Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/1bdda9-64ec-4fb6-8b40-f4b9da480ee2/1/3MM4LAxBmM8p0EiCloYpSDTjXx0.roa
File: 3MM4LAxBmM8p0EiCloYpSDTjXx0.roa (raw, json)
Hash identifier: fG/JRLEJyra9TI9jmue2wDyuQXh+kF4nWQRjy75El6Q=
Subject key identifier: DC:C3:38:2C:0C:41:98:CF:29:D0:48:82:96:86:29:48:34:E3:5F:1D
Certificate issuer: /CN=378aa6ed4b6cac6b3a52961bcfa229cfda00080e
Certificate serial: 0B0A12A5
Authority key identifier: 37:8A:A6:ED:4B:6C:AC:6B:3A:52:96:1B:CF:A2:29:CF:DA:00:08:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N4qm7UtsrGs6UpYbz6Ipz9oACA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/1bdda9-64ec-4fb6-8b40-f4b9da480ee2/1/3MM4LAxBmM8p0EiCloYpSDTjXx0.roa
Signing time: Tue 14 Jun 2022 07:50:45 +0000
ROA not before: Tue 14 Jun 2022 07:50:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 91.227.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185209509 (0xb0a12a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=378aa6ed4b6cac6b3a52961bcfa229cfda00080e
Validity
Not Before: Jun 14 07:50:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcc3382c0c4198cf29d048829686294834e35f1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:73:10:9d:20:d1:98:4e:0a:ef:b5:08:85:f6:
4e:de:98:a4:34:82:a4:1d:83:da:bd:a5:98:b4:e5:
2b:8d:90:43:78:84:d8:40:3c:29:3c:0c:61:37:7b:
1f:38:81:ba:e5:85:bb:19:b1:fc:66:29:50:26:60:
09:47:9a:0f:78:95:d3:60:95:6d:11:68:6e:60:30:
4f:c7:96:d1:b8:4e:91:4c:d1:b9:e7:8e:97:b0:86:
2c:ea:0a:ae:8d:8a:5f:59:e4:c1:69:6d:60:a2:26:
c3:a5:72:53:2f:e5:15:3f:32:9d:56:52:1a:d5:46:
c0:ba:7e:3b:61:13:b8:bb:60:56:f5:28:d2:b5:1d:
74:9e:d5:57:9a:61:36:75:25:4e:2b:ec:7a:ab:dd:
de:b4:e5:b0:77:50:21:a3:e0:a6:45:40:0c:ee:a4:
bd:b7:1f:34:33:3b:86:da:38:f6:02:65:a7:31:29:
d4:5d:71:d7:34:92:d8:02:e0:06:4a:59:09:43:50:
ba:76:f6:60:6c:48:a6:b9:1d:1f:c8:27:0b:75:f0:
ba:e3:ba:d8:63:b8:87:6e:88:d9:d0:7c:11:95:7d:
0b:b3:68:df:64:16:a2:dc:95:96:34:fc:3b:31:a1:
d7:d1:f8:57:6b:36:bd:7c:f1:80:ca:d1:a9:67:a8:
b6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C3:38:2C:0C:41:98:CF:29:D0:48:82:96:86:29:48:34:E3:5F:1D
X509v3 Authority Key Identifier:
keyid:37:8A:A6:ED:4B:6C:AC:6B:3A:52:96:1B:CF:A2:29:CF:DA:00:08:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N4qm7UtsrGs6UpYbz6Ipz9oACA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/1bdda9-64ec-4fb6-8b40-f4b9da480ee2/1/3MM4LAxBmM8p0EiCloYpSDTjXx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/1bdda9-64ec-4fb6-8b40-f4b9da480ee2/1/N4qm7UtsrGs6UpYbz6Ipz9oACA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.75.0/24
Signature Algorithm: sha256WithRSAEncryption
09:0a:fa:30:7b:d5:1f:f4:00:a5:d9:f6:35:6e:33:99:66:3f:
62:77:01:6a:44:cf:1b:6a:7d:a1:cc:d0:7f:fb:81:0c:51:81:
e9:39:84:85:00:a4:fb:6b:db:9b:1e:77:04:7d:15:d0:05:01:
36:1a:6e:42:e3:64:3a:7f:d3:93:02:d9:be:ac:fe:88:f7:eb:
a8:6d:de:23:b6:0f:e8:69:26:b5:48:80:1d:05:99:a7:60:3d:
66:33:97:bc:a9:6b:19:14:68:62:9b:d1:7d:28:39:3e:df:df:
e3:50:c6:21:7b:0d:66:01:cc:fc:ca:07:05:f8:ff:9b:6e:52:
27:99:bf:73:6a:14:94:a7:ab:49:6d:6b:ca:04:88:ba:5e:2a:
a4:28:b2:df:a1:aa:9a:0d:ba:f1:4e:4a:2d:64:04:bb:ea:39:
e5:f7:d5:11:00:8e:f1:fb:db:bf:5f:51:d1:37:36:ae:78:1c:
42:b7:30:e9:f3:9b:0e:d3:8f:8c:0f:3e:ac:e0:77:7d:46:86:
c4:eb:45:e2:fd:2c:de:71:cd:85:03:9f:40:10:77:52:fe:6a:
ec:0f:cd:1c:52:e2:49:94:97:2b:08:42:47:68:3d:34:a4:cb:
7c:6c:cb:00:d5:45:08:65:42:75:68:0b:36:98:73:8b:24:ad:
29:42:88:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:04 2024 by rpki-client on console-fra.rpki-client.org