Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/raq1M0lzVRqhv-5L4_JVKHjpkBA.roa
File: raq1M0lzVRqhv-5L4_JVKHjpkBA.roa (raw, json)
Hash identifier: XblkCzunJC+gS/wGQAHz4LqP+S16eLxEjEoxstXSU0o=
Subject key identifier: AD:AA:B5:33:49:73:55:1A:A1:BF:EE:4B:E3:F2:55:28:78:E9:90:10
Certificate issuer: /CN=90a4601bf7f62416fb01e15e65ef451017c97601
Certificate serial: 151B98A4
Authority key identifier: 90:A4:60:1B:F7:F6:24:16:FB:01:E1:5E:65:EF:45:10:17:C9:76:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kKRgG_f2JBb7AeFeZe9FEBfJdgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/raq1M0lzVRqhv-5L4_JVKHjpkBA.roa
Signing time: Sat 01 Jan 2022 15:57:52 +0000
ROA not before: Sat 01 Jan 2022 15:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56853
IP address blocks: 91.228.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354130084 (0x151b98a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90a4601bf7f62416fb01e15e65ef451017c97601
Validity
Not Before: Jan 1 15:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adaab5334973551aa1bfee4be3f2552878e99010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d9:5a:75:e0:d1:dc:65:ed:a8:75:ef:80:a8:
32:6a:df:db:e5:eb:8d:3d:d9:db:8e:a2:07:3e:6b:
71:98:ac:42:29:28:70:ca:f4:50:95:b6:c2:87:fe:
a4:10:78:be:84:8a:1d:6a:49:81:c5:2b:64:ea:8b:
6f:16:a5:34:11:46:bc:cc:d9:62:09:ee:a5:94:81:
4b:0f:cd:47:26:ef:58:3a:9b:35:a6:81:a4:18:bd:
cd:72:82:08:a7:6d:e9:98:62:d2:61:2c:6c:ef:e7:
6e:7c:ba:85:b9:d5:9d:fe:1d:6c:04:14:e0:3e:1d:
dd:53:a5:6f:3e:7b:88:39:f7:1c:e4:cf:6a:1d:6f:
15:fd:c0:69:e0:db:e1:27:60:20:55:07:b0:33:40:
84:d5:15:78:8d:ac:de:aa:3d:54:af:c3:00:e0:7c:
8a:fd:62:8b:5c:0c:0c:2c:14:be:18:54:63:98:de:
0a:0a:59:ba:0e:f6:e4:db:28:99:00:66:0a:75:19:
fc:5c:1a:96:ba:27:79:ad:f4:d8:5d:41:cf:66:5a:
b7:86:ea:12:65:61:48:1d:3e:56:22:9f:4f:b5:11:
b9:32:3f:54:10:a1:3a:f1:2f:c7:be:62:7f:06:ed:
a1:d4:ca:0c:fa:2c:02:6b:df:ab:62:78:06:62:2d:
b2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AA:B5:33:49:73:55:1A:A1:BF:EE:4B:E3:F2:55:28:78:E9:90:10
X509v3 Authority Key Identifier:
keyid:90:A4:60:1B:F7:F6:24:16:FB:01:E1:5E:65:EF:45:10:17:C9:76:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kKRgG_f2JBb7AeFeZe9FEBfJdgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/raq1M0lzVRqhv-5L4_JVKHjpkBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/18a7ba-673d-4f2f-b7bc-163273d3d131/1/kKRgG_f2JBb7AeFeZe9FEBfJdgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.102.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e5:fe:38:1d:15:70:51:1c:b8:8b:29:e5:5b:04:01:f6:a2:
36:d9:f4:81:ad:55:00:ef:c6:66:8d:6b:16:17:bc:94:b2:a0:
fe:13:7d:7e:4e:8f:a3:4b:12:59:57:06:cb:5f:3b:d5:d7:dd:
70:52:99:eb:7c:91:c4:23:ca:8c:e9:7c:81:bc:39:15:49:ae:
71:2c:90:3d:01:b0:50:eb:0a:83:0f:f1:61:f4:34:f5:e3:65:
a2:e9:d9:9d:16:8c:05:15:d0:ae:57:9e:de:ec:0d:94:06:46:
8e:a6:87:e8:83:c3:29:eb:b0:15:2d:1b:51:c1:25:31:1f:2b:
27:66:74:c6:ba:eb:c9:bd:4a:83:40:fc:0b:43:17:d0:82:14:
60:22:9f:a5:d7:65:03:a4:8c:12:a6:87:8c:3a:20:52:31:95:
3a:f6:28:0e:a9:2c:94:17:eb:b9:f9:5f:3c:a1:c4:92:e0:d8:
1f:ab:18:33:05:af:ad:be:cc:81:43:a9:f8:67:6e:56:56:28:
fd:23:20:c1:16:fb:bd:e2:3c:cf:60:ca:49:09:55:4c:9e:95:
ce:74:0f:e0:52:8a:d5:c5:2a:84:3d:f6:f3:9e:fc:a7:d2:f3:
36:8a:5e:3a:d1:b2:da:2c:33:53:a0:6c:52:87:45:4c:7b:13:
ca:ce:87:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:03 2024 by rpki-client on console-fra.rpki-client.org