Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f2b87b-95e9-4cf8-abeb-6dfbba4edd59/1/XFK0R1aL9nrBwQsnX6OBED-6QjE.roa
File: XFK0R1aL9nrBwQsnX6OBED-6QjE.roa (raw, json)
Hash identifier: oiM8KhOyNRuHuy5EcR2Mt3fg5VGU7/FZXXFe2FP9N0g=
Subject key identifier: 5C:52:B4:47:56:8B:F6:7A:C1:C1:0B:27:5F:A3:81:10:3F:BA:42:31
Certificate issuer: /CN=678cebf7eec3d5e0121e401170ce01ff3888d4ec
Certificate serial: 0183A809FF63B83EBA9136F155A44B388631
Authority key identifier: 67:8C:EB:F7:EE:C3:D5:E0:12:1E:40:11:70:CE:01:FF:38:88:D4:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z4zr9-7D1eASHkARcM4B_ziI1Ow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f2b87b-95e9-4cf8-abeb-6dfbba4edd59/1/XFK0R1aL9nrBwQsnX6OBED-6QjE.roa
Signing time: Wed 05 Oct 2022 12:06:10 +0000
ROA not before: Wed 05 Oct 2022 12:06:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 4358
IP address blocks: 91.228.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a8:09:ff:63:b8:3e:ba:91:36:f1:55:a4:4b:38:86:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=678cebf7eec3d5e0121e401170ce01ff3888d4ec
Validity
Not Before: Oct 5 12:06:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c52b447568bf67ac1c10b275fa381103fba4231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d3:f8:89:d8:17:13:00:0b:b5:f9:fe:f4:a5:
3a:fe:41:98:35:6a:43:ff:3e:b8:b8:c3:28:cc:f5:
e3:e6:d1:d5:f0:bc:55:10:7b:18:51:b5:c0:a1:48:
ba:cc:35:db:82:4d:08:63:d3:b3:c1:42:15:f2:64:
2d:c8:8f:da:47:13:b7:9d:22:5e:24:8b:42:81:6c:
66:40:68:fd:14:d6:46:3d:f2:3c:ec:76:87:db:af:
66:78:00:87:bc:3d:66:3b:9e:9c:96:0d:aa:bb:ed:
d2:9e:88:e1:90:12:ab:4e:95:f6:5b:fb:77:8b:d5:
f8:3e:1b:51:26:3a:8d:44:32:c1:f0:34:e6:1e:64:
ee:f6:25:29:c3:8b:16:0a:bf:ff:3d:1a:93:a4:80:
b0:2e:4a:be:4c:89:11:cc:09:c8:b7:8a:2b:3c:70:
41:2a:6c:9c:55:7b:51:5c:1a:b1:b2:e1:1f:d5:d0:
6a:bf:2c:49:7b:a6:66:17:95:4d:fe:ab:c9:e6:f2:
b1:d8:65:c9:96:b3:86:16:b7:84:f4:92:45:87:a7:
97:91:5b:8c:c5:31:55:71:55:5d:33:0e:88:66:e6:
b7:10:3c:2a:55:c9:53:5d:7c:5c:41:ef:b7:84:f5:
a2:02:2a:47:66:60:0e:90:e7:fc:8e:ee:6c:eb:2e:
7b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:52:B4:47:56:8B:F6:7A:C1:C1:0B:27:5F:A3:81:10:3F:BA:42:31
X509v3 Authority Key Identifier:
keyid:67:8C:EB:F7:EE:C3:D5:E0:12:1E:40:11:70:CE:01:FF:38:88:D4:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z4zr9-7D1eASHkARcM4B_ziI1Ow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f2b87b-95e9-4cf8-abeb-6dfbba4edd59/1/XFK0R1aL9nrBwQsnX6OBED-6QjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f2b87b-95e9-4cf8-abeb-6dfbba4edd59/1/Z4zr9-7D1eASHkARcM4B_ziI1Ow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.109.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:57:59:6d:db:0b:1b:9d:18:a9:5e:cc:82:c8:c6:69:d6:4d:
92:aa:fc:45:1c:35:26:97:ab:eb:de:57:7b:bd:f1:68:0f:29:
97:a9:a3:03:e4:7f:2c:ef:19:b9:26:b1:0b:da:a9:9f:0b:b0:
87:54:65:eb:da:60:e6:6e:90:14:c0:f8:d9:c8:02:95:53:1a:
08:eb:1d:20:d7:d2:5c:62:2f:8f:be:58:04:93:bf:87:d9:42:
6d:9f:62:ee:3c:2d:5b:82:82:68:d8:ef:e8:05:82:e8:17:4f:
8f:33:73:43:fa:a7:1a:82:43:c4:4e:33:41:ec:fd:a2:ba:08:
49:63:34:16:cf:4e:db:52:21:be:62:e1:98:52:9c:94:0d:49:
f1:59:4f:0d:2d:30:52:f1:44:0e:ef:c9:0c:12:2c:d5:ff:31:
0e:9d:0a:14:f2:54:71:0a:18:fe:48:a4:88:84:8d:f6:56:e0:
c0:18:62:9a:3e:21:50:80:73:2a:c8:46:09:ad:69:61:a6:39:
85:95:3d:a4:5e:f8:46:73:43:89:59:50:e2:df:73:ee:f7:b7:
6e:75:50:6d:59:1c:85:d8:86:f2:e2:ce:1f:25:27:c7:3f:f7:
15:e6:86:d4:00:ae:06:94:45:87:4d:58:1b:6a:08:a1:ab:68:
df:e5:fd:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:08 2024 by rpki-client on console-fra.rpki-client.org