Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/03ffd0-7e8b-43fe-8eee-aae638dbb1c1/1/eAkE9PWxspZcwnHZZIjmx4WR85M.roa
File: eAkE9PWxspZcwnHZZIjmx4WR85M.roa (raw, json)
Hash identifier: djvX03/lL656ycoYe9Og+/KFRpfyATI6p08zvVbuhos=
Subject key identifier: 78:09:04:F4:F5:B1:B2:96:5C:C2:71:D9:64:88:E6:C7:85:91:F3:93
Certificate issuer: /CN=1f9ffd8ee32b3e357978d9cb99216cce8137a324
Certificate serial: 079C9BD3
Authority key identifier: 1F:9F:FD:8E:E3:2B:3E:35:79:78:D9:CB:99:21:6C:CE:81:37:A3:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5_9juMrPjV5eNnLmSFszoE3oyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/03ffd0-7e8b-43fe-8eee-aae638dbb1c1/1/eAkE9PWxspZcwnHZZIjmx4WR85M.roa
Signing time: Sat 01 Jan 2022 03:51:56 +0000
ROA not before: Sat 01 Jan 2022 03:51:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25540
IP address blocks: 91.220.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127704019 (0x79c9bd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9ffd8ee32b3e357978d9cb99216cce8137a324
Validity
Not Before: Jan 1 03:51:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=780904f4f5b1b2965cc271d96488e6c78591f393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f0:3c:b5:67:0f:d1:00:91:a9:cf:28:44:0a:
50:6a:d3:c7:ee:e2:f3:35:9d:b3:e4:17:0b:0b:85:
7b:1c:b5:48:5b:6a:00:29:16:a7:78:3c:4c:11:68:
29:58:e0:bf:01:e5:54:2c:23:fb:74:72:6a:94:fc:
0c:14:c3:1e:aa:10:2f:44:c5:63:1a:84:36:30:fd:
bf:b3:dd:11:23:a2:0c:66:31:35:c8:8a:56:c4:cc:
fb:63:14:3b:99:e4:59:10:fe:d1:02:61:e6:28:7a:
a9:76:3a:e7:94:63:5c:e9:17:10:12:4f:7f:81:73:
6f:c0:90:a8:66:b7:0f:00:b9:26:4e:6c:c2:a1:4f:
e7:48:0e:25:3f:bb:1d:59:39:e4:77:24:22:dd:e6:
a1:f4:21:c2:7c:b5:f0:97:cf:b3:66:d4:92:dc:71:
76:6f:bd:d0:dc:ac:91:54:7d:65:76:16:c6:27:ff:
13:72:d5:7e:a5:de:af:70:a4:59:28:ea:8f:f9:fd:
79:23:2e:07:f3:67:73:1d:8a:ea:ed:d4:d6:08:aa:
bb:51:e5:e2:90:b4:42:99:e7:d4:4c:3a:69:40:50:
53:38:61:ec:b8:86:c0:73:87:d7:9f:7c:19:f6:01:
9d:df:11:f4:4c:54:7f:99:fa:7e:cc:6f:85:47:b8:
16:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:09:04:F4:F5:B1:B2:96:5C:C2:71:D9:64:88:E6:C7:85:91:F3:93
X509v3 Authority Key Identifier:
keyid:1F:9F:FD:8E:E3:2B:3E:35:79:78:D9:CB:99:21:6C:CE:81:37:A3:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5_9juMrPjV5eNnLmSFszoE3oyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/03ffd0-7e8b-43fe-8eee-aae638dbb1c1/1/eAkE9PWxspZcwnHZZIjmx4WR85M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/03ffd0-7e8b-43fe-8eee-aae638dbb1c1/1/H5_9juMrPjV5eNnLmSFszoE3oyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.116.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:22:f4:59:03:ab:ce:fc:e1:19:47:aa:23:75:10:4d:e0:10:
05:b8:70:38:7e:b0:42:49:73:23:3d:a9:0c:c5:60:3a:63:bd:
96:50:41:eb:12:7b:66:8b:26:3f:7a:cc:fb:10:e6:b5:e9:eb:
a8:0d:dc:45:45:12:bb:31:2b:a8:c2:43:6e:58:f2:d3:6c:b6:
8d:8c:f4:7b:75:4e:33:78:c7:db:2b:5e:dc:be:e1:bf:ca:c9:
c5:ef:2a:d9:50:5d:01:32:b4:17:0e:46:90:da:5e:ea:d1:53:
30:cf:4c:ca:d9:3a:48:9d:ea:c2:93:65:b0:09:a3:88:7c:a9:
c7:ce:b5:6c:e7:2d:33:92:db:0f:38:33:17:a9:98:c7:78:a2:
2f:c6:5c:c6:09:38:f7:d2:52:09:cb:04:83:11:f1:25:b8:8d:
87:18:3a:55:dd:c2:53:75:94:df:c0:34:23:cf:f8:d3:e5:b0:
0f:b7:82:dc:df:0b:4a:9b:c6:cd:f7:8a:37:a1:64:ba:de:3e:
50:bf:e2:5e:02:74:e6:cc:3f:63:e9:b5:8a:9f:e6:b9:dd:74:
01:99:1d:89:ac:32:f5:2c:8d:96:db:2e:7b:09:99:4d:0a:b6:
5c:29:1c:b6:90:3a:37:0a:f4:db:af:ae:b2:fa:35:53:33:37:
91:de:25:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:55 2024 by rpki-client on console-fra.rpki-client.org