Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/fadb3f-dc96-4902-86eb-19df5b4d1014/1/x2QzeVdLghuMZ1x-JBYTpdicBLY.roa
File: x2QzeVdLghuMZ1x-JBYTpdicBLY.roa (raw, json)
Hash identifier: VQQ3tOeDMHi+YqDRtTcrcHGxDGtTcTfJPwmzBlgGIFw=
Subject key identifier: C7:64:33:79:57:4B:82:1B:8C:67:5C:7E:24:16:13:A5:D8:9C:04:B6
Certificate issuer: /CN=e783b62ab8aea520770c57404be7771f679ec0b5
Certificate serial: 0A19DD63
Authority key identifier: E7:83:B6:2A:B8:AE:A5:20:77:0C:57:40:4B:E7:77:1F:67:9E:C0:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/54O2KriupSB3DFdAS-d3H2eewLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/fadb3f-dc96-4902-86eb-19df5b4d1014/1/x2QzeVdLghuMZ1x-JBYTpdicBLY.roa
Signing time: Sat 01 Jan 2022 16:10:59 +0000
ROA not before: Sat 01 Jan 2022 16:10:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20712
IP address blocks: 91.244.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169467235 (0xa19dd63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e783b62ab8aea520770c57404be7771f679ec0b5
Validity
Not Before: Jan 1 16:10:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7643379574b821b8c675c7e241613a5d89c04b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:53:d8:03:76:8f:b4:f1:ad:bf:40:66:73:23:
aa:f4:5d:3c:5c:06:f5:3e:f6:02:69:89:4b:e1:8f:
e9:84:ad:f5:44:42:5b:a7:fa:63:6c:03:57:38:d4:
4b:0c:93:c5:8a:9b:62:3e:45:4c:a4:e7:21:a0:48:
a2:47:97:e9:1a:ea:e8:a0:1e:d8:5c:bb:f9:e4:08:
f0:85:e5:8b:9f:3d:f8:3d:f2:09:e3:c1:22:a8:e3:
c5:1e:f8:97:cd:b1:16:2e:de:bd:82:06:f6:05:f3:
7d:a9:a4:ca:1d:f7:0e:f8:85:73:9c:aa:8f:2d:c9:
d6:95:de:58:41:1e:f7:0b:89:91:de:c8:88:ae:fa:
87:62:b8:b2:21:d0:71:bd:27:72:58:14:ef:52:0b:
31:d0:d1:e1:72:78:67:ea:b7:4e:1a:3c:61:d3:38:
ae:d4:68:33:98:b2:d4:6d:e2:68:07:f2:a1:2a:55:
d1:02:1c:77:4c:7c:60:00:7d:e8:67:f5:39:0a:8f:
c0:77:7f:1f:e9:35:5c:c9:a3:97:6e:53:3e:b7:60:
cb:d5:c7:79:a1:ba:fc:10:7b:17:25:48:0a:e6:15:
51:53:d8:21:0b:28:83:ca:1c:c5:a8:bd:87:ce:f6:
f3:36:71:99:7b:a7:f1:89:2e:54:84:fb:19:a0:20:
55:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:64:33:79:57:4B:82:1B:8C:67:5C:7E:24:16:13:A5:D8:9C:04:B6
X509v3 Authority Key Identifier:
keyid:E7:83:B6:2A:B8:AE:A5:20:77:0C:57:40:4B:E7:77:1F:67:9E:C0:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/54O2KriupSB3DFdAS-d3H2eewLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fadb3f-dc96-4902-86eb-19df5b4d1014/1/x2QzeVdLghuMZ1x-JBYTpdicBLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/fadb3f-dc96-4902-86eb-19df5b4d1014/1/54O2KriupSB3DFdAS-d3H2eewLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.239.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d7:b2:46:36:2a:13:5c:3a:9c:2e:a8:c4:5e:dd:77:e7:70:
d6:b7:14:2e:4a:ea:33:4c:69:58:0f:66:f2:7e:bb:9f:08:c7:
14:82:90:2e:a3:80:0a:5c:3d:a2:de:be:0a:a2:30:95:cc:9d:
74:ca:7d:fe:53:d0:ad:3b:59:3c:b3:e4:6a:57:22:d3:56:21:
46:e3:55:99:86:ed:3d:30:17:d0:c7:5a:e1:88:d5:61:37:ff:
3e:09:02:82:03:38:83:58:8b:75:fc:e5:b0:ca:97:ec:2c:42:
47:95:48:eb:e6:01:65:62:ae:73:b3:88:ba:86:17:96:b6:1b:
a7:b3:d7:9e:1b:7c:ce:38:af:44:65:f5:18:d8:29:43:ee:86:
be:b6:82:97:45:1e:af:7e:1c:e4:50:7c:9e:98:b4:3d:05:b1:
99:e7:f5:1a:4b:1a:1b:2f:bc:ed:a5:6e:c4:cf:54:76:e5:83:
20:73:e7:18:24:3f:18:14:83:66:f0:58:30:15:c9:c5:8c:2b:
83:f3:33:d9:bb:f9:93:65:97:84:5c:45:f0:12:d8:a3:b1:37:
5c:bb:e9:61:8e:f4:58:4e:de:e8:f0:49:1a:9e:17:e0:a1:d6:
f2:9a:44:a3:43:2c:05:23:ba:d9:00:69:1d:4c:7c:02:28:c3:
21:18:dc:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:24 2024 by rpki-client on console-fra.rpki-client.org