Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/DU-U1XL7Jb4zLu4v1_GGb9ygneY.roa
File: DU-U1XL7Jb4zLu4v1_GGb9ygneY.roa (raw, json)
Hash identifier: ZxYkTyfJLDiYfAnR+fF9zNgCX13FFC5tSPVOT1VoW9s=
Subject key identifier: 0D:4F:94:D5:72:FB:25:BE:33:2E:EE:2F:D7:F1:86:6F:DC:A0:9D:E6
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 067B9BA0
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/DU-U1XL7Jb4zLu4v1_GGb9ygneY.roa
Signing time: Sun 10 Apr 2022 08:54:35 +0000
ROA not before: Sun 10 Apr 2022 08:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 91.228.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108764064 (0x67b9ba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Apr 10 08:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d4f94d572fb25be332eee2fd7f1866fdca09de6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fa:71:94:94:dd:88:8c:d5:c4:5a:55:df:d2:
10:da:9d:5c:8f:92:d5:b2:1b:75:dc:35:a7:b6:cc:
96:db:50:12:d6:a2:f4:a4:ae:40:7e:1a:b4:47:ae:
81:a6:91:ae:a7:91:39:ac:fc:4b:41:62:c3:3c:53:
fd:bc:80:cb:d9:d0:90:ee:18:36:86:30:3c:3a:47:
a6:34:27:a8:6f:5f:b1:c4:29:a1:37:2d:15:62:3f:
01:8b:ae:84:d3:5a:84:e2:ab:c7:c4:a0:3c:e1:b9:
72:ef:a4:97:f0:81:5b:8d:7d:69:1c:24:ea:df:72:
8e:01:f1:f2:88:b0:1d:99:5e:10:8b:1e:85:de:e9:
a3:e7:57:b6:64:73:f6:b1:b5:89:6e:c9:90:77:30:
65:d9:dd:74:6e:5e:26:9f:af:44:aa:25:7b:2a:b1:
a9:63:15:ca:79:c6:ea:36:21:81:4b:33:3e:fb:e9:
24:99:24:c2:5c:e5:7f:79:1b:4e:eb:2e:e7:75:bd:
62:40:e4:e2:ce:b4:3f:c9:12:ec:3f:e1:6e:46:e4:
9a:a3:77:ad:20:05:9e:30:9c:0b:22:ee:9a:57:b7:
61:52:79:35:af:62:f3:a9:46:d3:8a:8a:cc:b1:af:
f7:8f:a0:71:17:88:a8:e9:8f:04:05:4f:a0:94:7c:
e8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:4F:94:D5:72:FB:25:BE:33:2E:EE:2F:D7:F1:86:6F:DC:A0:9D:E6
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/DU-U1XL7Jb4zLu4v1_GGb9ygneY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:d7:ae:20:f4:c0:95:4f:70:aa:a7:0d:fc:a7:a7:47:9b:9a:
bc:34:ae:b1:48:82:12:41:5d:f2:18:00:cf:5e:ec:98:33:68:
92:4f:7e:56:02:47:ec:5e:b2:4d:08:df:b8:65:e7:dd:1b:67:
71:36:fd:4a:0d:8a:9b:0c:b7:65:ab:ee:21:53:b9:3a:86:8e:
c8:b6:ab:e8:66:b2:74:bf:82:b0:8d:db:65:37:9d:fc:68:da:
7f:db:de:be:db:63:0b:e3:8d:48:37:6d:b3:29:c4:84:55:dc:
75:0c:dd:cc:30:e7:8f:f9:f9:aa:55:e1:b0:10:0f:73:f5:62:
b2:d3:6e:dc:2a:18:1a:38:d1:cb:28:dd:71:37:ca:63:77:69:
4e:c7:a6:bc:68:64:e0:08:31:5f:1e:b5:ce:21:6c:a0:f0:ab:
e6:58:18:30:7d:93:24:67:69:9e:4c:ca:17:72:14:73:95:3c:
e5:bc:c8:96:e6:da:87:dd:9f:ee:a5:af:d6:08:34:ee:c2:10:
cd:ee:bc:91:5f:ef:cc:cb:ee:7f:e4:28:cd:53:fb:84:18:e4:
a4:fa:f6:e0:75:3c:03:95:f6:0b:40:74:6a:66:8e:e4:d4:ea:
6e:c0:40:c3:76:08:79:cf:44:3f:8f:cc:42:57:61:c7:83:56:
f4:55:24:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:25 2024 by rpki-client on console-fra.rpki-client.org