Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/lBIXszL3QxqCzgAd-yxrPVZmOxM.roa
File: lBIXszL3QxqCzgAd-yxrPVZmOxM.roa (raw, json)
Hash identifier: fRaCH0+iii/GdNfJ20g2ZIBEkst77CVgzqp1KeWhtuw=
Subject key identifier: 94:12:17:B3:32:F7:43:1A:82:CE:00:1D:FB:2C:6B:3D:56:66:3B:13
Certificate issuer: /CN=5f92bff7a89a8590e6abbaec0282b0f24e0afeb2
Certificate serial: 051175E9
Authority key identifier: 5F:92:BF:F7:A8:9A:85:90:E6:AB:BA:EC:02:82:B0:F2:4E:0A:FE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5K_96iahZDmq7rsAoKw8k4K_rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/lBIXszL3QxqCzgAd-yxrPVZmOxM.roa
Signing time: Sat 01 Jan 2022 12:56:36 +0000
ROA not before: Sat 01 Jan 2022 12:56:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57920
IP address blocks: 91.236.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85030377 (0x51175e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f92bff7a89a8590e6abbaec0282b0f24e0afeb2
Validity
Not Before: Jan 1 12:56:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=941217b332f7431a82ce001dfb2c6b3d56663b13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:01:a0:be:d4:f3:d7:64:c1:ea:9f:37:f6:f4:
e9:ac:eb:35:84:bd:8f:35:8a:89:94:d5:46:47:1f:
9c:ee:64:51:07:6e:c6:8c:4d:16:8e:88:58:e8:22:
e7:af:70:75:34:bb:88:a4:0b:a3:66:07:c4:e4:b8:
c6:33:78:be:60:fc:18:a0:fa:f7:ce:60:f6:c1:a4:
6e:75:a7:69:ae:31:e4:bd:11:1d:e2:54:ec:3d:cc:
c6:95:c1:24:f7:37:7e:ea:9e:41:d3:1d:09:d2:7a:
9d:06:3f:ee:44:ec:1e:5b:cd:0a:2d:e4:c5:b9:f1:
b0:ff:39:05:73:8b:fd:23:76:d4:43:71:9d:d9:0e:
c7:45:f9:c7:3d:4c:3a:c8:7d:33:a9:16:f9:81:51:
aa:18:45:78:d0:32:14:c9:83:02:ea:bd:27:51:95:
a1:83:b2:e5:b1:5f:2b:cf:ed:11:1f:76:6f:b2:be:
40:b2:67:d8:f0:4b:63:fe:cd:69:35:53:72:79:d7:
61:64:52:6a:98:8c:68:37:0d:1b:13:7d:50:78:e1:
59:97:54:7b:2f:87:aa:c0:91:11:5c:d0:c8:ed:d6:
fa:24:1b:26:9c:9e:63:5a:16:e3:1b:48:ad:83:14:
35:12:1e:e9:37:75:2d:48:3b:66:44:df:9d:84:87:
ec:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:12:17:B3:32:F7:43:1A:82:CE:00:1D:FB:2C:6B:3D:56:66:3B:13
X509v3 Authority Key Identifier:
keyid:5F:92:BF:F7:A8:9A:85:90:E6:AB:BA:EC:02:82:B0:F2:4E:0A:FE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5K_96iahZDmq7rsAoKw8k4K_rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/lBIXszL3QxqCzgAd-yxrPVZmOxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/X5K_96iahZDmq7rsAoKw8k4K_rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.182.0/24
Signature Algorithm: sha256WithRSAEncryption
68:61:68:f5:5f:e8:08:7c:9c:5f:2b:01:83:9f:21:74:ff:6f:
87:d8:a2:8b:56:67:f8:c5:df:5b:91:d7:b0:7b:49:fb:04:fd:
0f:61:cb:d8:ef:6f:8c:7d:00:06:29:d6:23:38:e9:6b:3f:37:
b6:6c:a5:3d:5e:1a:3a:9f:98:94:7e:e4:57:05:10:5d:84:d0:
ad:ba:ee:9c:b0:2b:bb:1c:35:06:01:c8:ba:b4:b3:19:a6:0d:
87:43:cd:40:27:2b:b5:df:cc:03:5e:7d:fc:77:42:e5:7c:c8:
30:1c:f2:a8:5f:18:4a:af:c5:fc:7c:47:80:72:1c:7e:a1:da:
15:24:6c:4c:de:37:47:ce:d1:d3:f2:5b:5a:88:dc:19:a6:4d:
46:94:b8:20:59:a3:e8:76:37:76:e8:2a:09:0e:a9:80:f8:89:
9a:79:a8:2e:6f:34:fc:bf:ea:40:5a:4a:39:31:dc:0d:ec:c0:
3d:fb:f7:c1:0b:75:50:00:6d:ff:3f:4c:e0:c2:02:af:64:3f:
12:28:df:50:21:e0:eb:a2:fa:59:18:32:c1:c5:13:37:5d:6c:
75:05:d5:dd:cb:fe:ca:09:4a:f7:0a:92:09:e7:34:03:77:fc:
37:18:35:31:b3:83:eb:53:5c:6d:09:d5:40:36:4d:06:e9:cf:
bd:14:38:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:04 2024 by rpki-client on console-fra.rpki-client.org