQVBZ1W0ZOMN1pZhqb_9LE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/69e7e4-e3ea-46a5-9867-1c8132d5f4b4/1/eUolnyJ5YHWxvmSEhkgr3nitX3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/69e7e4-e3ea-46a5-9867-1c8132d5f4b4/1/Wsj2isQVBZ1W0ZOMN1pZhqb_9LE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.87.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:3f:26:48:25:5c:2b:a5:1e:70:af:9a:37:71:42:be:f8:b2:
6c:51:00:4c:d4:d6:ff:8f:09:36:ed:e4:7f:4d:bb:27:5f:5f:
1a:3d:58:c8:8f:c2:fe:65:4f:4a:88:83:d7:d0:ae:96:cf:4f:
f5:fd:35:e3:eb:31:aa:b1:27:15:bd:93:31:dd:bc:18:cf:66:
46:7d:e1:fb:e2:61:ff:49:f9:66:17:43:96:89:1d:6a:f9:46:
6d:bd:e3:b6:1a:09:4a:bb:24:b0:51:c9:98:04:85:91:6c:ca:
0d:7a:32:d5:ff:fd:b7:7c:56:51:ba:25:d1:5b:27:59:5b:ec:
8f:8c:7d:a9:b4:42:2c:84:9d:88:59:19:2e:3d:fc:3e:4f:4b:
83:85:85:54:d9:1a:ef:f7:0a:8e:9f:af:94:b7:b6:1c:19:12:
94:cb:c0:e7:4e:57:c5:7a:69:78:af:4b:4f:9e:df:0d:15:b5:
a3:dd:5d:a5:0a:d4:a2:9a:35:35:c7:55:cb:13:d1:33:ee:5e:
48:40:3a:52:cf:54:71:2d:7a:d4:a0:73:47:4c:02:0e:46:6b:
7e:3f:c6:df:ef:76:1f:72:7b:5f:5b:6d:5c:de:e1:a4:52:e9:
53:21:46:37:96:f8:4d:ed:61:6b:0e:86:75:2c:9d:06:11:19:
0b:70:49:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:57 2024 by rpki-client on console-fra.rpki-client.org