Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/LW79HpwYuLzjud8jUml889IZz0A.roa
File: LW79HpwYuLzjud8jUml889IZz0A.roa (raw, json)
Hash identifier: QZSrTQVcgu0D6+4MAmCjL4+vudYNkuDDdZCAPp5Ga/M=
Subject key identifier: 2D:6E:FD:1E:9C:18:B8:BC:E3:B9:DF:23:52:69:7C:F3:D2:19:CF:40
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0AC1DA3E
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/LW79HpwYuLzjud8jUml889IZz0A.roa
Signing time: Sat 01 Jan 2022 03:02:30 +0000
ROA not before: Sat 01 Jan 2022 03:02:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47592
IP address blocks: 91.106.218.0/24 maxlen: 24
91.106.219.0/24 maxlen: 24
91.106.217.0/24 maxlen: 24
91.106.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180476478 (0xac1da3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 03:02:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d6efd1e9c18b8bce3b9df2352697cf3d219cf40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:03:81:cd:92:bb:c0:4a:96:22:aa:da:9e:0c:
92:da:36:df:bc:87:fb:40:a4:d3:29:70:31:96:e4:
b3:05:63:c7:e6:bc:21:bc:0d:59:36:79:9f:ee:c0:
1b:f9:33:f7:0e:be:b6:30:00:61:0d:8d:57:71:b3:
1a:a6:6d:8d:09:28:ce:11:74:e6:2c:87:72:08:73:
22:ea:a6:b9:4d:35:1b:d6:71:40:99:03:2c:27:a7:
c1:5d:e6:0c:e1:2b:61:49:af:d0:ba:e3:73:a2:ea:
20:0a:c4:c8:fb:e6:0a:1b:d9:9e:d3:ed:7b:f0:67:
6c:04:ea:01:00:d0:50:9d:9f:16:7f:43:bf:e8:61:
88:61:e9:c0:41:eb:c7:e3:e7:7c:fc:00:66:b7:76:
7c:e9:f6:61:33:45:57:9c:55:a2:50:93:b7:78:6c:
d5:65:70:84:5f:a0:a9:1e:d8:8a:41:03:80:a2:c8:
8f:73:4a:c5:b3:68:f3:f2:8f:29:81:c2:69:e8:7b:
9e:f5:98:a7:fc:7d:f4:25:10:1c:2f:d3:fe:f3:77:
9e:7d:eb:65:37:65:f6:36:54:04:af:fc:3f:54:62:
1e:80:83:20:27:12:66:c8:90:5a:28:c4:a3:ad:6a:
b3:8e:71:73:66:a9:81:94:23:7e:c7:a3:7f:e9:d8:
83:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:6E:FD:1E:9C:18:B8:BC:E3:B9:DF:23:52:69:7C:F3:D2:19:CF:40
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/LW79HpwYuLzjud8jUml889IZz0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.216.0/22
Signature Algorithm: sha256WithRSAEncryption
66:77:b5:04:f2:6c:c8:9c:88:da:6e:ac:a1:b3:b2:b7:86:ad:
c3:fe:3f:36:bc:83:28:87:97:97:a8:4c:0b:ca:39:86:95:12:
73:44:8d:be:35:ff:eb:91:11:93:62:6d:84:7f:03:61:4b:39:
f5:03:d4:36:6b:7f:d7:5e:09:a9:af:08:62:ad:b0:9f:66:50:
96:77:8c:8b:db:05:c9:de:91:d9:e9:e5:dd:b9:44:d1:82:87:
c4:97:64:7f:2e:80:6e:74:8a:ba:53:56:24:99:82:9c:51:46:
a2:05:79:db:e1:ef:ed:f3:10:16:4f:ed:28:d0:e1:0b:f3:da:
f9:bc:bc:f9:80:99:ad:10:81:8b:e5:63:a6:df:ac:bc:80:a3:
c2:22:a0:6a:24:f3:e9:f8:1a:75:24:fe:eb:51:ee:e4:25:93:
c4:ff:e2:76:47:75:ac:e0:09:01:74:24:4e:22:20:31:c4:4e:
dc:95:84:29:68:cd:cc:04:92:f7:9b:40:fb:0b:6f:e3:60:13:
f3:27:7e:8d:07:4d:27:98:0d:b1:fa:38:c6:2b:95:03:59:f5:
ed:94:fa:cf:6e:20:dd:b7:68:6e:73:0e:c8:c1:3a:1e:ea:b7:
7a:f5:55:56:c4:54:fe:41:fc:f1:22:1d:7c:20:14:88:e6:1b:
1b:0a:51:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org