Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/ad3797-3346-478f-9e9d-a89f959be204/1/ipfuVo3P-8ygvAVb2mUj4Z6YxCE.roa
File: ipfuVo3P-8ygvAVb2mUj4Z6YxCE.roa (raw, json)
Hash identifier: TjK6m0cF3PTIFm6pe5T+uAgAHNzDAjXLTAtzkWTKNyk=
Subject key identifier: 8A:97:EE:56:8D:CF:FB:CC:A0:BC:05:5B:DA:65:23:E1:9E:98:C4:21
Certificate issuer: /CN=e6f824e4bc5cd81886ec24b5e15266e95f8ddf93
Certificate serial: 0182EE88DAA513D0A489B0CB0AA13C74E55C
Authority key identifier: E6:F8:24:E4:BC:5C:D8:18:86:EC:24:B5:E1:52:66:E9:5F:8D:DF:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5vgk5Lxc2BiG7CS14VJm6V-N35M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/ad3797-3346-478f-9e9d-a89f959be204/1/ipfuVo3P-8ygvAVb2mUj4Z6YxCE.roa
Signing time: Tue 30 Aug 2022 11:35:22 +0000
ROA not before: Tue 30 Aug 2022 11:35:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197266
IP address blocks: 91.217.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:88:da:a5:13:d0:a4:89:b0:cb:0a:a1:3c:74:e5:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6f824e4bc5cd81886ec24b5e15266e95f8ddf93
Validity
Not Before: Aug 30 11:35:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a97ee568dcffbcca0bc055bda6523e19e98c421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:72:ee:7b:4e:13:6f:ed:09:ac:55:f6:98:64:
52:b4:84:b1:25:f0:dc:70:be:d6:d3:72:be:48:cf:
4b:de:40:35:30:23:4d:2d:ef:be:8d:30:78:b3:d5:
6d:c6:9d:02:77:fe:be:76:8d:db:e1:f3:dc:8c:0b:
34:42:e8:70:a4:95:55:6e:ea:be:ab:b3:d8:cb:31:
e5:b6:39:a0:c8:1e:a1:88:31:a6:62:4a:5f:d1:3a:
26:7c:be:c0:b5:ba:06:2c:06:7c:4b:7c:81:90:57:
41:f0:af:73:d1:4f:4d:a0:e8:39:df:f2:97:be:6a:
14:97:a2:b1:2e:11:53:d9:0e:8b:e6:03:3d:54:6b:
c2:6c:8c:22:3f:60:ba:9a:1d:7e:a0:28:29:f3:44:
ca:09:98:83:fe:af:3a:d2:ee:f0:71:62:20:d6:09:
4c:29:e8:16:d7:0c:9b:5d:b0:f4:4f:46:0f:28:1e:
32:b0:41:0f:42:cb:02:65:cb:f2:10:2d:d8:22:87:
6c:89:d2:f5:68:17:a7:2e:eb:51:d3:d3:08:02:ca:
08:d1:0b:f0:93:64:ec:fb:99:f7:84:fb:d2:27:77:
1a:58:31:38:08:c7:35:f1:55:80:c3:5f:d0:3f:df:
bd:e6:9a:87:ae:b0:25:4d:24:42:fa:13:a7:d1:ca:
9d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:97:EE:56:8D:CF:FB:CC:A0:BC:05:5B:DA:65:23:E1:9E:98:C4:21
X509v3 Authority Key Identifier:
keyid:E6:F8:24:E4:BC:5C:D8:18:86:EC:24:B5:E1:52:66:E9:5F:8D:DF:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5vgk5Lxc2BiG7CS14VJm6V-N35M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ad3797-3346-478f-9e9d-a89f959be204/1/ipfuVo3P-8ygvAVb2mUj4Z6YxCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ad3797-3346-478f-9e9d-a89f959be204/1/5vgk5Lxc2BiG7CS14VJm6V-N35M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.222.0/24
Signature Algorithm: sha256WithRSAEncryption
05:45:9d:32:a4:a3:fc:bd:7f:32:75:93:18:1a:76:52:01:1a:
37:a8:eb:01:9e:95:91:ae:28:22:35:c2:c4:ef:f0:1e:59:21:
5d:da:8e:7a:8d:9b:c6:79:80:ae:cc:cc:2d:bc:ab:37:4b:30:
a4:bd:dc:d7:99:36:53:83:b6:82:10:97:d5:0f:b5:3b:6c:0a:
92:4a:8c:11:22:67:e5:bf:c0:5b:09:ee:d5:9d:f5:9a:11:7e:
e9:21:0c:5d:94:77:d2:c3:db:5e:bf:0f:e5:97:b6:55:89:ea:
5f:78:3a:ca:99:1b:78:10:61:11:7f:03:ac:21:d8:09:c4:f1:
10:e8:ec:7d:e8:0b:6c:f3:4a:50:77:98:a0:00:44:38:ff:ec:
56:b3:86:bf:a1:67:e6:70:98:0a:01:e3:1c:7c:2e:3d:5e:b5:
7c:45:b5:13:21:2e:9a:8c:e0:6e:37:96:05:d8:b1:d9:56:98:
98:17:6e:66:2f:d1:e7:ba:e0:e0:18:84:5d:f1:b4:cd:a7:de:
3f:63:91:89:58:72:7c:fa:0c:88:36:a3:6a:38:97:72:59:55:
15:6a:b5:7d:73:94:b6:f6:fb:1a:a1:95:c4:86:d1:d5:d6:1e:
55:2b:e1:3c:45:5c:1a:c4:79:d5:9c:1a:fb:99:8f:c6:a3:f2:
fc:af:f7:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:19 2024 by rpki-client on console-fra.rpki-client.org