Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/bbgLjgWM6oQjCRcWQSMv259YCa0.roa
File: bbgLjgWM6oQjCRcWQSMv259YCa0.roa (raw, json)
Hash identifier: se4Y8Yoh5JX1kmXrrMElaHIDQmI2LwD3jWwqib8L/A0=
Subject key identifier: 6D:B8:0B:8E:05:8C:EA:84:23:09:17:16:41:23:2F:DB:9F:58:09:AD
Certificate issuer: /CN=2fc20be6167890247303214197658ca7c9676150
Certificate serial: 0A539C0A
Authority key identifier: 2F:C2:0B:E6:16:78:90:24:73:03:21:41:97:65:8C:A7:C9:67:61:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/bbgLjgWM6oQjCRcWQSMv259YCa0.roa
Signing time: Tue 10 May 2022 08:56:47 +0000
ROA not before: Tue 10 May 2022 08:56:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31898
IP address blocks: 91.223.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173251594 (0xa539c0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fc20be6167890247303214197658ca7c9676150
Validity
Not Before: May 10 08:56:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6db80b8e058cea842309171641232fdb9f5809ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:bc:1a:ff:5c:f0:48:35:a5:d3:7c:a9:17:6a:
bd:c4:58:fe:29:2b:1b:59:41:9c:36:b9:0f:f3:32:
cc:88:36:13:8e:79:e9:20:a0:0f:8f:92:51:a0:58:
97:86:82:4b:81:46:29:26:b5:45:f1:5d:25:67:c2:
fc:64:3f:4c:fa:d7:eb:1b:9d:af:0d:e1:76:5e:ed:
19:a2:71:40:6d:58:8c:4b:20:c9:a9:49:1e:be:c1:
91:31:ca:22:6b:78:00:81:d2:7a:0e:99:ed:d5:81:
0a:48:99:50:49:56:8e:68:fa:68:e4:17:f2:17:38:
6e:4d:87:da:77:49:8d:eb:c4:ff:81:63:f8:e2:c8:
1b:b1:bc:f5:8a:12:1a:e4:20:4e:e5:db:88:0b:2d:
98:ed:45:d5:b1:12:b9:6a:e5:b9:eb:21:5f:80:e0:
9f:db:3f:c4:ec:5f:83:6e:3c:99:24:73:88:cc:79:
f1:9e:eb:7f:42:f8:a2:a5:f0:68:71:c4:8a:f9:61:
19:7c:de:bf:0a:35:04:66:a9:31:24:37:43:66:98:
44:e9:81:4f:66:15:fd:ac:fb:10:e2:f6:ab:c2:d7:
62:2e:69:eb:cf:4f:f8:08:9d:33:55:c5:5f:7d:3e:
87:1f:1f:ee:51:1a:4b:e9:36:47:fb:76:61:67:5b:
bb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B8:0B:8E:05:8C:EA:84:23:09:17:16:41:23:2F:DB:9F:58:09:AD
X509v3 Authority Key Identifier:
keyid:2F:C2:0B:E6:16:78:90:24:73:03:21:41:97:65:8C:A7:C9:67:61:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/bbgLjgWM6oQjCRcWQSMv259YCa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f5fafc-668d-4ada-8ec6-2449a3ec923e/1/L8IL5hZ4kCRzAyFBl2WMp8lnYVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.237.0/24
Signature Algorithm: sha256WithRSAEncryption
54:57:54:53:2f:cf:43:6c:2d:de:a1:5e:02:d5:28:af:41:be:
52:ae:72:24:05:f8:3f:44:89:d0:9c:4b:14:b6:13:85:71:09:
23:b7:41:53:c9:96:02:7a:21:37:59:80:41:a0:77:1d:2f:40:
04:26:d3:81:69:22:2d:e4:d2:b4:99:6c:93:0f:9d:0e:f1:4e:
ae:6f:bd:c5:0e:6e:c0:84:69:c5:ce:7d:b2:cf:6a:9d:d6:74:
06:30:f8:63:cb:ee:a6:33:81:95:12:8c:e3:d8:c1:d1:2d:1b:
cb:f4:ce:83:b7:42:bf:d3:4b:a0:92:ec:3c:08:7e:77:80:16:
62:93:14:84:db:a7:e8:0e:19:8e:56:fb:1d:98:1d:d2:f6:a7:
ad:c1:54:68:e8:e9:5e:fb:ba:26:d5:72:03:4c:54:a7:e7:9a:
2a:b8:f4:d6:41:14:ff:50:4d:91:c1:49:bb:a3:57:fc:7b:05:
c3:f6:f7:07:b1:f3:35:df:91:f9:cd:90:bf:e9:b3:71:d0:f0:
d7:0b:eb:6d:66:a7:53:98:ab:6a:6f:01:4b:ec:29:bf:2d:85:
42:f8:7a:6a:a0:5d:15:94:27:93:73:c2:14:b4:a6:a9:ea:ed:
eb:d7:de:e4:b3:07:a6:1f:01:6b:d2:04:eb:43:26:d4:63:32:
70:01:50:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:16 2024 by rpki-client on console-fra.rpki-client.org