Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/0QqcxU8l9gwHttco_zyEOSGOcmw.roa
File: 0QqcxU8l9gwHttco_zyEOSGOcmw.roa (raw, json)
Hash identifier: NnCxRYLesM2ksVKkrnhMLWNGfGL0uLX5xb14n7rD1jU=
Subject key identifier: D1:0A:9C:C5:4F:25:F6:0C:07:B6:D7:28:FF:3C:84:39:21:8E:72:6C
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 035DAB1F
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/0QqcxU8l9gwHttco_zyEOSGOcmw.roa
Signing time: Sat 01 Jan 2022 04:52:25 +0000
ROA not before: Sat 01 Jan 2022 04:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57270
IP address blocks: 91.231.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56470303 (0x35dab1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Jan 1 04:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d10a9cc54f25f60c07b6d728ff3c8439218e726c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c0:92:7e:36:d2:e8:d7:a1:bb:e2:2c:28:6c:
d8:0b:b7:dc:06:9f:8a:ea:30:89:2d:c3:0c:85:6a:
b4:cc:fe:7b:d2:ce:37:c5:57:6a:d5:ad:02:f8:b3:
60:4f:e6:37:05:b7:ae:a0:04:91:94:e1:18:84:e6:
2b:35:7a:bd:bf:5d:6b:30:86:2c:af:24:12:a3:77:
da:4b:c6:04:90:b6:e9:3e:37:05:8a:95:61:64:de:
6f:06:3a:95:bf:08:50:3b:93:00:d2:00:21:7c:b0:
b6:4c:85:fb:7d:4d:53:fd:5c:63:fa:75:43:52:06:
0e:49:c9:b4:3f:d5:33:69:d4:ad:ea:4b:97:7c:96:
fc:e1:30:19:4e:95:4f:1d:5e:a2:e1:e9:2a:db:4d:
25:8f:2f:11:f9:e9:5c:db:65:61:9f:b7:ca:92:1f:
40:a7:3d:7b:26:19:70:5d:6f:97:cc:58:12:ba:99:
3d:fe:a9:02:9d:37:6f:0f:0f:4e:9a:b4:22:eb:53:
ef:e0:78:39:cd:50:08:e1:87:82:db:ab:ec:a8:6a:
37:9a:fe:fb:52:bb:43:7b:d9:cf:00:24:6d:07:8b:
06:78:1a:84:25:e6:49:3a:a8:41:ca:22:7b:84:d6:
91:d6:bb:2a:cc:61:bb:29:84:b1:56:0e:ea:9a:c8:
83:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0A:9C:C5:4F:25:F6:0C:07:B6:D7:28:FF:3C:84:39:21:8E:72:6C
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/0QqcxU8l9gwHttco_zyEOSGOcmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.190.0/24
Signature Algorithm: sha256WithRSAEncryption
07:f7:f4:9e:97:a0:30:be:2f:5a:20:05:27:f0:34:ef:56:ca:
46:f0:ca:74:2c:fc:53:05:8c:4c:05:14:21:3f:be:a7:76:67:
d1:92:f4:92:ff:30:29:b9:a7:f8:6b:96:3a:1a:b9:3c:5e:4e:
30:3a:92:55:96:54:f5:4e:fe:ac:22:73:d9:78:e1:94:b5:3c:
5f:d1:8c:9a:9f:d4:30:62:61:8f:c3:58:3d:af:43:01:7e:ff:
ca:98:7e:c3:02:40:2f:e2:f1:f3:91:19:dd:47:1f:77:aa:61:
ff:33:b4:a8:a0:ef:cb:e8:24:b3:de:dd:cb:31:35:6d:34:7c:
fa:43:43:8c:56:8a:67:6b:d3:7f:8c:07:fb:7c:fd:9c:07:d5:
77:f9:2b:0a:45:54:12:8b:1f:9c:65:d7:9a:1d:c2:6c:0d:d2:
e3:82:e1:73:63:a7:19:d9:8f:ed:a5:6f:ae:8c:73:d4:d6:56:
d1:98:a1:c0:41:8a:8b:2a:6f:09:07:b2:48:40:36:41:a0:c4:
a6:01:af:8e:30:59:2e:cd:5a:4a:5b:39:18:b7:55:39:bb:34:
23:ca:10:9c:13:cc:2f:31:0e:00:eb:fc:c9:d9:3b:dd:6f:3a:
3d:bd:2b:50:b2:4d:09:52:0f:66:ea:91:16:ec:4a:34:bb:b6:
e6:34:cc:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:30 2024 by rpki-client on console-ams.rpki-client.org