Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/190cc0-2637-400b-ac93-42e7e15c82f2/1/uUbTxZauzCCjRmBs_wggAwk_QNk.roa
File: uUbTxZauzCCjRmBs_wggAwk_QNk.roa (raw, json)
Hash identifier: 6xtOcYiO/GEbqmgBgxDI2lqjR5mZHoNiPCJrKZK1Eqg=
Subject key identifier: B9:46:D3:C5:96:AE:CC:20:A3:46:60:6C:FF:08:20:03:09:3F:40:D9
Certificate issuer: /CN=57b6c9ef13d4acd12abe6d9bb5b3592edf820f29
Certificate serial: 090E1531
Authority key identifier: 57:B6:C9:EF:13:D4:AC:D1:2A:BE:6D:9B:B5:B3:59:2E:DF:82:0F:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V7bJ7xPUrNEqvm2btbNZLt-CDyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/190cc0-2637-400b-ac93-42e7e15c82f2/1/uUbTxZauzCCjRmBs_wggAwk_QNk.roa
Signing time: Sat 01 Jan 2022 05:53:05 +0000
ROA not before: Sat 01 Jan 2022 05:53:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31463
IP address blocks: 91.220.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151917873 (0x90e1531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57b6c9ef13d4acd12abe6d9bb5b3592edf820f29
Validity
Not Before: Jan 1 05:53:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b946d3c596aecc20a346606cff082003093f40d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:31:f3:6e:6a:fe:e1:fb:bd:bb:87:aa:bd:3a:
8e:08:4c:4e:8e:0d:cf:02:44:90:51:be:b0:1c:c6:
a0:27:8e:06:87:97:67:49:1a:8c:d5:d6:9b:40:9a:
a8:c7:b8:ea:06:f4:82:91:e8:6e:a4:2f:92:e0:b5:
b9:4a:f2:9e:17:ff:9d:e2:a7:75:e5:87:6b:a1:1a:
db:f8:cc:37:79:ba:5f:de:5e:7f:17:26:40:b8:a9:
bf:b7:66:4c:08:6e:92:69:ac:40:58:c7:ac:fa:fa:
c2:36:e0:06:f8:f1:8a:ca:24:e5:31:37:ec:43:39:
5e:36:b5:fa:8e:72:1a:d4:62:15:c0:39:70:85:5d:
8b:28:57:df:4b:56:17:0d:4d:dd:f4:c6:c6:08:c2:
69:9c:94:a5:a9:ff:1f:90:d2:6c:1f:30:24:ef:d2:
1b:01:da:24:e6:ec:c2:e2:7d:18:13:bf:ff:cb:99:
f8:93:10:33:51:0c:49:1c:58:fb:73:a8:07:7e:85:
bd:e9:20:bc:16:e2:87:31:f9:a9:d1:3e:3d:a5:7b:
c1:9c:da:18:22:63:3a:16:8f:27:ba:a0:d7:0f:47:
ac:5e:c5:a6:0e:c5:59:d1:df:6d:b5:1f:ac:e1:2f:
60:49:a5:b5:3e:76:7b:fa:86:dd:1a:8c:8c:52:44:
8f:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:46:D3:C5:96:AE:CC:20:A3:46:60:6C:FF:08:20:03:09:3F:40:D9
X509v3 Authority Key Identifier:
keyid:57:B6:C9:EF:13:D4:AC:D1:2A:BE:6D:9B:B5:B3:59:2E:DF:82:0F:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V7bJ7xPUrNEqvm2btbNZLt-CDyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/190cc0-2637-400b-ac93-42e7e15c82f2/1/uUbTxZauzCCjRmBs_wggAwk_QNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/190cc0-2637-400b-ac93-42e7e15c82f2/1/V7bJ7xPUrNEqvm2btbNZLt-CDyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.24.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:33:1e:6c:c2:d9:89:17:60:b0:94:f6:be:fc:0f:f4:d7:e6:
ac:6e:31:da:95:11:6c:e9:6e:51:11:f5:9c:b5:88:ef:d5:8f:
0c:30:55:8a:84:01:4d:89:37:8f:63:44:85:ce:af:9b:21:38:
87:cf:7b:a9:41:b5:16:a6:98:c0:29:71:09:08:39:cf:16:57:
7b:3f:30:93:2e:fd:5c:2e:76:cd:cf:da:bd:52:ad:26:bc:2c:
22:5e:0a:78:93:41:55:45:d0:e9:8b:e2:dd:22:80:61:26:e0:
8a:d8:e3:02:d3:18:a9:53:54:e9:0a:24:2f:7d:35:ed:b6:fa:
05:8b:00:af:0f:1a:01:ec:a3:29:d9:72:ae:41:fa:51:98:e7:
4f:fc:1a:f8:9d:b9:0b:a4:4a:c3:11:c6:7d:d7:04:1b:c8:e8:
35:b4:37:2f:28:d4:9a:4a:61:8f:a0:8f:2b:1b:b4:be:e3:c0:
67:9d:75:43:83:28:cd:ad:57:26:57:21:0e:fa:0b:71:56:83:
6b:a3:bf:35:0a:61:76:d6:2b:b0:83:1b:bc:ce:2d:aa:72:64:
e7:f1:52:da:b6:d4:3a:f7:8b:85:f4:73:9b:c1:76:2f:e5:c1:
3e:4a:5f:3f:61:37:18:de:13:63:c6:8c:af:a3:d1:da:5d:c4:
0f:22:f0:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:00 2024 by rpki-client on console-fra.rpki-client.org