Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/70c19f-29ca-4b62-ac62-8ba768022763/1/NDWj2dT8HKV6EEDKCC3ZsidgUJg.roa
File: NDWj2dT8HKV6EEDKCC3ZsidgUJg.roa (raw, json)
Hash identifier: GmEAlzExSnQnXB/wGv7iwpaVutozPoYcicb3AT102xY=
Subject key identifier: 34:35:A3:D9:D4:FC:1C:A5:7A:10:40:CA:08:2D:D9:B2:27:60:50:98
Certificate issuer: /CN=837e177f76663166c75190e2d209335a6aae5ace
Certificate serial: EF64C9
Authority key identifier: 83:7E:17:7F:76:66:31:66:C7:51:90:E2:D2:09:33:5A:6A:AE:5A:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g34Xf3ZmMWbHUZDi0gkzWmquWs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/70c19f-29ca-4b62-ac62-8ba768022763/1/NDWj2dT8HKV6EEDKCC3ZsidgUJg.roa
Signing time: Sat 01 Jan 2022 10:56:19 +0000
ROA not before: Sat 01 Jan 2022 10:56:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57069
IP address blocks: 91.226.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15688905 (0xef64c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=837e177f76663166c75190e2d209335a6aae5ace
Validity
Not Before: Jan 1 10:56:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3435a3d9d4fc1ca57a1040ca082dd9b227605098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:40:27:2c:40:d0:06:13:d0:23:10:40:bd:c5:
d0:fb:f9:06:a3:ff:62:8d:6a:24:a9:27:b7:b4:20:
82:c3:5e:2f:9b:a7:d5:64:0f:0f:13:6e:bd:d2:2f:
81:76:b2:cc:b5:93:9b:aa:8a:8a:83:2d:36:27:1c:
72:1c:3a:02:be:4d:f5:c8:fd:df:b3:c0:90:88:2d:
6e:d7:fb:b5:a6:2a:12:86:6c:eb:0d:8e:6d:ef:9e:
5a:c1:01:80:e1:bb:6f:8e:b1:b8:58:1a:9e:94:4f:
a9:0e:a6:e1:b7:06:05:e6:84:02:70:e0:a0:3c:78:
e9:79:f3:a6:59:39:9a:bb:15:77:35:df:3a:ee:56:
a8:c2:67:0f:2f:ec:21:e4:1b:ac:e8:66:e1:23:34:
ec:e3:c5:5e:44:29:a6:23:f4:23:7c:32:1f:7a:d6:
2a:20:1b:eb:33:5a:0e:c0:99:23:0f:f1:76:15:14:
f0:f7:f8:5d:6c:5e:ae:00:bc:d1:e4:fd:07:1e:8c:
80:5a:00:17:6b:b2:75:14:ed:de:46:89:ee:e6:b5:
b3:dd:9b:96:6f:69:6a:10:c0:fd:42:bc:d3:f5:cc:
ed:f9:4b:59:0a:0b:bd:b3:b1:18:5a:6d:12:44:fd:
c5:87:71:e7:80:c2:cd:15:67:53:de:f3:e2:11:ef:
6b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:35:A3:D9:D4:FC:1C:A5:7A:10:40:CA:08:2D:D9:B2:27:60:50:98
X509v3 Authority Key Identifier:
keyid:83:7E:17:7F:76:66:31:66:C7:51:90:E2:D2:09:33:5A:6A:AE:5A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g34Xf3ZmMWbHUZDi0gkzWmquWs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/70c19f-29ca-4b62-ac62-8ba768022763/1/NDWj2dT8HKV6EEDKCC3ZsidgUJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/70c19f-29ca-4b62-ac62-8ba768022763/1/g34Xf3ZmMWbHUZDi0gkzWmquWs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.219.0/24
Signature Algorithm: sha256WithRSAEncryption
00:cb:e5:4f:a8:39:2d:0e:1e:55:91:1f:2b:ca:12:7c:f0:89:
b8:2a:02:bb:f0:e0:0c:7b:2c:10:a8:70:1f:70:4f:da:32:ec:
1d:4f:0d:db:41:b5:e7:12:52:bd:73:7c:b9:96:3e:62:15:fa:
27:6b:f0:47:f2:c8:78:98:83:42:b6:20:84:bb:4e:3e:d8:d4:
7e:4e:c9:ac:71:b2:4d:06:db:10:b1:b1:91:33:10:35:09:b2:
57:d1:e9:f7:a2:c9:ef:03:47:f1:e6:e0:52:2b:ce:7a:77:01:
af:81:69:f7:96:65:38:b9:f3:3a:e4:86:1a:e3:99:44:b9:8c:
a4:ba:43:b6:0b:7c:2f:f6:8f:b5:96:d8:3b:f3:60:d2:7c:26:
76:b2:f2:67:9d:da:67:f3:8f:02:9c:21:f0:9b:a0:28:09:19:
d3:9a:d2:cd:ef:0d:7b:61:8e:5a:88:f0:99:ec:ea:fd:d6:8e:
d1:86:f5:80:29:76:d0:30:8e:1a:b1:60:c9:98:1e:64:db:16:
7a:cd:9c:df:da:b3:59:42:7d:a0:20:af:e2:b0:d5:b7:55:24:
6a:c2:61:e6:f3:b9:d6:91:62:36:34:35:1a:45:b0:98:cc:1a:
09:d7:37:d5:73:e2:56:03:19:90:f7:0e:90:3e:0a:d7:fa:3d:
cf:c6:54:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:12 2024 by rpki-client on console-fra.rpki-client.org