Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ceff08-0527-48be-92b7-0cdfa1c291f6/1/cOXoM7_6M4NUH9LvJroeLBFGef0.roa
File: cOXoM7_6M4NUH9LvJroeLBFGef0.roa (raw, json)
Hash identifier: PmQakJBF7PCJvVqETymb6LXB1/2qiwL94/ogS8UG9Bs=
Subject key identifier: 70:E5:E8:33:BF:FA:33:83:54:1F:D2:EF:26:BA:1E:2C:11:46:79:FD
Certificate issuer: /CN=1639e611b58b7f7055df6a7f995d01fb95d790c9
Certificate serial: 088BE971
Authority key identifier: 16:39:E6:11:B5:8B:7F:70:55:DF:6A:7F:99:5D:01:FB:95:D7:90:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FjnmEbWLf3BV32p_mV0B-5XXkMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ceff08-0527-48be-92b7-0cdfa1c291f6/1/cOXoM7_6M4NUH9LvJroeLBFGef0.roa
Signing time: Sat 01 Jan 2022 10:56:55 +0000
ROA not before: Sat 01 Jan 2022 10:56:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42160
IP address blocks: 91.206.84.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143386993 (0x88be971)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1639e611b58b7f7055df6a7f995d01fb95d790c9
Validity
Not Before: Jan 1 10:56:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70e5e833bffa3383541fd2ef26ba1e2c114679fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:38:59:8c:88:21:42:b0:67:b0:0b:90:da:1b:
01:f9:4d:51:a0:da:34:eb:d6:22:61:44:4e:56:8f:
e0:27:a5:f8:f3:aa:4a:a3:35:c2:10:13:67:e8:83:
29:97:c9:f8:1e:ab:b9:a1:e2:ae:1a:a1:a6:0b:54:
13:e3:c1:34:b6:27:04:a9:38:d2:b8:3f:1f:5a:f9:
a5:ab:3b:5b:83:99:17:07:e4:e4:d4:e5:16:54:bd:
ec:e6:9d:9c:b6:d5:7a:c8:26:19:80:af:be:81:c1:
0e:49:35:c9:81:79:ea:ae:c7:10:3d:cc:01:03:33:
61:f9:81:11:39:1b:47:21:75:0a:52:1c:4a:e2:ac:
46:c7:95:77:da:1a:33:2c:c1:be:ce:43:ab:4f:e2:
98:c6:a8:23:3a:b1:69:4f:c3:28:d5:76:a6:ce:0f:
11:90:64:cf:cb:05:0f:9e:f3:5b:3e:97:57:b9:4f:
49:c8:b5:4d:df:5b:8e:3a:d9:9c:64:d5:16:12:bf:
4c:9c:5c:fe:3d:4b:c7:15:17:fe:ae:f6:4c:c1:b0:
46:a8:e4:d0:67:b0:20:87:ad:13:fa:27:a3:36:1f:
76:64:88:6c:b6:15:a3:c5:34:c5:b4:16:cf:97:bf:
7d:f3:2a:fa:c3:08:c7:d5:75:c2:0b:71:8f:bf:53:
68:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E5:E8:33:BF:FA:33:83:54:1F:D2:EF:26:BA:1E:2C:11:46:79:FD
X509v3 Authority Key Identifier:
keyid:16:39:E6:11:B5:8B:7F:70:55:DF:6A:7F:99:5D:01:FB:95:D7:90:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FjnmEbWLf3BV32p_mV0B-5XXkMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ceff08-0527-48be-92b7-0cdfa1c291f6/1/cOXoM7_6M4NUH9LvJroeLBFGef0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ceff08-0527-48be-92b7-0cdfa1c291f6/1/FjnmEbWLf3BV32p_mV0B-5XXkMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.84.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:fc:94:66:e9:8e:75:7f:f0:ed:32:fb:df:b4:06:cb:6a:4f:
86:dd:36:08:cd:89:d3:99:68:e9:dd:24:7e:b9:43:ee:2e:49:
50:6f:08:73:8a:a9:fe:20:d8:5a:df:b7:06:a5:7b:1b:e5:85:
a6:bb:8b:9a:2d:fb:de:df:70:f4:23:1a:d7:d5:cd:77:0a:03:
a8:3c:98:37:38:d7:e9:45:57:83:f7:dc:7e:1f:f7:13:18:c7:
03:1f:75:c1:e8:5d:9d:d9:a8:82:9e:da:20:17:60:15:1c:47:
85:27:40:8f:53:8e:ff:7f:92:b1:1d:3e:01:a8:a2:0c:34:54:
8a:72:23:38:bd:b4:24:a0:02:78:14:dc:4a:26:2d:5d:30:38:
ec:bc:b5:28:88:64:b4:94:df:00:c3:f5:bd:d6:66:f4:a6:21:
9f:4c:85:07:0f:6a:fb:30:19:51:f1:cf:f4:9c:55:51:7a:c3:
53:48:44:25:4b:93:d5:99:6f:26:5b:a5:86:63:24:17:35:48:
ba:2e:80:e4:72:32:db:57:74:4c:c4:cf:2a:8c:9a:fd:cd:fe:
63:de:ab:1b:95:26:38:15:9b:8b:02:1a:25:7f:b9:97:73:cc:
32:ef:57:6e:8a:c1:e8:76:f5:b8:d9:2b:f4:21:42:a9:cb:31:
2f:a3:3f:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:13 2024 by rpki-client on console-fra.rpki-client.org