Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/389231-2b5f-4c9e-941d-b4b28437fe6c/1/twLfZVCY8jkMjtMCbrhgOsHWzQ0.roa
File: twLfZVCY8jkMjtMCbrhgOsHWzQ0.roa (raw, json)
Hash identifier: kv0aliewUbSfPAaOKAZKCJszh6M8MpZzNaCJMNSYk9M=
Subject key identifier: B7:02:DF:65:50:98:F2:39:0C:8E:D3:02:6E:B8:60:3A:C1:D6:CD:0D
Certificate issuer: /CN=f4a5b042fe48eeb123be56dbf9e8dda20c1ea11d
Certificate serial: 26845B04
Authority key identifier: F4:A5:B0:42:FE:48:EE:B1:23:BE:56:DB:F9:E8:DD:A2:0C:1E:A1:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9KWwQv5I7rEjvlbb-ejdogweoR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/389231-2b5f-4c9e-941d-b4b28437fe6c/1/twLfZVCY8jkMjtMCbrhgOsHWzQ0.roa
Signing time: Sat 01 Jan 2022 14:54:42 +0000
ROA not before: Sat 01 Jan 2022 14:54:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197138
IP address blocks: 91.188.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 646208260 (0x26845b04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4a5b042fe48eeb123be56dbf9e8dda20c1ea11d
Validity
Not Before: Jan 1 14:54:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b702df655098f2390c8ed3026eb8603ac1d6cd0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ca:3f:4e:92:dd:88:79:b2:d2:d0:d5:44:29:
e1:26:a0:e5:33:5f:40:80:3e:b8:0e:52:4e:c0:1c:
c8:f6:53:9e:4a:8a:30:5e:c8:33:cf:23:91:52:aa:
f1:a3:29:d1:c1:19:0e:2d:11:68:60:c3:db:f7:40:
8a:88:65:8f:1d:d5:e8:57:c3:86:f3:49:a1:cf:e2:
06:f2:32:3a:c0:01:98:ad:53:3c:d6:80:bf:cd:e8:
6d:ba:97:d7:6a:b7:27:1e:8c:e1:5e:7a:84:19:b2:
e8:38:26:24:46:64:98:aa:72:ec:dc:f8:49:e9:b7:
32:b8:aa:44:28:c6:07:34:9f:1d:5f:4d:45:3a:a3:
0c:86:16:bd:82:95:fd:e6:5d:5e:d4:95:a7:2b:6c:
6e:c3:82:e1:9e:97:ed:34:b8:90:d9:05:b5:55:16:
e6:e6:b2:c3:73:55:be:fb:d3:27:e6:7f:57:58:81:
de:58:ab:ed:52:69:2c:49:d2:8a:94:5f:69:a0:fe:
ff:36:5b:82:09:68:95:bf:9f:c1:91:54:38:1f:1e:
b5:2a:ed:ec:82:d0:ee:c7:6f:7f:b4:87:31:4e:d3:
10:69:cb:34:6e:41:41:e4:d5:e2:1c:93:af:aa:30:
df:f3:54:3e:e5:81:d6:e9:e8:9d:ed:a4:f0:17:04:
f4:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:02:DF:65:50:98:F2:39:0C:8E:D3:02:6E:B8:60:3A:C1:D6:CD:0D
X509v3 Authority Key Identifier:
keyid:F4:A5:B0:42:FE:48:EE:B1:23:BE:56:DB:F9:E8:DD:A2:0C:1E:A1:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9KWwQv5I7rEjvlbb-ejdogweoR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/389231-2b5f-4c9e-941d-b4b28437fe6c/1/twLfZVCY8jkMjtMCbrhgOsHWzQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/389231-2b5f-4c9e-941d-b4b28437fe6c/1/9KWwQv5I7rEjvlbb-ejdogweoR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.77.0/24
Signature Algorithm: sha256WithRSAEncryption
20:ed:67:c4:e4:c0:1a:48:06:cf:8b:26:ea:cf:70:5b:ca:77:
f2:c1:5c:27:e2:79:72:f1:f5:cb:7f:86:7d:dc:26:8c:be:df:
3f:e6:7c:55:74:7f:48:50:f5:4e:7e:39:dc:03:5c:5c:9e:fb:
23:d4:e6:20:7e:fd:a2:64:99:a6:0c:3a:b3:88:98:a6:f6:58:
53:7a:00:80:f3:3d:ca:24:67:7f:0b:59:3f:bb:34:fa:40:0c:
fb:81:8b:4c:6c:52:65:f6:cb:b3:94:13:27:1f:ae:f7:ef:74:
44:64:69:88:c7:75:2c:62:f1:83:67:a5:1e:45:37:e7:11:cc:
67:23:dc:92:e6:4d:b9:e4:0f:9d:77:98:be:fc:c3:9d:3b:46:
a7:62:e5:45:ea:fa:0e:38:a5:68:17:e0:f0:36:76:09:1d:1e:
ff:68:9b:61:95:95:30:c0:13:9a:37:16:4f:7c:92:b5:c8:be:
56:a9:14:cc:c7:47:e9:15:d8:c6:6a:f8:3d:8e:61:0e:d2:9d:
50:9c:62:90:f5:bb:35:63:73:5b:d8:df:5e:99:82:ee:0c:bc:
7d:6d:df:f0:74:6b:8f:b4:20:ab:45:9b:64:0d:1e:c3:e4:82:
4b:65:ff:ad:7c:39:df:4b:93:3c:37:76:70:3b:61:fc:80:a4:
38:9c:ae:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org