Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/a50c7c-878a-47fd-8107-79f105aef8d6/1/IxUc6sctyf9lSjHGIy75tt1oAOc.roa
File: IxUc6sctyf9lSjHGIy75tt1oAOc.roa (raw, json)
Hash identifier: lR48+0Xy6YoVp5IDFtINDdomSe6jxfM6uy+rRZcIW2E=
Subject key identifier: 23:15:1C:EA:C7:2D:C9:FF:65:4A:31:C6:23:2E:F9:B6:DD:68:00:E7
Certificate issuer: /CN=1f0f78a55a5be5c01db803f438ca611b7f150307
Certificate serial: 01830D929C361BB92E3F6465BBDC58CE3D15
Authority key identifier: 1F:0F:78:A5:5A:5B:E5:C0:1D:B8:03:F4:38:CA:61:1B:7F:15:03:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hw94pVpb5cAduAP0OMphG38VAwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/a50c7c-878a-47fd-8107-79f105aef8d6/1/IxUc6sctyf9lSjHGIy75tt1oAOc.roa
Signing time: Mon 05 Sep 2022 12:14:15 +0000
ROA not before: Mon 05 Sep 2022 12:14:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209653
IP address blocks: 91.220.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0d:92:9c:36:1b:b9:2e:3f:64:65:bb:dc:58:ce:3d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f0f78a55a5be5c01db803f438ca611b7f150307
Validity
Not Before: Sep 5 12:14:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23151ceac72dc9ff654a31c6232ef9b6dd6800e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8e:82:4a:4f:10:ab:fb:6c:0d:e0:b5:16:dd:
3a:d0:1c:d8:68:9c:04:9c:c8:c4:45:56:d2:c8:23:
5c:e3:7a:a7:c9:a1:da:3f:27:3e:3e:2d:83:71:7d:
5e:27:8e:31:98:dd:2b:b9:ce:5e:e0:df:ad:2a:0e:
97:72:ce:a5:3f:6a:bb:ac:f5:4f:fb:a9:e3:7f:cb:
72:7e:a5:b8:96:95:ce:bc:d8:ec:9a:c0:78:a9:65:
00:b2:b5:4a:95:d5:3d:78:0e:d2:8b:14:f3:9b:bb:
ad:c9:6a:4b:b1:14:0c:3a:55:63:d0:e3:7a:b4:d8:
fe:e3:ce:ce:67:85:2c:08:a1:0e:6c:23:74:d5:11:
55:e1:2a:b9:94:49:d9:c3:02:69:4f:23:42:6e:7b:
bb:17:e6:43:2b:20:e6:d1:cf:11:e9:40:7d:2d:66:
e6:2f:b8:47:ff:c2:39:59:14:ef:b9:fb:3c:7f:8c:
90:9e:06:a7:44:47:32:d7:20:f4:bf:58:19:71:58:
bf:18:69:f3:08:c0:a1:50:09:e2:6b:d0:f2:43:bc:
d2:1e:7b:68:d3:4c:10:01:55:f6:3f:e0:44:01:67:
ff:fd:d2:b9:8e:7d:76:e2:73:aa:43:9c:82:00:f2:
c9:fa:64:58:a9:1a:53:b0:45:43:4a:8c:5a:04:36:
85:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:15:1C:EA:C7:2D:C9:FF:65:4A:31:C6:23:2E:F9:B6:DD:68:00:E7
X509v3 Authority Key Identifier:
keyid:1F:0F:78:A5:5A:5B:E5:C0:1D:B8:03:F4:38:CA:61:1B:7F:15:03:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hw94pVpb5cAduAP0OMphG38VAwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a50c7c-878a-47fd-8107-79f105aef8d6/1/IxUc6sctyf9lSjHGIy75tt1oAOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a50c7c-878a-47fd-8107-79f105aef8d6/1/Hw94pVpb5cAduAP0OMphG38VAwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.30.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:df:9d:35:93:9a:7a:49:16:0a:a6:25:1f:45:f6:5d:1b:7d:
72:65:2e:42:5c:90:95:a5:82:61:81:20:b4:be:9d:fe:96:c2:
a9:8f:ec:86:e3:85:77:61:28:47:73:28:7d:47:2f:74:29:c9:
d4:27:fc:b0:38:e9:f3:ed:22:19:1c:ab:fe:7b:90:58:37:d6:
cd:eb:d2:a2:04:c2:5d:76:a2:e2:dd:62:aa:ed:e9:60:18:20:
02:d4:bd:2c:b6:9b:46:6b:96:d4:f3:35:fb:9d:bf:64:ee:a4:
18:ae:53:f0:6e:f6:00:73:ac:6e:98:f5:0e:28:58:10:34:e0:
52:97:fd:6f:f8:a2:54:9a:50:27:86:35:3b:0c:58:6a:9b:60:
f8:56:30:0a:67:06:99:ad:14:47:45:e6:c6:24:e4:e1:69:f2:
ec:7d:23:fa:87:d4:2e:e1:81:b0:a1:96:ab:ea:dc:2e:3b:41:
71:f7:97:ef:f0:31:d3:20:17:bc:d9:3b:3d:74:32:c6:71:6c:
72:f2:35:1d:97:0e:5c:8c:c3:e8:a4:22:40:7b:37:d8:13:3c:
48:74:d5:0c:a9:d3:d3:86:d2:17:0c:55:c6:e2:b1:2c:c3:14:
18:dd:ed:54:72:c4:30:b2:06:53:1b:f9:0b:a0:90:f8:c3:c7:
6c:8e:3c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:13 2024 by rpki-client on console-ams.rpki-client.org