Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/ba7854-886d-4148-a208-5c78639264aa/1/95rnlx-4Dawzi_tLxQDM8mCI77M.roa
File: 95rnlx-4Dawzi_tLxQDM8mCI77M.roa (raw, json)
Hash identifier: F1qa+8iC1Eariv9URp5VObRDCG5zXzeyOlUYXdXU0vQ=
Subject key identifier: F7:9A:E7:97:1F:B8:0D:AC:33:8B:FB:4B:C5:00:CC:F2:60:88:EF:B3
Certificate issuer: /CN=cb173e8a827e636c4f251ef363bd94ea90a04cbf
Certificate serial: 092B307E
Authority key identifier: CB:17:3E:8A:82:7E:63:6C:4F:25:1E:F3:63:BD:94:EA:90:A0:4C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxc-ioJ-Y2xPJR7zY72U6pCgTL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/ba7854-886d-4148-a208-5c78639264aa/1/95rnlx-4Dawzi_tLxQDM8mCI77M.roa
Signing time: Sat 01 Jan 2022 06:57:12 +0000
ROA not before: Sat 01 Jan 2022 06:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12843
IP address blocks: 91.208.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153825406 (0x92b307e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb173e8a827e636c4f251ef363bd94ea90a04cbf
Validity
Not Before: Jan 1 06:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f79ae7971fb80dac338bfb4bc500ccf26088efb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c9:a8:e7:0d:73:30:7f:83:f1:e5:f3:b2:b2:
27:fa:e1:cd:f1:72:e1:30:1e:74:08:ff:da:bf:85:
95:5c:34:5f:7e:0b:c8:a3:d4:ba:07:dd:18:7c:15:
29:18:5a:37:b3:bd:f9:c8:04:e1:a2:40:57:18:3f:
5b:96:f2:43:54:0a:a3:be:9a:d7:ac:8e:9e:6f:76:
ff:e4:1f:f8:3e:8e:77:85:67:4d:8f:96:8e:96:88:
c6:b6:49:07:15:ad:ed:8c:85:4a:67:d4:68:1f:67:
9d:d7:05:66:ee:e3:ed:58:b6:82:7d:17:6f:4b:7b:
a0:80:5e:df:35:7c:fb:6a:22:2a:48:53:dd:05:db:
24:56:03:f5:23:11:28:da:32:4c:b6:1f:9c:db:9b:
22:3d:dc:be:08:1f:e7:bb:70:0d:1d:95:71:e3:79:
3c:95:b9:41:85:d2:22:29:39:7c:a4:67:d7:f0:57:
22:7a:e6:90:6b:d3:22:ce:fb:56:13:64:88:93:f0:
53:ce:ed:e6:c5:e9:47:2b:5c:c9:91:79:32:3f:7a:
e4:9e:77:38:82:d6:6b:e1:a9:35:79:f6:36:79:00:
0b:d8:25:24:73:1b:e7:e4:c5:40:82:4a:6f:06:5c:
da:f8:af:5a:73:cc:66:d8:28:95:fa:45:2c:71:68:
96:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:9A:E7:97:1F:B8:0D:AC:33:8B:FB:4B:C5:00:CC:F2:60:88:EF:B3
X509v3 Authority Key Identifier:
keyid:CB:17:3E:8A:82:7E:63:6C:4F:25:1E:F3:63:BD:94:EA:90:A0:4C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxc-ioJ-Y2xPJR7zY72U6pCgTL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/ba7854-886d-4148-a208-5c78639264aa/1/95rnlx-4Dawzi_tLxQDM8mCI77M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/ba7854-886d-4148-a208-5c78639264aa/1/yxc-ioJ-Y2xPJR7zY72U6pCgTL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.5.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ae:d0:21:22:56:4c:37:8b:38:f6:3d:08:e6:4e:9c:ec:ac:
87:5b:97:c5:8a:ff:ca:16:68:77:16:79:b0:95:f9:55:10:c8:
26:c0:87:5c:da:7a:f6:8e:82:9b:93:b3:10:10:e3:8b:4d:47:
83:87:06:d8:cd:cd:e0:fc:e9:dc:7e:36:68:6f:92:b3:6a:77:
61:ee:18:cf:c9:fc:37:23:31:87:50:eb:4a:63:87:84:31:b3:
e2:29:da:34:1a:e6:15:0b:2c:d2:ba:63:37:f6:cc:1d:1c:ae:
fd:22:c0:94:cd:b6:9d:32:84:57:44:43:b0:a0:13:53:97:13:
76:d5:03:30:5c:d6:3f:d9:c3:a3:af:69:88:65:9e:90:af:30:
d1:3c:84:95:b1:b2:4a:7c:c6:cb:4e:e1:d9:00:7d:80:21:bb:
f2:46:6f:5d:34:fa:ba:9c:10:15:42:d0:2c:18:66:d7:4a:74:
e4:3b:88:b0:c6:75:f1:70:c1:cc:23:71:e0:c3:4a:5f:9e:e3:
75:f5:b7:3f:a9:3c:06:d0:c7:12:f9:00:63:83:1e:a5:cc:60:
3a:df:13:0f:e3:ba:c9:b4:ba:c1:c9:e7:9f:bb:4b:4a:35:81:
c1:2c:ba:ce:95:75:0a:88:90:01:92:2c:ea:4b:27:96:29:3f:
88:de:ab:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:01 2024 by rpki-client on console-fra.rpki-client.org