Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/qUjAtIMJ5uUQMdH-4yBHoSC2JoA.roa
File: qUjAtIMJ5uUQMdH-4yBHoSC2JoA.roa (raw, json)
Hash identifier: 8iG0gHVYjS58pGeTUcqNEI/nJnq448xKm7ik4orL0Do=
Subject key identifier: A9:48:C0:B4:83:09:E6:E5:10:31:D1:FE:E3:20:47:A1:20:B6:26:80
Certificate issuer: /CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Certificate serial: 0184ECAF94E3A5D6B51B773D25DD17F26037
Authority key identifier: F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/qUjAtIMJ5uUQMdH-4yBHoSC2JoA.roa
Signing time: Wed 07 Dec 2022 13:04:00 +0000
ROA not before: Wed 07 Dec 2022 13:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57813
IP address blocks: 91.235.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:af:94:e3:a5:d6:b5:1b:77:3d:25:dd:17:f2:60:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f28fa1a2e4491891c19b0f10b086f655984f5879
Validity
Not Before: Dec 7 13:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a948c0b48309e6e51031d1fee32047a120b62680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:a3:a0:6c:bd:57:54:da:ea:23:09:21:4a:
80:be:3e:65:58:37:41:48:d5:a7:77:4b:68:7c:f1:
ca:38:28:12:a1:9d:50:79:3a:73:5a:e1:93:53:df:
a9:02:87:0c:01:14:dc:57:9c:b1:d4:be:08:cd:03:
0d:4c:c7:1e:7a:95:82:46:5a:53:94:5e:99:48:ca:
fc:70:4a:97:11:ef:aa:60:61:8f:30:24:21:23:6b:
8e:2a:39:b7:3c:c3:53:f9:60:76:d3:d7:65:e4:f4:
a9:0d:08:e0:a7:75:89:b6:73:7d:19:30:07:fc:5f:
a4:c5:96:73:a6:d0:b1:3e:e6:f8:23:c4:9e:11:23:
da:b9:ff:ae:b5:5d:57:61:84:17:32:09:dc:6f:aa:
1e:8c:e1:1e:09:9a:c4:c8:13:24:0c:ab:75:88:41:
c1:4e:6c:3c:ba:16:fc:3a:31:1b:c6:62:35:af:24:
f8:e3:fd:dd:06:b4:99:7e:d2:d5:3e:59:07:d2:56:
2e:85:ea:b2:4b:71:8b:7e:f8:ec:a1:b1:32:b7:6c:
48:45:6d:25:e6:92:01:20:bb:09:72:7a:fb:98:42:
6e:32:8b:6e:3b:dc:09:34:9c:29:96:99:44:a2:a4:
21:97:1d:02:58:89:b8:16:a2:35:8c:a6:44:de:d1:
9e:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:48:C0:B4:83:09:E6:E5:10:31:D1:FE:E3:20:47:A1:20:B6:26:80
X509v3 Authority Key Identifier:
keyid:F2:8F:A1:A2:E4:49:18:91:C1:9B:0F:10:B0:86:F6:55:98:4F:58:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8o-houRJGJHBmw8QsIb2VZhPWHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/qUjAtIMJ5uUQMdH-4yBHoSC2JoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8bbfac-0780-4bbd-bca2-34a14a2bb401/1/8o-houRJGJHBmw8QsIb2VZhPWHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.164.0/24
Signature Algorithm: sha256WithRSAEncryption
59:c2:7c:91:55:22:78:4f:6f:21:e5:03:a5:d6:a3:99:22:12:
35:1c:6a:71:76:cd:37:ef:4e:cc:df:88:ef:c9:4c:1e:08:a6:
41:e4:87:98:1f:f1:30:bb:1e:6c:0f:9a:de:a2:db:b7:82:de:
af:d1:44:af:7f:00:76:95:d7:11:5f:dc:ef:cd:82:40:ac:9a:
69:af:f6:16:6c:be:e0:be:61:62:51:30:20:2f:09:2d:ea:25:
27:76:61:65:79:60:c3:a5:8b:c5:66:f0:e1:4d:41:d9:98:68:
44:b6:54:ef:c2:ad:65:93:d0:c3:ed:48:6d:55:5f:e1:64:7b:
b0:59:14:32:7c:4a:6e:d4:14:e2:a2:33:d3:8c:07:bb:b9:79:
e6:27:50:27:d4:94:f1:a3:11:07:7f:1e:db:54:b6:d0:12:0e:
a7:f6:48:59:b4:2c:e0:3d:c0:52:70:b7:2c:86:2f:15:6e:75:
27:f0:7b:07:0a:63:d0:fd:70:8d:65:a2:5c:3d:d9:20:e3:10:
3f:4e:0a:e9:e4:97:7e:bf:32:cf:20:8f:83:b0:42:63:85:17:
9a:f1:f9:98:51:3f:05:fe:b8:3b:da:91:e8:6a:89:43:4e:e7:
69:cb:bd:fa:7e:dd:0d:fe:ab:9d:0f:92:47:6e:39:ce:04:b1:
d4:c5:74:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:42 2024 by rpki-client on console-fra.rpki-client.org