Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/70DtrCK8O_6YYsVgqTVUJwUDwOA.roa
File: 70DtrCK8O_6YYsVgqTVUJwUDwOA.roa (raw, json)
Hash identifier: VZKae/qLTAj4qKxW2fIsoQd+53K9iVeCeTy32O86tx0=
Subject key identifier: EF:40:ED:AC:22:BC:3B:FE:98:62:C5:60:A9:35:54:27:05:03:C0:E0
Certificate issuer: /CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Certificate serial: 08A33184
Authority key identifier: 8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/70DtrCK8O_6YYsVgqTVUJwUDwOA.roa
Signing time: Sat 01 Jan 2022 06:04:00 +0000
ROA not before: Sat 01 Jan 2022 06:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 91.200.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144912772 (0x8a33184)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Validity
Not Before: Jan 1 06:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef40edac22bc3bfe9862c560a93554270503c0e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:50:27:43:6b:f9:77:ef:75:52:85:8e:75:3d:
ba:12:bd:ba:c8:c5:a5:56:44:e3:ba:da:88:11:9c:
ca:2f:cd:54:37:96:c3:c4:ad:93:86:d6:b0:49:f0:
e8:c7:45:20:69:f1:8b:3b:32:f4:bf:82:14:5f:4f:
1d:40:6b:e2:9c:bc:5b:7b:f8:cc:c5:61:76:53:19:
89:c7:b2:b8:84:b7:c8:12:fc:61:8d:d9:21:8e:df:
d1:b6:46:cf:9d:2f:d0:3d:4e:c2:b5:9f:e8:fd:1a:
26:51:b6:bd:ba:30:42:05:36:c1:7b:14:52:8b:52:
8d:c3:61:1b:24:38:e2:e6:12:cf:95:cf:1a:26:99:
7c:ae:6b:01:d8:56:81:bc:ef:e1:ac:1c:a1:c2:e5:
0d:7c:7b:0a:69:88:1d:fe:5a:00:6d:cb:13:54:ee:
7e:fc:29:e9:31:b1:27:83:31:d2:0e:9c:97:75:6a:
ec:2e:30:fb:bd:33:47:44:5e:6c:0a:d5:13:e3:19:
02:80:fb:97:09:46:14:55:ca:22:38:a2:b8:9e:4d:
4f:ad:b0:57:49:a1:f4:54:52:7a:07:97:38:c1:a1:
c9:86:17:cf:09:90:26:36:b7:32:c1:01:6d:53:26:
12:3b:50:61:78:ec:b7:d4:2b:72:63:ec:83:05:ff:
66:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:40:ED:AC:22:BC:3B:FE:98:62:C5:60:A9:35:54:27:05:03:C0:E0
X509v3 Authority Key Identifier:
keyid:8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/70DtrCK8O_6YYsVgqTVUJwUDwOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/imAkssJ6Z9_1tlTvoGv3v8EiJiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.59.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:55:85:ea:60:0d:c1:2c:56:c8:7e:13:bc:65:30:7c:36:a6:
85:63:bc:38:6b:25:0b:a7:c2:30:44:7f:e4:b9:f5:2d:41:0d:
c7:e2:6c:98:47:3a:91:73:c8:d1:bc:37:97:49:17:13:75:8c:
c7:2a:69:0f:09:f2:24:b4:3e:69:c5:22:fd:31:11:58:5c:b8:
7e:c8:d8:51:b7:b0:90:9c:61:25:de:c4:77:d0:75:8d:e9:d8:
d9:26:62:d1:6f:06:55:a3:9d:be:86:45:5e:ad:29:35:14:f1:
d3:ff:3a:44:ac:2e:47:54:ee:c0:b4:bb:42:9e:6d:9a:7f:e6:
40:f7:7a:4e:a0:56:93:9e:98:e2:45:84:28:38:8e:19:35:08:
2d:dc:4f:ea:6f:db:30:19:cd:8f:89:cd:57:d8:c6:b2:14:05:
91:7d:3e:51:8c:f0:a3:89:b6:70:8d:6c:a8:c5:fe:ce:d8:f4:
5c:df:3d:cb:e4:59:38:32:7b:6f:bd:cc:ae:b1:8c:a8:6f:27:
99:ca:ef:f4:19:42:db:17:f6:ee:97:fb:3d:19:91:e9:f5:7b:
8d:97:cd:93:5b:c4:d8:2b:4c:0a:e0:48:b7:16:33:7e:35:66:
b3:ab:b1:8d:4f:fd:10:ed:93:cb:34:7a:17:de:03:02:4c:49:
a7:39:66:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:28 2024 by rpki-client on console-fra.rpki-client.org