Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/f0H9-nbCsL75kDTBOcYwlqPWWhM.roa
File: f0H9-nbCsL75kDTBOcYwlqPWWhM.roa (raw, json)
Hash identifier: T61wClpFIoKmQGuIADuavEyen6bvwg0g1ZoX304hMMY=
Subject key identifier: 7F:41:FD:FA:76:C2:B0:BE:F9:90:34:C1:39:C6:30:96:A3:D6:5A:13
Certificate issuer: /CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Certificate serial: 1330BEA5
Authority key identifier: 54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/f0H9-nbCsL75kDTBOcYwlqPWWhM.roa
Signing time: Sat 01 Jan 2022 01:53:55 +0000
ROA not before: Sat 01 Jan 2022 01:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49420
IP address blocks: 91.231.221.0/24 maxlen: 24
91.212.242.0/24 maxlen: 24
2001:67c:24c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 321961637 (0x1330bea5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Validity
Not Before: Jan 1 01:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f41fdfa76c2b0bef99034c139c63096a3d65a13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e6:1b:6d:e1:cd:98:ae:6b:a1:30:74:6e:66:
60:a3:24:0e:1f:cd:c2:75:58:51:89:ab:1d:1b:38:
0a:6e:a9:1e:6b:d6:a4:24:52:8a:b5:62:c6:67:4c:
14:df:28:b7:25:95:af:74:d1:85:d7:25:b6:40:63:
a2:85:f1:15:f5:9b:cd:0f:d8:6a:f9:be:1a:6d:71:
d6:77:01:d2:1e:ff:a0:59:34:a5:e6:24:5e:af:39:
68:89:66:77:8d:f9:6e:75:59:05:22:f7:87:5d:b7:
70:ca:43:c2:04:e3:a8:8a:31:c9:4b:fe:c0:9c:ab:
7e:6c:cb:12:c8:3f:ac:5f:f0:ae:03:2d:b1:ca:20:
cc:dd:e8:ff:b1:bf:e3:2f:76:d4:e8:26:31:75:80:
5d:37:e5:64:08:ce:78:2b:5c:8f:fd:af:00:27:ba:
df:d8:aa:a1:dd:fe:f5:b0:89:19:e9:2b:3f:d5:02:
a6:0b:91:16:bd:68:31:ec:97:a5:31:52:39:52:3d:
e1:c1:3d:97:28:4c:5b:ac:b1:3b:8c:62:8a:d1:1c:
95:b5:3b:83:70:6e:a1:fc:23:62:2f:63:ec:47:19:
a0:94:0a:14:c4:02:4d:3a:e0:22:78:19:b2:86:78:
1f:0c:e3:11:e6:bf:bf:6c:1f:e2:5a:31:c1:e4:ef:
e0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:41:FD:FA:76:C2:B0:BE:F9:90:34:C1:39:C6:30:96:A3:D6:5A:13
X509v3 Authority Key Identifier:
keyid:54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/f0H9-nbCsL75kDTBOcYwlqPWWhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.242.0/24
91.231.221.0/24
IPv6:
2001:67c:24c::/48
Signature Algorithm: sha256WithRSAEncryption
5c:fc:a2:26:b7:b1:41:8c:69:55:10:4b:0c:b5:0d:39:5f:d3:
dd:ab:52:28:63:9d:69:be:55:45:92:06:d4:0c:a7:f3:97:88:
d9:cd:a4:4f:97:a3:6c:46:37:fb:aa:b7:ed:a8:8a:e2:c6:6f:
e0:7b:a0:8f:ca:aa:ae:ad:fd:f0:a6:4f:5b:85:73:56:f4:39:
e6:06:90:9a:6d:4c:1b:7f:27:eb:3f:b0:18:4d:f5:ad:2b:93:
7f:b5:9c:83:e7:d8:57:a0:34:17:1c:49:d5:1b:49:e6:7f:fc:
c4:1b:7f:d0:27:c0:f5:ef:b9:f1:9b:19:ad:40:74:b5:aa:d7:
5e:e7:c3:bb:e3:02:85:c5:db:69:f6:63:b7:c5:1b:ad:af:c1:
23:b4:b9:f8:d6:b8:3f:92:bf:91:6a:c6:a1:84:f8:1d:10:d7:
75:3b:91:02:e3:6f:66:c6:9b:de:ba:c9:c5:41:db:e5:ad:62:
b5:55:9d:69:a2:5d:a3:08:19:6f:b3:f1:9a:c8:d5:9a:7f:81:
00:a6:2f:d5:a9:ed:6f:07:c3:b6:16:51:a6:31:ed:b9:fd:3d:
b7:29:7b:e3:01:e2:88:03:9c:ee:a2:5c:b4:cb:48:c6:75:b5:
57:ec:61:7e:0a:aa:a1:31:cb:68:de:43:b2:23:9d:f8:7a:d4:
4a:46:70:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:02 2024 by rpki-client on console-fra.rpki-client.org