Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/6XrO23u0rsTFHB5TjeeNt8zMnRk.roa
File: 6XrO23u0rsTFHB5TjeeNt8zMnRk.roa (raw, json)
Hash identifier: lO3VmpBu7YyxsxyekgWG0nD/pZNJn3oaEeAPfUdYRaM=
Subject key identifier: E9:7A:CE:DB:7B:B4:AE:C4:C5:1C:1E:53:8D:E7:8D:B7:CC:CC:9D:19
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 035E962A
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/6XrO23u0rsTFHB5TjeeNt8zMnRk.roa
Signing time: Sat 01 Jan 2022 04:52:25 +0000
ROA not before: Sat 01 Jan 2022 04:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212126
IP address blocks: 91.231.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56530474 (0x35e962a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Jan 1 04:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e97acedb7bb4aec4c51c1e538de78db7cccc9d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3f:f4:12:c4:c7:44:78:52:c0:7c:d6:b0:51:
87:6d:f5:33:85:4b:94:7c:2f:3a:54:54:9d:41:c3:
9d:5e:94:8d:8b:eb:31:74:37:38:2e:24:f3:a4:e9:
d0:0b:f8:cc:14:59:eb:3e:71:fa:2c:e2:16:99:33:
0e:ba:3a:c0:f4:60:c5:64:cf:26:b4:24:cb:02:23:
c3:2e:43:11:03:9a:a9:53:2e:62:72:01:db:67:31:
a9:9a:09:86:35:d7:fc:fe:9d:a9:35:d9:02:12:2b:
77:70:41:4b:47:4c:0f:01:47:7c:e0:a0:67:9c:08:
a6:80:b3:70:79:5e:a5:e8:75:5b:7c:9f:88:fe:18:
39:78:eb:73:26:96:e2:af:4b:34:bd:09:7f:09:60:
21:de:e0:30:0e:d3:21:97:0b:44:d7:a5:d2:29:de:
31:58:08:a4:2f:29:7c:3f:dd:32:66:90:3c:9e:f9:
04:4e:4d:a8:5d:98:b1:39:c5:77:3b:d1:dc:70:82:
01:15:35:6c:c2:a9:ac:44:ca:6c:e8:e0:02:cb:7a:
6b:92:fe:b9:7d:f4:fe:f6:7d:e2:50:5c:c3:85:18:
8e:8a:55:ac:d7:5c:62:c5:7a:34:47:3e:b0:2f:2d:
f6:29:43:c4:73:0f:ee:6f:2b:4d:6b:98:24:69:e8:
57:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7A:CE:DB:7B:B4:AE:C4:C5:1C:1E:53:8D:E7:8D:B7:CC:CC:9D:19
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/6XrO23u0rsTFHB5TjeeNt8zMnRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.189.0/24
Signature Algorithm: sha256WithRSAEncryption
30:55:06:f7:e9:34:c9:29:de:4f:a2:db:e6:34:02:33:94:86:
80:17:03:d1:1b:08:c4:cd:0f:38:99:53:bf:0c:3c:50:9d:54:
06:0c:34:f7:44:74:9f:d4:b8:1c:75:b8:7c:a7:32:bd:a7:e7:
df:2d:6e:38:a5:9c:ff:10:20:f0:22:0b:d0:83:14:e7:fe:57:
3b:85:80:09:b9:b0:a9:41:c8:a9:44:74:3c:58:9d:bf:2c:64:
11:60:e7:b8:29:bc:93:43:71:c3:1e:1f:3d:4a:da:16:e4:16:
61:e2:6c:4d:db:4f:61:84:94:8e:34:4e:28:b8:d5:5c:aa:74:
dc:b8:c0:8d:1f:3c:c3:0d:8f:3d:8d:62:1c:ae:54:a8:4a:7f:
7f:c5:09:59:e6:7f:88:59:57:aa:9f:03:f5:d7:f6:db:c1:6f:
7f:e4:3f:04:e1:38:67:0d:37:4e:6d:9e:51:c4:1b:64:60:c6:
17:40:8a:de:09:14:96:ff:48:72:5b:8b:48:e6:93:0a:ce:9d:
6d:40:0e:72:0f:3b:d2:dc:08:bd:7f:2b:f7:3a:0d:1a:ce:74:
4f:61:0c:41:7c:7c:ba:aa:6e:71:07:10:f6:d3:4d:4c:82:ba:
43:c1:6b:0f:04:b1:e5:6d:b4:66:ed:43:e8:a6:28:18:28:e3:
38:df:ac:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:09 2024 by rpki-client on console-fra.rpki-client.org