Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/D4a9tW5WcEScBsJggfOtISusjSU.roa
File: D4a9tW5WcEScBsJggfOtISusjSU.roa (raw, json)
Hash identifier: 1u0w+7PldMgGfPLlMRQ+WrZGFq0EXo7BvDe6kqSLm+4=
Subject key identifier: 0F:86:BD:B5:6E:56:70:44:9C:06:C2:60:81:F3:AD:21:2B:AC:8D:25
Certificate issuer: /CN=8986e25683302c38270d0f90c4aad1519393d545
Certificate serial: 02EF24E6
Authority key identifier: 89:86:E2:56:83:30:2C:38:27:0D:0F:90:C4:AA:D1:51:93:93:D5:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iYbiVoMwLDgnDQ-QxKrRUZOT1UU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/D4a9tW5WcEScBsJggfOtISusjSU.roa
Signing time: Sat 01 Jan 2022 15:02:30 +0000
ROA not before: Sat 01 Jan 2022 15:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207199
IP address blocks: 91.239.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49226982 (0x2ef24e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8986e25683302c38270d0f90c4aad1519393d545
Validity
Not Before: Jan 1 15:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f86bdb56e5670449c06c26081f3ad212bac8d25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:20:ce:bc:c7:5b:d7:d1:bb:5d:ab:0d:cc:88:
e5:db:96:be:b9:3e:2d:e2:e1:84:d9:e5:35:2e:43:
d7:81:1b:32:1f:30:de:f7:59:6f:8b:fd:26:fb:34:
59:7e:0e:83:15:9f:f1:78:f0:4e:ae:57:3d:50:3a:
ec:a2:a2:94:8c:c4:3f:1e:7f:de:bb:90:e5:69:dd:
3a:6f:92:4f:8e:21:cd:c7:15:d7:18:48:3e:07:f1:
d0:8f:34:a5:aa:df:7b:7a:a5:8b:a1:44:ca:6f:1b:
e2:47:a3:3b:5d:d0:29:8d:b7:62:3a:83:92:74:76:
a9:76:19:8a:ca:78:9f:24:1a:8f:ce:a8:7d:6c:7c:
90:66:f1:f4:02:6c:9a:a8:59:84:39:a6:31:18:09:
cc:f5:82:88:f0:18:92:49:6a:20:88:97:b9:d9:23:
d2:be:63:58:6e:e5:d0:71:d7:72:20:5d:e6:16:58:
6c:02:00:93:1b:92:9d:ab:97:34:36:4e:d0:8c:34:
b8:ff:0e:20:08:8e:c4:73:17:0c:b6:81:dd:ed:95:
0a:56:76:1e:9e:43:8e:8b:b7:65:10:96:b0:61:21:
ba:1d:51:02:32:69:7f:26:0f:c0:6e:09:f7:6c:42:
1c:fe:7d:f9:70:9e:0d:b3:80:73:43:99:3d:4e:66:
2a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:86:BD:B5:6E:56:70:44:9C:06:C2:60:81:F3:AD:21:2B:AC:8D:25
X509v3 Authority Key Identifier:
keyid:89:86:E2:56:83:30:2C:38:27:0D:0F:90:C4:AA:D1:51:93:93:D5:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iYbiVoMwLDgnDQ-QxKrRUZOT1UU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/D4a9tW5WcEScBsJggfOtISusjSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/dcf559-afb4-46b9-b2d5-937dcff51e2d/1/iYbiVoMwLDgnDQ-QxKrRUZOT1UU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.122.0/24
Signature Algorithm: sha256WithRSAEncryption
03:e1:21:b0:6c:2e:7b:dc:14:6f:be:1a:aa:f5:fc:40:47:d7:
ab:f2:81:27:60:72:73:ed:51:90:ec:d4:cd:b5:46:25:8b:91:
93:e9:6f:20:cb:ba:ae:11:35:d8:7a:f4:08:4e:44:2d:42:07:
ba:c4:11:35:b9:5d:91:b2:15:63:83:d6:96:c3:fd:77:70:55:
23:f9:6d:f1:aa:19:86:bf:6a:20:3e:ea:6a:6e:e4:b0:c6:ad:
63:00:e6:98:b1:ff:56:ee:78:72:94:c5:4e:2a:0e:d4:da:03:
da:9c:73:cc:6a:85:1c:84:db:05:7c:8d:66:ef:7b:d9:bd:f5:
7f:d7:cc:d6:b4:58:4d:69:7c:bd:18:60:a6:d2:0e:cd:e9:bf:
51:3d:9b:19:3d:8a:47:9f:7e:98:71:85:36:37:fa:c1:3e:13:
b4:31:b8:17:8e:b6:a9:33:ad:28:c7:0e:1d:04:3e:d8:0c:6e:
63:15:98:1d:a3:9d:ed:90:0c:83:b4:ee:d3:e0:79:2c:41:a9:
c0:fc:eb:b3:7c:a6:91:de:ef:23:02:6c:89:b6:21:e5:95:d9:
c9:76:1a:e2:32:18:f0:45:bd:57:55:ec:73:be:5c:92:01:9b:
66:35:a8:82:5c:40:c5:0b:8d:15:4f:4a:a2:48:97:33:96:f0:
37:63:0e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:58 2024 by rpki-client on console-ams.rpki-client.org