Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/eQQywcEm06DWqrf78-LTujQbEJA.roa
File: eQQywcEm06DWqrf78-LTujQbEJA.roa (raw, json)
Hash identifier: Uey8lqAQw6zow4J/GDiINW+C3MFwl7jCZG6UTd5zXnU=
Subject key identifier: 79:04:32:C1:C1:26:D3:A0:D6:AA:B7:FB:F3:E2:D3:BA:34:1B:10:90
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1CA28E91
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/eQQywcEm06DWqrf78-LTujQbEJA.roa
Signing time: Fri 25 Mar 2022 17:46:07 +0000
ROA not before: Fri 25 Mar 2022 17:46:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 812
IP address blocks: 91.232.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 480415377 (0x1ca28e91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Mar 25 17:46:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=790432c1c126d3a0d6aab7fbf3e2d3ba341b1090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b8:47:ad:44:88:93:5f:6f:57:88:ec:b6:c1:
26:d8:7d:18:8b:e3:91:58:99:de:78:77:ad:13:a3:
eb:9f:c1:1a:c2:9e:cc:2b:89:1e:f6:6e:a8:40:8f:
ef:70:10:11:70:8f:28:b4:57:97:0c:3f:54:a7:d4:
ff:58:cc:28:07:3e:ef:28:16:be:8c:0d:4c:88:17:
9c:ff:9d:ba:2b:42:5b:84:96:82:50:ee:81:50:d9:
b3:55:e2:b3:5d:55:df:0c:d3:e4:84:cc:59:3c:8e:
be:0d:31:6c:f3:e8:8f:80:a7:f1:30:25:b5:d6:10:
05:4e:d3:9c:10:c8:41:09:8d:e3:1c:2e:f9:27:78:
16:1d:72:02:e9:59:c2:49:b0:dc:48:20:cb:74:f8:
a8:a5:86:38:fa:e9:5a:62:a8:a9:45:af:dd:fd:03:
76:38:ac:0f:d7:30:d9:80:68:1e:c8:6f:f5:70:73:
ea:f3:8e:2e:f8:7f:ae:80:18:7f:73:06:fb:0f:62:
f4:41:c3:9b:06:3b:7c:d5:75:4e:e2:6c:45:ab:aa:
4f:8d:51:41:9b:61:85:69:1c:5a:f1:a5:13:9e:34:
1d:39:b3:75:4a:68:2b:e4:60:31:1b:ae:46:01:5f:
9f:69:b0:de:1e:c2:79:8e:67:4d:5a:25:50:31:f2:
af:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:04:32:C1:C1:26:D3:A0:D6:AA:B7:FB:F3:E2:D3:BA:34:1B:10:90
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/eQQywcEm06DWqrf78-LTujQbEJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.227.0/24
Signature Algorithm: sha256WithRSAEncryption
22:06:a3:1f:b0:0d:ca:99:88:c3:63:ec:f0:31:2b:2f:73:a4:
0c:e5:f9:ac:1c:d3:03:63:03:16:5a:02:9e:93:dd:8d:9d:f7:
06:6b:79:d5:4c:a6:f0:33:2c:d8:4f:17:27:46:d3:d1:b3:50:
99:a7:af:75:82:a2:93:ab:ee:ad:6e:9a:5e:a6:a6:5a:f4:b1:
44:e3:81:c7:7c:02:1f:7f:ef:6f:b2:77:58:bd:5e:64:d0:01:
88:55:07:f7:94:b6:fc:e4:09:c0:7c:a1:f2:e7:12:2f:ab:db:
d6:3d:85:9a:dd:ad:ce:25:b7:e4:4c:52:b6:78:1c:6b:ed:f7:
fc:88:f7:f4:84:f5:32:4f:b0:42:ed:cc:03:f6:32:ad:bd:51:
96:6b:72:30:13:2e:73:a5:17:05:1f:78:2a:f9:fd:b2:23:16:
e9:4c:7c:00:6e:8a:fa:fd:91:b6:97:a2:31:5a:9f:a6:c2:6b:
7a:86:e4:c9:c6:f7:82:25:a1:85:f6:5c:2a:88:8b:f8:72:8a:
11:7c:eb:de:45:13:8a:90:91:49:50:87:85:71:84:88:f8:fd:
43:26:a6:bf:80:d8:24:19:b4:e4:4c:64:95:48:e2:ae:c2:19:
5a:6c:0f:9e:e7:e5:36:c8:83:5f:d6:a7:e2:81:7d:45:03:09:
e7:4f:75:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org