Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/f1z_d3fbCf6470MmWk1Ebu-W2wA.roa
File: f1z_d3fbCf6470MmWk1Ebu-W2wA.roa (raw, json)
Hash identifier: 9bWWFGG3X6EesI7HRPW/tQfKtqFqKT2Hkl8HGTLxo4o=
Subject key identifier: 7F:5C:FF:77:77:DB:09:FE:B8:EF:43:26:5A:4D:44:6E:EF:96:DB:00
Certificate issuer: /CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Certificate serial: 08A56218
Authority key identifier: 8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/f1z_d3fbCf6470MmWk1Ebu-W2wA.roa
Signing time: Sat 01 Jan 2022 06:04:02 +0000
ROA not before: Sat 01 Jan 2022 06:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 91.200.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145056280 (0x8a56218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Validity
Not Before: Jan 1 06:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f5cff7777db09feb8ef43265a4d446eef96db00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:ff:9e:5f:8a:15:4b:1b:1e:aa:9e:89:f3:
da:00:09:ac:82:53:ba:e3:f7:64:c5:e9:5d:04:6b:
a3:60:d5:22:0f:19:cd:f3:b0:68:9c:ba:d4:fd:47:
f2:7e:91:92:10:6a:fa:fd:d9:6e:3c:aa:97:41:ae:
bf:d3:b2:6a:93:02:cc:f7:1d:69:90:82:72:ef:4f:
db:cc:ea:7d:f4:7c:b8:b3:ca:ac:98:a8:42:1b:a3:
bf:34:b8:1f:46:0a:73:14:21:32:e7:ec:a3:9a:45:
00:65:43:06:32:c9:81:45:30:1d:9d:e4:8b:bd:ce:
43:3d:71:ab:2b:55:7e:b9:7c:e1:b2:79:b8:ba:9d:
d6:af:18:83:86:bf:cb:ce:73:8f:a2:60:82:23:a4:
00:b5:1b:8e:c6:57:0c:7e:31:1d:96:85:5d:74:04:
16:59:5b:61:4d:ce:53:1e:ff:cb:8e:8f:44:f1:9e:
8c:61:37:ac:62:b8:72:31:41:4c:68:1a:73:89:6e:
41:67:2e:c1:d4:52:ae:9e:81:9f:57:6b:c7:03:0e:
87:59:87:8a:ff:06:87:a3:a3:39:c7:2f:89:bb:27:
8c:2c:3b:fa:e8:64:6a:2f:6c:b4:da:a3:f0:c1:5e:
26:f2:19:e8:76:87:64:1f:98:0c:26:79:38:ca:a3:
5d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:5C:FF:77:77:DB:09:FE:B8:EF:43:26:5A:4D:44:6E:EF:96:DB:00
X509v3 Authority Key Identifier:
keyid:8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/f1z_d3fbCf6470MmWk1Ebu-W2wA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/imAkssJ6Z9_1tlTvoGv3v8EiJiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.56.0/24
Signature Algorithm: sha256WithRSAEncryption
76:f1:d6:96:96:54:ab:ba:a9:0d:70:2e:51:48:03:4b:fc:c5:
90:bc:e9:79:cb:83:74:ec:55:f4:d4:22:cd:0b:3d:49:8e:57:
d8:e3:a0:08:2f:3d:c7:ef:b1:97:02:08:46:95:ab:69:9b:23:
2e:89:1e:d7:cc:26:e0:6c:a5:bb:a1:5e:22:07:28:94:44:97:
0c:db:86:f8:10:79:2a:96:ff:4b:77:5b:f1:cf:5e:65:2a:d0:
af:24:d7:47:b0:61:18:ba:5e:38:44:66:e5:bd:39:41:6d:c6:
45:0d:cf:7a:63:71:4f:9c:d9:51:07:cb:8e:29:05:93:60:8f:
37:fc:c1:ea:26:0e:cf:2c:94:e6:15:e2:a8:1a:77:7e:e5:10:
5d:f7:35:32:04:ab:6a:d8:e5:69:9b:58:e4:3b:03:cc:77:fc:
03:36:ad:32:a3:f0:cb:f5:05:21:f5:04:38:76:ef:72:1a:ae:
0e:e5:04:0f:91:9d:59:c7:38:3b:b9:28:a2:7b:6a:18:b3:38:
3d:6e:99:a5:c1:58:44:1a:88:74:1b:54:ea:a3:04:0f:74:1e:
61:9a:38:41:b9:c3:02:9f:58:36:b2:30:7a:d5:84:e2:5f:72:
07:7f:f8:61:31:af:d4:ba:55:9f:a6:e6:55:0f:a2:63:5a:2c:
4d:1f:99:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org