Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/Dalr2KIR1cqVN9-qMJn_hfCIKgA.roa
File: Dalr2KIR1cqVN9-qMJn_hfCIKgA.roa (raw, json)
Hash identifier: FGgBOP24MWbtyPTZwExqoN+C/fLEdVuotO8ho/CiCTc=
Subject key identifier: 0D:A9:6B:D8:A2:11:D5:CA:95:37:DF:AA:30:99:FF:85:F0:88:2A:00
Certificate issuer: /CN=acc32858ccda9586c6d9671e310d51c28268c459
Certificate serial: 05A8EC88
Authority key identifier: AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/Dalr2KIR1cqVN9-qMJn_hfCIKgA.roa
Signing time: Sat 01 Jan 2022 05:54:37 +0000
ROA not before: Sat 01 Jan 2022 05:54:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 91.229.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94956680 (0x5a8ec88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acc32858ccda9586c6d9671e310d51c28268c459
Validity
Not Before: Jan 1 05:54:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0da96bd8a211d5ca9537dfaa3099ff85f0882a00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:77:84:84:6a:5e:26:0e:a7:59:d0:f8:ce:e1:
ba:93:21:8c:2e:44:92:a5:fc:c0:30:31:44:21:a2:
37:dd:fc:91:82:6c:0f:02:2e:ee:93:46:bf:f6:cd:
06:c0:48:0d:d8:e6:0f:38:8a:4c:13:e1:38:e7:3c:
6e:bf:24:0f:c3:0b:7e:5e:10:aa:10:3a:80:7e:68:
50:94:68:37:04:e2:7b:30:cc:23:db:c7:52:ea:03:
d4:47:5e:89:d9:79:ff:5b:90:24:63:af:b2:85:81:
7e:cc:78:8b:9c:c8:59:db:62:de:81:68:64:46:b9:
24:ce:32:8e:57:47:43:5a:94:4a:5b:98:bd:62:14:
8d:39:03:f2:19:61:f7:d3:84:d9:e1:8d:ca:e9:4f:
e8:2e:7d:a0:d0:a2:15:e7:9a:d3:6d:a5:d5:76:2e:
b3:05:c7:6b:fe:f9:6a:5a:62:26:24:64:a9:5b:8c:
91:9b:3a:be:d9:07:4e:d4:60:51:79:58:07:49:0e:
be:f0:19:d9:23:db:8d:43:69:2b:41:a9:3f:d7:f3:
42:cf:6b:21:ec:e2:87:0b:b1:0c:b6:58:cf:63:49:
89:5d:70:2a:79:d3:50:ec:df:4b:59:d2:1b:bd:19:
6a:1b:49:0d:11:a1:6c:b7:6f:58:e6:f1:c9:6c:31:
f9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A9:6B:D8:A2:11:D5:CA:95:37:DF:AA:30:99:FF:85:F0:88:2A:00
X509v3 Authority Key Identifier:
keyid:AC:C3:28:58:CC:DA:95:86:C6:D9:67:1E:31:0D:51:C2:82:68:C4:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rMMoWMzalYbG2WceMQ1RwoJoxFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/Dalr2KIR1cqVN9-qMJn_hfCIKgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6cf769-9b58-4847-8f1f-edc54072ae89/1/rMMoWMzalYbG2WceMQ1RwoJoxFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.58.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:fa:0d:dc:7e:bf:15:4c:ef:b1:48:d0:c3:42:9e:72:aa:8e:
c2:a4:fa:04:30:ed:d2:29:2a:cb:23:a5:3d:3c:09:2e:71:d6:
7f:33:4f:18:fb:6c:48:9e:d4:19:db:04:c6:eb:9f:ec:63:f2:
e6:c1:10:d1:8f:83:7e:53:50:63:39:42:22:66:7a:2e:03:89:
d7:01:a6:0c:58:b3:f6:d3:b9:a2:2e:b2:f7:31:c1:fc:36:3b:
be:22:e8:46:01:09:92:93:ae:80:cc:06:5e:7d:31:d0:07:8c:
2e:4b:0e:94:89:80:72:f1:c5:a2:de:6f:95:32:58:36:cc:8d:
f5:ea:9f:62:d0:99:d9:f6:9e:e8:d5:bd:af:4e:18:dd:e9:fc:
fd:18:62:fe:dc:8b:21:98:0c:3a:ae:cd:84:d1:df:4e:87:a6:
5a:77:6f:c5:a3:56:4e:11:7f:7e:35:26:00:85:d2:7e:4f:03:
6f:75:db:63:bb:5d:81:17:14:db:80:57:3c:d6:cf:e6:64:55:
ec:5a:7c:a0:f1:7d:0d:98:1a:54:04:c0:b6:d8:db:d8:83:46:
d1:7c:5c:c4:6f:ed:02:a5:98:5c:da:72:60:01:de:8e:45:1c:
7b:ab:06:6a:3b:c8:f7:dd:ef:97:11:ee:9f:c2:7a:aa:cb:24:
95:23:77:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:42 2024 by rpki-client on console-ams.rpki-client.org