Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/9ad77a-729d-4727-9aaa-f57bdcc73b16/1/Icr2TsoXjDrmFD5-PWDOjcGmQLM.roa
File: Icr2TsoXjDrmFD5-PWDOjcGmQLM.roa (raw, json)
Hash identifier: 48U49wqnt43PKnqOkfR5nQGx7hRVVOfhIv55srDXB/I=
Subject key identifier: 21:CA:F6:4E:CA:17:8C:3A:E6:14:3E:7E:3D:60:CE:8D:C1:A6:40:B3
Certificate issuer: /CN=4889c6799f76b4522f0991f6b9334fd6db541d5b
Certificate serial: 021A66CB
Authority key identifier: 48:89:C6:79:9F:76:B4:52:2F:09:91:F6:B9:33:4F:D6:DB:54:1D:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SInGeZ92tFIvCZH2uTNP1ttUHVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/9ad77a-729d-4727-9aaa-f57bdcc73b16/1/Icr2TsoXjDrmFD5-PWDOjcGmQLM.roa
Signing time: Sat 01 Jan 2022 01:59:39 +0000
ROA not before: Sat 01 Jan 2022 01:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57302
IP address blocks: 91.216.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35284683 (0x21a66cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4889c6799f76b4522f0991f6b9334fd6db541d5b
Validity
Not Before: Jan 1 01:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21caf64eca178c3ae6143e7e3d60ce8dc1a640b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:6d:98:ca:29:17:bd:c9:31:63:d6:36:a7:b0:
a9:af:86:1b:ff:39:94:0e:b9:0a:90:a4:6f:69:fc:
15:8b:de:f7:87:19:ee:f9:23:3c:04:d4:0e:63:41:
7a:12:13:70:53:f5:2c:52:9a:7f:79:ad:ef:d0:90:
e2:28:09:2b:da:41:d0:06:d1:bc:1d:fd:1a:c2:39:
7a:c7:1f:06:e0:2e:b6:c2:e2:7c:37:27:ba:08:56:
b8:84:95:4f:b5:3c:c3:22:37:a6:ff:dd:df:7a:90:
e6:c8:86:4f:8a:01:4e:ec:84:2b:79:57:6f:6e:c8:
b6:de:bb:c1:00:35:c5:d8:62:2e:94:4f:0c:2a:5b:
57:98:67:8f:60:63:f9:5d:44:bd:ea:8e:6e:c7:c6:
c1:80:72:71:9b:91:6e:e2:88:cf:02:77:a2:5a:ae:
db:1c:c1:67:c0:5a:86:67:6f:03:11:e4:93:75:e6:
89:81:7c:a2:55:e8:b8:0a:93:ad:46:3b:23:9d:4a:
ba:6e:8d:37:c6:b0:53:0c:8e:b9:39:98:2c:cb:b1:
6f:13:af:7c:e0:45:db:4f:e8:b4:86:dd:fc:49:ea:
35:e8:37:dc:90:86:02:3c:44:e6:8d:51:88:6b:39:
69:a0:dd:32:1a:b6:12:21:1d:6a:dc:96:4e:6a:1c:
07:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:CA:F6:4E:CA:17:8C:3A:E6:14:3E:7E:3D:60:CE:8D:C1:A6:40:B3
X509v3 Authority Key Identifier:
keyid:48:89:C6:79:9F:76:B4:52:2F:09:91:F6:B9:33:4F:D6:DB:54:1D:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SInGeZ92tFIvCZH2uTNP1ttUHVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/9ad77a-729d-4727-9aaa-f57bdcc73b16/1/Icr2TsoXjDrmFD5-PWDOjcGmQLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/9ad77a-729d-4727-9aaa-f57bdcc73b16/1/SInGeZ92tFIvCZH2uTNP1ttUHVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.124.0/24
Signature Algorithm: sha256WithRSAEncryption
23:67:63:bf:7a:d7:36:39:04:10:02:0d:e7:50:f5:2f:a0:e1:
9c:5f:ae:1e:1c:01:d2:b7:66:56:1a:bb:d3:83:b7:7c:1b:80:
a7:4d:42:38:87:02:e4:ba:6f:2f:1c:9f:fc:cc:84:ad:01:f0:
06:f2:3e:2f:ee:81:57:9e:16:c9:e3:c9:54:ad:81:ac:f8:84:
e1:02:1e:a1:74:06:b0:58:05:e9:78:72:7b:b9:4d:fb:d0:a6:
fe:98:1a:49:e6:12:d2:bc:d2:d9:6f:c8:55:b3:bd:b3:17:6e:
07:28:b3:6e:98:a3:35:f8:fd:6f:f9:d9:31:3e:8c:ed:76:66:
27:b0:ea:70:ae:9d:87:82:f4:72:b6:50:24:b2:20:cf:2e:ae:
af:22:a7:0b:1a:e5:00:92:d5:d1:0e:35:f3:20:be:40:2d:3e:
e4:ae:8c:0c:80:da:2a:fa:74:19:d0:ee:42:fb:36:9d:86:85:
4e:09:18:af:81:0f:08:bd:75:fe:48:84:68:d9:ef:33:9d:37:
06:e1:f6:d2:a3:fe:9a:85:2a:33:d7:71:1c:c5:26:e0:1c:cb:
03:e2:00:44:87:eb:6c:d3:a0:ee:f0:ed:c9:98:97:18:c9:11:
72:61:c2:43:92:1c:e7:b6:09:c9:3c:56:00:2a:9d:3b:30:e6:
8e:9e:93:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:40 2024 by rpki-client on console-ams.rpki-client.org