Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a2f74e-e909-4971-9341-cbc2566ae74d/1/yH3_DdPZAo_2hX02V6Mai8y6tWY.roa
File: yH3_DdPZAo_2hX02V6Mai8y6tWY.roa (raw, json)
Hash identifier: 1gmtN/ohw4ArbGSp+xEcMR3+yBq0O368fKDMTrs7zAI=
Subject key identifier: C8:7D:FF:0D:D3:D9:02:8F:F6:85:7D:36:57:A3:1A:8B:CC:BA:B5:66
Certificate issuer: /CN=787f62191f191314bd6bddb096b4cd4ddb33f45c
Certificate serial: 064CE5EE
Authority key identifier: 78:7F:62:19:1F:19:13:14:BD:6B:DD:B0:96:B4:CD:4D:DB:33:F4:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eH9iGR8ZExS9a92wlrTNTdsz9Fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a2f74e-e909-4971-9341-cbc2566ae74d/1/yH3_DdPZAo_2hX02V6Mai8y6tWY.roa
Signing time: Sat 01 Jan 2022 04:00:56 +0000
ROA not before: Sat 01 Jan 2022 04:00:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197042
IP address blocks: 91.216.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105702894 (0x64ce5ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=787f62191f191314bd6bddb096b4cd4ddb33f45c
Validity
Not Before: Jan 1 04:00:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c87dff0dd3d9028ff6857d3657a31a8bccbab566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:80:a0:42:b7:56:e2:64:d1:80:05:3f:68:b9:
5c:77:15:df:ff:e3:77:24:6e:b6:cd:be:fc:c3:a0:
ec:dd:54:ef:dd:f3:d3:f9:6f:af:6f:29:95:b1:29:
bf:9d:89:92:51:de:d7:1a:44:0d:2d:d3:25:36:4a:
00:f8:bb:66:42:12:26:6e:5c:97:80:15:71:5c:6e:
34:da:8d:2b:2e:c2:3d:da:b6:f2:64:f5:17:7e:b5:
da:8b:08:0a:a7:89:a1:4a:9a:bc:61:8a:a6:fa:0f:
e7:39:e2:e8:da:e1:d5:12:7a:1b:fd:75:cc:d6:cd:
45:bb:8f:bd:c5:8e:5a:5d:12:29:70:8e:bd:e8:56:
0b:88:16:d2:0a:a5:5a:7f:9e:a5:71:0a:fd:78:71:
2c:96:a6:43:52:3c:75:b6:60:d1:cc:3a:ad:8d:b0:
9d:8f:1c:35:f1:03:0e:8d:51:d8:e8:95:69:b6:56:
a3:4c:71:43:22:1c:a5:e8:8d:3f:75:9b:c3:02:ec:
27:e3:16:25:16:f1:70:25:c8:e7:41:c5:80:8f:7d:
9a:38:ab:95:19:1a:7c:9d:71:fc:e9:36:68:7a:d5:
42:39:fa:60:e0:0a:55:7e:c5:8f:ef:4a:12:6e:ba:
77:cd:d6:e3:bb:3e:02:c9:7c:29:65:74:8d:44:8c:
9a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:7D:FF:0D:D3:D9:02:8F:F6:85:7D:36:57:A3:1A:8B:CC:BA:B5:66
X509v3 Authority Key Identifier:
keyid:78:7F:62:19:1F:19:13:14:BD:6B:DD:B0:96:B4:CD:4D:DB:33:F4:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eH9iGR8ZExS9a92wlrTNTdsz9Fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a2f74e-e909-4971-9341-cbc2566ae74d/1/yH3_DdPZAo_2hX02V6Mai8y6tWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a2f74e-e909-4971-9341-cbc2566ae74d/1/eH9iGR8ZExS9a92wlrTNTdsz9Fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.148.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:ae:75:73:6e:bc:2f:08:c6:bc:c8:15:8b:df:1d:57:73:fd:
49:f4:ed:ec:be:8c:ed:ef:31:66:0c:02:88:db:07:f0:9e:c5:
29:e4:e4:43:4c:d4:24:90:f7:20:90:06:de:03:2c:d1:a5:56:
8b:1d:61:cb:5c:a5:ee:e8:62:f4:07:35:18:22:48:88:41:2a:
94:79:51:cf:4d:f6:58:ec:56:58:83:da:02:8b:39:b6:38:28:
77:13:95:cd:ac:be:86:38:a0:c1:dc:03:b2:94:f5:be:b2:ae:
69:c0:92:d7:6e:92:8c:09:98:79:4d:c8:f2:03:06:4e:a0:9e:
9e:52:e9:29:ab:99:fd:db:d6:2a:3f:9d:08:ab:b3:97:98:d0:
5d:a7:86:24:68:9d:d1:e3:4f:24:70:a5:c1:f8:60:f2:7a:71:
11:4d:7a:55:a0:b9:50:cf:25:52:a5:8d:32:f4:50:67:f7:aa:
a9:93:15:de:d7:4a:94:ad:b3:13:65:5c:2f:cb:bb:0a:07:93:
3e:e1:c8:78:1f:d0:a7:7e:69:03:6e:7c:14:77:75:a6:d3:97:
1e:ea:de:7c:b9:2a:62:31:5b:0b:e7:ae:b7:09:7a:44:2d:c2:
00:10:ce:a1:2a:d6:3c:77:b6:4b:90:5b:79:4a:11:0c:c7:f2:
36:d7:6b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org