Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/RjKyqwOOsSMF5RESx9J0zyFXay8.roa
File: RjKyqwOOsSMF5RESx9J0zyFXay8.roa (raw, json)
Hash identifier: p7HCtDV50z+BO+bFz+yMehrsav808Uzozt+v7VpJTpU=
Subject key identifier: 46:32:B2:AB:03:8E:B1:23:05:E5:11:12:C7:D2:74:CF:21:57:6B:2F
Certificate issuer: /CN=8b7f81a6e782e211189c4f34e459b4226c75f4a6
Certificate serial: 1BAF01FC
Authority key identifier: 8B:7F:81:A6:E7:82:E2:11:18:9C:4F:34:E4:59:B4:22:6C:75:F4:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i3-BpueC4hEYnE805Fm0Imx19KY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/RjKyqwOOsSMF5RESx9J0zyFXay8.roa
Signing time: Sat 01 Jan 2022 05:57:24 +0000
ROA not before: Sat 01 Jan 2022 05:57:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43511
IP address blocks: 91.194.249.0/24 maxlen: 24
91.194.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 464454140 (0x1baf01fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b7f81a6e782e211189c4f34e459b4226c75f4a6
Validity
Not Before: Jan 1 05:57:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4632b2ab038eb12305e51112c7d274cf21576b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:38:4c:c3:7a:89:13:c2:2b:25:5f:02:1b:47:
6b:c6:25:68:15:cd:46:df:71:3e:16:08:92:20:65:
1c:e0:e6:0f:b4:a0:23:0d:4d:fc:66:41:fb:54:5f:
ea:8f:54:97:52:59:8e:a2:86:5b:2c:f2:83:0e:5c:
a8:f9:da:91:22:12:51:e3:15:73:6f:3d:a7:7c:40:
6d:f3:89:37:4a:52:d8:58:a7:6d:7a:20:ef:30:c0:
b8:d5:ab:ce:7c:5c:e3:2c:c7:d5:2c:28:de:c7:8c:
83:16:29:08:8d:33:6c:9f:95:77:ca:55:b0:fc:a6:
a6:c2:31:e9:93:25:9f:2b:8c:9a:7f:8b:a9:96:f3:
4a:25:50:1c:86:87:28:c5:19:ec:82:15:78:02:98:
0f:ef:ff:8b:24:87:4a:11:87:81:82:8d:a5:e4:6f:
aa:bf:5d:01:be:4b:d2:03:d3:7a:ef:49:f6:d4:75:
ab:89:4c:9f:70:e5:24:74:4f:72:d7:2e:dc:30:50:
20:1f:b9:29:12:7a:04:cc:ba:eb:9f:00:b0:b5:16:
91:62:d9:30:14:39:d8:1e:0d:6e:51:b6:61:74:e8:
ea:99:95:e1:21:c6:90:68:96:ea:ce:10:6a:8b:4a:
7d:b9:9b:58:a4:03:d4:79:b7:98:d0:e8:d5:ae:3b:
f4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:32:B2:AB:03:8E:B1:23:05:E5:11:12:C7:D2:74:CF:21:57:6B:2F
X509v3 Authority Key Identifier:
keyid:8B:7F:81:A6:E7:82:E2:11:18:9C:4F:34:E4:59:B4:22:6C:75:F4:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i3-BpueC4hEYnE805Fm0Imx19KY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/RjKyqwOOsSMF5RESx9J0zyFXay8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9b60e5-f98f-4ac6-98a5-f2f426efe039/1/i3-BpueC4hEYnE805Fm0Imx19KY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.248.0/23
Signature Algorithm: sha256WithRSAEncryption
04:94:70:cd:86:62:76:cd:25:e4:e0:36:0b:a8:73:77:b0:c9:
8b:56:00:68:26:d0:55:91:65:54:df:b0:a2:4d:bf:3e:53:18:
36:4a:af:df:cf:a0:60:af:08:4c:ce:32:c9:36:a6:b3:ce:fd:
c2:1b:ac:b2:02:94:f8:13:fd:ed:09:37:ce:54:1f:36:14:e8:
98:31:28:0c:43:48:b9:ee:3c:12:da:f0:03:82:88:70:64:46:
96:0b:9c:96:29:2f:99:66:20:87:a1:b5:11:0f:3b:f3:96:64:
ee:19:a5:36:64:f6:4e:f3:0f:64:65:6a:ec:0f:01:91:7d:43:
32:f7:de:70:25:c6:25:1d:eb:77:1e:71:ac:2f:12:89:4a:44:
36:b9:c4:6d:5c:02:6e:70:6d:b3:47:6e:3a:f6:d5:2b:97:75:
f1:7e:ef:e0:d9:fa:a5:34:f1:9b:f1:37:7d:26:c0:0d:bb:63:
3c:31:92:02:5f:8b:87:7c:22:c8:37:41:6c:41:23:6f:a3:38:
62:33:ec:ec:32:6d:0a:b5:20:a8:44:e7:96:e6:4c:20:cc:18:
b8:57:49:63:f3:04:d7:df:55:84:89:4d:08:68:35:52:65:7a:
8f:8e:07:29:7d:b1:d5:75:8a:08:66:16:e6:e4:d8:35:7b:05:
1b:f9:aa:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:51 2024 by rpki-client on console-fra.rpki-client.org