Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Izxq_4PbNzfIGzW9QZGVnEd1qXE.roa
File: Izxq_4PbNzfIGzW9QZGVnEd1qXE.roa (raw, json)
Hash identifier: SJ6J3cqoM0QP0wo9nfW2MSzEF80qjVQMBoJe+8nO6SQ=
Subject key identifier: 23:3C:6A:FF:83:DB:37:37:C8:1B:35:BD:41:91:95:9C:47:75:A9:71
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1D51FDF1
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Izxq_4PbNzfIGzW9QZGVnEd1qXE.roa
Signing time: Fri 20 May 2022 10:53:05 +0000
ROA not before: Fri 20 May 2022 10:53:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211306
IP address blocks: 91.237.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 491912689 (0x1d51fdf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 20 10:53:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=233c6aff83db3737c81b35bd4191959c4775a971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b3:4d:40:c2:59:2a:ee:7d:e2:d8:ea:59:3d:
fc:ea:0a:1d:a8:07:81:21:c8:0a:46:e1:38:77:63:
b0:0a:22:c9:d7:4f:01:d5:3e:f7:a7:ae:70:de:f7:
4a:7d:ea:e7:f4:48:6b:47:bd:48:f4:09:75:fe:9e:
a0:0a:df:23:48:5e:40:f6:03:3a:bd:18:f6:39:37:
a0:2d:43:4f:61:22:82:1a:05:22:a0:6e:76:d4:4e:
34:80:4e:59:64:83:48:9e:9d:df:2d:6e:4f:59:0a:
c1:e8:a7:43:48:28:14:1c:cc:40:79:13:3c:91:4d:
6d:51:54:31:18:5b:06:c4:37:58:9b:ff:7b:38:ed:
13:d4:d3:7f:24:8f:f9:ce:3b:81:14:29:59:94:fb:
1d:0c:30:d9:01:cb:70:58:c7:9f:1f:5b:c0:6a:cd:
0a:5b:5e:9d:47:d2:0d:a2:70:4b:81:68:48:de:0d:
9b:8e:e5:7f:23:01:76:8a:9b:cb:cf:90:77:15:0f:
ac:4d:5d:d0:0a:04:e3:df:bd:d3:9a:69:07:3b:53:
9f:c7:92:86:b2:48:9e:75:3e:4e:51:9c:db:f0:4e:
68:47:2b:69:6f:03:53:f6:18:2d:35:48:11:cf:9b:
ca:71:ab:8e:7e:ea:6b:76:0d:72:73:4c:0d:2e:60:
d5:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:3C:6A:FF:83:DB:37:37:C8:1B:35:BD:41:91:95:9C:47:75:A9:71
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/Izxq_4PbNzfIGzW9QZGVnEd1qXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.49.0/24
Signature Algorithm: sha256WithRSAEncryption
42:f2:29:f5:8c:b5:0f:4c:3b:b9:6e:dd:e8:55:d0:7f:a1:9a:
6c:7d:85:79:1c:a3:bb:2b:1b:a0:7e:57:2a:e2:dd:bb:33:f4:
2f:31:35:ee:2f:54:42:11:a2:b9:4e:ae:41:f2:2d:5a:78:da:
f5:99:a0:23:6e:d3:6c:e8:93:ce:31:72:f7:22:83:d0:89:06:
64:13:85:90:f4:2b:d2:f3:ae:f7:45:fd:8c:8c:bd:62:0c:3a:
64:2a:1a:6b:6f:87:1a:4a:e3:b8:22:08:bf:e1:fb:46:4f:42:
fd:a9:cf:ba:52:aa:34:26:de:c6:32:06:f6:83:77:96:c6:b6:
01:45:52:17:1a:05:10:70:db:5f:c1:7f:d4:a4:49:de:94:e5:
c0:34:f3:9a:69:1c:5e:c7:aa:04:74:41:69:3e:71:05:6a:6c:
71:e7:ff:28:02:06:c2:25:15:0e:44:46:23:ca:68:cb:bd:3f:
db:aa:e9:b2:12:35:bf:77:20:6e:e9:a5:8a:1d:b5:7a:23:ac:
98:82:77:98:c9:02:65:3b:2d:fc:fa:fc:67:ba:76:91:fc:b6:
89:a2:12:c6:53:02:d6:24:7b:61:d5:4b:17:6d:e1:7f:60:d5:
67:43:c7:c8:22:e8:f0:e4:96:4a:c2:2b:34:0c:14:f9:d9:cf:
d8:89:3f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org