Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/77f2c5-412a-4e4d-8cbf-e4d8cf733ec9/1/1eVP9G0PDaF9B-hFRciAXWYtUpY.roa
File: 1eVP9G0PDaF9B-hFRciAXWYtUpY.roa (raw, json)
Hash identifier: bUAWRcpD2KWXyqvCLCkJgeE+HrMx+l/n2Xz63z2H7Is=
Subject key identifier: D5:E5:4F:F4:6D:0F:0D:A1:7D:07:E8:45:45:C8:80:5D:66:2D:52:96
Certificate issuer: /CN=09590eef9e1d1af8b72e518ec6ccf59cd7f751f5
Certificate serial: 062D9DE9
Authority key identifier: 09:59:0E:EF:9E:1D:1A:F8:B7:2E:51:8E:C6:CC:F5:9C:D7:F7:51:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CVkO754dGvi3LlGOxsz1nNf3UfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/77f2c5-412a-4e4d-8cbf-e4d8cf733ec9/1/1eVP9G0PDaF9B-hFRciAXWYtUpY.roa
Signing time: Sat 01 Jan 2022 06:56:59 +0000
ROA not before: Sat 01 Jan 2022 06:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43397
IP address blocks: 91.194.230.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103652841 (0x62d9de9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09590eef9e1d1af8b72e518ec6ccf59cd7f751f5
Validity
Not Before: Jan 1 06:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5e54ff46d0f0da17d07e84545c8805d662d5296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:0a:8a:20:2d:63:0f:f8:e8:7e:b3:45:34:e6:
8a:18:7c:54:ef:0a:98:a4:dd:42:de:c4:0e:b0:99:
6b:52:4c:d8:3f:6f:53:d8:2a:4d:1e:b2:54:22:c1:
7d:d1:3b:3f:f4:93:46:95:cf:42:98:b9:ad:e1:b8:
e0:87:2c:57:c4:57:5a:fa:2e:db:ee:eb:86:29:45:
f5:f8:e0:e6:ad:bc:bd:50:f0:46:73:04:56:f9:73:
f5:e0:37:fe:30:9c:16:44:45:db:04:17:c6:d8:a2:
79:8d:fb:c8:c4:ba:c5:c2:75:30:6b:42:14:e5:26:
bd:a9:ec:28:82:e2:90:cb:57:64:7e:34:19:ee:39:
01:9e:81:27:c7:f8:75:23:29:2b:57:55:9f:66:ea:
b9:fe:0b:ed:eb:34:b7:aa:50:ae:3c:db:5e:8c:d6:
48:d7:2b:f7:99:5e:52:1a:e0:10:ba:6c:a6:48:e0:
0b:d8:75:b2:85:c2:ca:9f:94:85:9a:da:9d:4b:3e:
b6:12:cc:81:d2:6d:28:f1:4a:71:39:d7:1d:2a:39:
79:b9:7b:c7:3a:48:1a:10:20:82:d3:cd:dc:0c:cf:
c7:54:7a:1c:09:79:13:f3:d2:21:fe:ae:f4:a9:fe:
ac:98:45:80:15:04:c4:4c:14:dd:b2:09:ea:7d:95:
29:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:E5:4F:F4:6D:0F:0D:A1:7D:07:E8:45:45:C8:80:5D:66:2D:52:96
X509v3 Authority Key Identifier:
keyid:09:59:0E:EF:9E:1D:1A:F8:B7:2E:51:8E:C6:CC:F5:9C:D7:F7:51:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CVkO754dGvi3LlGOxsz1nNf3UfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/77f2c5-412a-4e4d-8cbf-e4d8cf733ec9/1/1eVP9G0PDaF9B-hFRciAXWYtUpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/77f2c5-412a-4e4d-8cbf-e4d8cf733ec9/1/CVkO754dGvi3LlGOxsz1nNf3UfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.230.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:cf:cf:ff:dc:10:67:a9:66:58:6c:eb:3c:44:5b:c4:ea:ff:
37:9f:6f:35:14:c7:66:90:f6:65:b5:66:d3:0b:96:56:9a:9e:
f0:66:17:2b:22:3b:74:0f:42:a6:3b:28:9e:91:b7:98:c8:63:
92:e1:5c:5d:b4:aa:4e:9e:b4:8c:80:9a:16:0a:53:3a:37:6f:
5b:52:a8:b8:85:65:b3:39:27:b5:45:6c:48:0d:9c:36:10:f0:
9b:bc:fb:4b:59:27:2d:d6:29:f5:ca:94:6b:0f:d5:36:c3:54:
57:2d:27:a3:dc:47:29:da:b1:91:f0:56:40:ca:c5:6f:da:11:
34:0e:b3:b9:41:55:3e:20:72:6d:5a:60:58:e2:2e:69:0c:3b:
b7:a0:4e:22:94:53:07:c4:15:66:68:a0:0c:9d:cc:83:ba:e8:
4f:bd:00:26:f2:77:d5:39:85:9b:c2:46:19:81:9f:79:e8:80:
16:b1:9e:cf:34:07:76:18:de:35:83:3a:fc:58:13:75:fc:cc:
62:be:eb:fa:86:45:86:8b:fd:5f:f2:ca:ea:a9:7e:08:f6:d7:
be:a0:00:61:80:b2:3a:e9:22:a9:c3:a9:bb:08:4a:29:54:01:
31:37:52:9b:5c:72:33:60:f9:9b:5d:51:fa:61:39:3c:d8:c6:
8f:cb:8c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:08 2024 by rpki-client on console-fra.rpki-client.org