Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/ZQ9jLh1pCRC34lK0OwB6FUnpQuU.roa
File: ZQ9jLh1pCRC34lK0OwB6FUnpQuU.roa (raw, json)
Hash identifier: Go9Q9tYoQudAWCgq94B6ciAmpajJ1i0UFZx+ENaeSlE=
Subject key identifier: 65:0F:63:2E:1D:69:09:10:B7:E2:52:B4:3B:00:7A:15:49:E9:42:E5
Certificate issuer: /CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Certificate serial: 01838073ADEA5A56CE8C740DA6090611B825
Authority key identifier: 1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/ZQ9jLh1pCRC34lK0OwB6FUnpQuU.roa
Signing time: Tue 27 Sep 2022 19:36:48 +0000
ROA not before: Tue 27 Sep 2022 19:36:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20900
IP address blocks: 91.231.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:80:73:ad:ea:5a:56:ce:8c:74:0d:a6:09:06:11:b8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0260406e837ae38380fcc8d992b93d0de1a83b
Validity
Not Before: Sep 27 19:36:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=650f632e1d690910b7e252b43b007a1549e942e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:42:9a:45:6c:ba:77:ed:89:c4:52:3c:9b:2a:
b1:4d:e0:3a:30:a0:00:6d:a4:69:d3:f2:52:3a:bf:
50:d9:1a:c3:66:dd:6b:e7:4b:c7:c2:64:e2:d5:26:
e1:f5:23:f1:96:b4:5b:3c:a0:05:0b:35:7b:b4:f2:
c5:eb:f2:b4:17:1b:0d:c7:ae:66:ed:49:d4:ed:ff:
d5:99:f0:a2:07:5f:94:6f:2b:54:38:42:9a:06:da:
96:9c:8d:41:89:99:b5:2d:6c:2d:b2:e0:ff:5b:92:
7d:39:37:17:65:88:3b:b1:b0:ae:ef:bf:3c:06:92:
a3:e5:2e:b1:57:cc:f7:33:a3:57:61:f1:de:fd:a7:
78:a2:4c:79:98:c5:7a:35:e2:f3:68:36:5c:5e:26:
5e:49:b5:ee:3a:07:33:5b:99:07:dd:de:cd:6f:46:
e7:0a:d8:16:cc:ea:49:80:71:59:8f:29:86:78:d0:
95:08:af:e9:c5:15:97:de:a9:e7:9a:0e:0b:f7:3e:
bb:e2:b2:e5:0e:00:70:56:c4:a1:02:73:a5:0c:18:
d6:f3:49:49:73:22:20:a6:97:7c:45:35:8a:39:50:
fd:a5:5d:2e:ec:67:15:a0:72:c0:9f:9d:b5:bb:02:
a0:22:8d:55:80:5a:84:42:76:58:70:7c:c5:5e:44:
eb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:0F:63:2E:1D:69:09:10:B7:E2:52:B4:3B:00:7A:15:49:E9:42:E5
X509v3 Authority Key Identifier:
keyid:1D:02:60:40:6E:83:7A:E3:83:80:FC:C8:D9:92:B9:3D:0D:E1:A8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/ZQ9jLh1pCRC34lK0OwB6FUnpQuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/340031-365b-4fd2-8732-8c0faca3cbd8/1/HQJgQG6DeuODgPzI2ZK5PQ3hqDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.175.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:11:e6:ed:4c:3e:62:11:1e:ef:56:68:77:ed:03:bb:52:01:
4e:43:82:c5:8b:8c:a6:f7:24:66:2d:cf:4d:a5:f8:e8:4e:ec:
d7:80:14:5b:27:9e:c1:55:02:ba:1d:54:e1:91:5f:bf:2d:25:
0d:31:e6:e8:2a:ce:db:19:49:bf:83:45:3f:29:b5:85:9c:4b:
af:21:db:17:97:a0:fa:cc:a5:4f:f6:bd:0c:ef:98:98:25:ea:
1d:10:eb:0b:31:57:11:00:3b:a7:33:df:ed:03:98:09:e7:8f:
af:bf:5f:ac:d2:d5:bc:8e:3e:c7:d8:85:1e:f3:70:d8:36:8a:
e7:01:9b:0e:0a:79:5b:12:df:12:dd:ad:ba:3b:3f:f5:66:89:
1a:c6:92:35:70:37:ea:21:17:2e:43:4f:11:39:f0:2e:a6:9c:
3b:e4:27:e9:07:74:8c:cf:64:f2:5d:ef:b1:01:19:14:16:45:
58:43:87:e0:cf:4f:01:63:fc:fd:29:cf:a1:3c:6d:6d:03:fa:
5f:ce:95:f3:1b:ce:74:c9:4f:8d:cb:18:29:22:f5:d9:80:5b:
1f:73:49:7e:30:fc:29:d9:9e:81:4b:a2:00:0f:93:ab:24:4c:
f5:64:df:0b:38:b2:06:d9:ea:61:e3:54:fa:77:c6:13:99:4c:
d1:ca:4e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:31 2024 by rpki-client on console-ams.rpki-client.org