Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/be1cc1-8286-44f7-98a2-020fc6813121/1/lUl5EsZNgqT0hLj1tcGF93pDdT0.roa
File: lUl5EsZNgqT0hLj1tcGF93pDdT0.roa (raw, json)
Hash identifier: 2eO68N4jbpPhIXS9w80SHAozq2CJB9T1w/hkYHmLE34=
Subject key identifier: 95:49:79:12:C6:4D:82:A4:F4:84:B8:F5:B5:C1:85:F7:7A:43:75:3D
Certificate issuer: /CN=9b7a62e75e0ec92bb1def1e1955f749ffd455072
Certificate serial: 0181F7BB34595B149C89CBEB68D621DEA7B4
Authority key identifier: 9B:7A:62:E7:5E:0E:C9:2B:B1:DE:F1:E1:95:5F:74:9F:FD:45:50:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m3pi514OySux3vHhlV90n_1FUHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/be1cc1-8286-44f7-98a2-020fc6813121/1/lUl5EsZNgqT0hLj1tcGF93pDdT0.roa
Signing time: Wed 13 Jul 2022 13:24:09 +0000
ROA not before: Wed 13 Jul 2022 13:24:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197033
IP address blocks: 91.220.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f7:bb:34:59:5b:14:9c:89:cb:eb:68:d6:21:de:a7:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b7a62e75e0ec92bb1def1e1955f749ffd455072
Validity
Not Before: Jul 13 13:24:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95497912c64d82a4f484b8f5b5c185f77a43753d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fd:75:05:d6:21:cb:6e:61:e9:e3:5b:69:0f:
f3:24:7f:ec:4d:64:97:a6:e8:8a:4c:bd:c2:38:9f:
ef:0b:45:91:dd:71:0f:11:4a:04:e0:74:78:af:34:
e5:64:33:be:6f:31:77:84:74:a1:35:27:eb:cd:e7:
81:43:43:96:39:69:2a:71:01:72:95:ed:e4:05:09:
14:00:b4:a0:d1:cb:66:03:fa:d6:1f:d8:d4:45:0b:
ae:93:62:16:ee:8e:8c:d1:fc:62:17:0e:cc:0b:c8:
1c:c1:25:b4:c5:f5:71:48:90:4d:e2:aa:0b:c4:0d:
12:13:77:bb:5f:5f:c2:86:b5:8d:5b:77:41:41:46:
be:54:b0:f5:2b:74:06:b4:4d:8f:67:e6:c1:db:5d:
b5:a4:1a:c7:a2:6a:c5:e9:49:e4:54:38:cc:d5:a4:
50:05:a0:50:3a:fe:39:66:8a:35:e8:46:f9:34:0c:
55:0b:f4:e8:22:9d:90:a1:6d:1d:65:49:56:b9:ec:
6c:bb:18:02:27:69:69:4d:ce:04:36:5f:f4:9d:df:
f9:d4:32:96:06:07:71:75:4e:b9:b4:f4:5c:17:3a:
84:e1:d8:02:6d:2d:16:06:0b:64:b5:51:48:d3:68:
8c:3f:f4:a3:4e:18:b5:65:05:30:f1:94:c2:47:b8:
ce:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:49:79:12:C6:4D:82:A4:F4:84:B8:F5:B5:C1:85:F7:7A:43:75:3D
X509v3 Authority Key Identifier:
keyid:9B:7A:62:E7:5E:0E:C9:2B:B1:DE:F1:E1:95:5F:74:9F:FD:45:50:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m3pi514OySux3vHhlV90n_1FUHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/be1cc1-8286-44f7-98a2-020fc6813121/1/lUl5EsZNgqT0hLj1tcGF93pDdT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/be1cc1-8286-44f7-98a2-020fc6813121/1/m3pi514OySux3vHhlV90n_1FUHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.51.0/24
Signature Algorithm: sha256WithRSAEncryption
34:28:c2:f9:f6:d9:49:9d:67:2f:94:68:eb:54:6d:5d:ac:7f:
65:20:53:b3:0d:d5:ad:0a:02:7a:fb:42:dc:e1:6e:0c:00:9d:
c4:16:54:a1:d2:46:a9:9e:23:b8:ff:6b:a2:a2:84:74:80:5f:
c0:c1:a1:c4:bb:93:36:4c:23:d8:15:e2:95:36:77:a3:81:30:
d4:a0:94:1b:c4:42:18:49:4f:ac:92:dc:dd:7d:72:62:e9:b5:
13:7b:56:38:6e:8d:cc:df:63:7f:35:a7:9b:d6:c6:b7:e0:04:
af:0c:d7:00:7c:a3:1b:0a:34:c8:5e:11:28:49:fb:4f:13:80:
82:32:17:d8:1f:6f:7f:96:54:d4:de:0e:37:02:86:7e:3c:38:
5e:6d:f8:ff:52:9a:81:42:2c:77:1a:ad:2b:a3:9c:3d:7b:e6:
5c:04:b8:f0:d7:30:ce:fd:fd:7a:b7:28:bf:67:72:bc:06:c9:
b2:fb:3d:01:4f:cc:27:88:ee:8f:f2:fc:ff:36:12:33:b3:3f:
d1:38:c4:9a:cd:fb:ea:a8:fc:e4:54:a7:85:ec:7b:5b:35:4f:
05:1b:55:6b:c4:ec:ea:cb:2a:ca:65:d9:bc:3f:39:d5:e5:af:
76:ca:90:c1:00:c1:82:e4:f8:aa:79:1a:13:19:fa:eb:19:27:
09:db:bb:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:56 2024 by rpki-client on console-ams.rpki-client.org