Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/b08f22-11f6-4ee5-a231-b7cd4490a983/1/vFsgISwDsB09Dlxtk1L-dShp_eI.roa
File: vFsgISwDsB09Dlxtk1L-dShp_eI.roa (raw, json)
Hash identifier: FHgAD6mPTYmp2rC6P9ndpUNcv3350LdDIymC/QaxofU=
Subject key identifier: BC:5B:20:21:2C:03:B0:1D:3D:0E:5C:6D:93:52:FE:75:28:69:FD:E2
Certificate issuer: /CN=39abeb591716e908345d329fffd3700352315b98
Certificate serial: 0348665C
Authority key identifier: 39:AB:EB:59:17:16:E9:08:34:5D:32:9F:FF:D3:70:03:52:31:5B:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OavrWRcW6Qg0XTKf_9NwA1IxW5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/b08f22-11f6-4ee5-a231-b7cd4490a983/1/vFsgISwDsB09Dlxtk1L-dShp_eI.roa
Signing time: Sat 01 Jan 2022 07:53:35 +0000
ROA not before: Sat 01 Jan 2022 07:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39957
IP address blocks: 91.199.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55076444 (0x348665c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39abeb591716e908345d329fffd3700352315b98
Validity
Not Before: Jan 1 07:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc5b20212c03b01d3d0e5c6d9352fe752869fde2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f0:a7:03:bc:84:9a:00:3d:06:f1:43:ff:0e:
5e:11:53:b0:72:1c:e0:07:b2:b9:a1:01:ac:f1:95:
ca:55:28:97:01:e7:8d:f9:04:c1:73:b7:ae:a2:20:
e7:c8:59:18:cf:5d:29:6f:a4:f8:0a:14:cd:86:2a:
b9:3c:74:70:76:82:fd:2c:6e:47:55:96:e1:42:9d:
a9:5f:67:c8:ee:30:2c:9c:43:14:84:71:e4:17:e5:
14:6b:8d:c6:b7:e9:96:b2:e3:1d:97:83:fe:00:58:
9a:12:19:fd:1e:b1:03:b5:b7:69:42:a0:4a:7d:58:
72:16:5d:38:7c:3e:ea:98:a3:8b:86:8d:f7:c6:67:
9d:c4:66:ac:54:82:9a:b6:f3:42:86:78:2e:06:d8:
f1:03:1e:39:5e:53:62:dc:bb:a9:9b:a5:94:a1:12:
28:2c:58:3f:5b:dc:a6:29:9c:47:18:f5:05:d2:ab:
a8:65:f3:bf:f8:a4:97:b9:b4:7f:f7:4b:ed:f8:74:
cf:8e:7f:f7:3f:a1:e2:74:59:dc:e9:ae:5c:b3:fb:
80:aa:91:6c:28:54:64:b2:51:89:43:82:59:c7:84:
c1:b5:b1:a0:a6:43:c2:09:23:b1:3f:3d:f6:8b:8f:
bd:e7:db:8b:50:fa:49:c1:21:ee:a9:9a:79:31:6b:
b0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:5B:20:21:2C:03:B0:1D:3D:0E:5C:6D:93:52:FE:75:28:69:FD:E2
X509v3 Authority Key Identifier:
keyid:39:AB:EB:59:17:16:E9:08:34:5D:32:9F:FF:D3:70:03:52:31:5B:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OavrWRcW6Qg0XTKf_9NwA1IxW5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b08f22-11f6-4ee5-a231-b7cd4490a983/1/vFsgISwDsB09Dlxtk1L-dShp_eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/b08f22-11f6-4ee5-a231-b7cd4490a983/1/OavrWRcW6Qg0XTKf_9NwA1IxW5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.1.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ad:55:a2:fb:19:fb:92:de:8d:a0:4a:25:85:12:cc:43:a5:
dd:da:6a:ad:24:59:c4:a7:34:84:be:7f:c0:2f:84:95:5e:51:
2f:13:db:06:c0:7f:99:6d:65:50:60:fe:0f:f8:30:5e:e1:2e:
71:70:8c:fe:ac:fd:8f:28:60:2d:3d:c1:41:c8:5a:85:f6:42:
49:15:c9:69:20:7b:7c:50:c3:47:6b:23:65:e2:9e:e6:1c:19:
71:3a:46:b3:55:36:c0:ca:a5:5f:9a:9b:df:b3:a3:ee:55:0c:
a9:e4:75:30:80:e6:60:51:cb:94:b6:70:3c:80:03:4d:4d:8f:
33:38:66:47:e9:65:8c:e0:35:80:72:60:fc:16:d4:f8:ae:46:
98:6c:23:06:a9:ec:22:7a:f4:e3:0a:ee:e8:5a:39:61:47:ca:
12:43:0a:0a:f8:ee:d5:68:2f:cb:cb:92:db:79:06:7e:3c:c6:
c4:4b:fc:7b:14:1d:48:4b:a2:56:1b:c9:89:59:c8:17:4c:87:
90:3e:17:9d:61:9c:68:d5:66:47:31:f3:19:f5:c2:83:4a:d7:
45:44:c7:33:2a:40:6d:7f:9e:0c:e0:93:97:95:10:45:60:d6:
28:1a:4a:45:62:7d:ee:8d:12:13:4c:55:8e:cc:46:4b:34:2c:
76:86:45:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:44 2024 by rpki-client on console-ams.rpki-client.org