Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/d_p_xxn-N6W0cPszM-IrOkvhphA.roa
File: d_p_xxn-N6W0cPszM-IrOkvhphA.roa (raw, json)
Hash identifier: TXc6ln3OqF6OaMfEP8xAjY1U6m+l+Q55VD7Y1pQf0Ww=
Subject key identifier: 77:FA:7F:C7:19:FE:37:A5:B4:70:FB:33:33:E2:2B:3A:4B:E1:A6:10
Certificate issuer: /CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Certificate serial: 03B22140
Authority key identifier: A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/d_p_xxn-N6W0cPszM-IrOkvhphA.roa
Signing time: Sat 01 Jan 2022 06:52:58 +0000
ROA not before: Sat 01 Jan 2022 06:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49523
IP address blocks: 91.213.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62005568 (0x3b22140)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Validity
Not Before: Jan 1 06:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77fa7fc719fe37a5b470fb3333e22b3a4be1a610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:45:bb:ab:d7:13:17:b5:ab:1f:f7:6c:2e:
dd:45:cb:0d:32:ed:10:b5:4b:f6:64:55:33:79:21:
6f:bb:67:c8:43:84:86:d3:e6:da:37:de:49:cb:be:
96:e9:17:70:c2:34:8d:34:b9:1b:44:39:c3:a7:81:
23:81:aa:9e:03:83:d7:bc:92:91:79:e8:cd:36:26:
a6:e8:6b:5b:19:a1:1b:55:9a:4e:88:10:a0:62:8b:
0e:60:79:37:ab:41:e8:6d:6b:a6:c6:8b:14:79:42:
52:d2:38:d4:e3:ec:f8:bd:14:9c:96:03:45:2c:22:
8e:7f:13:44:34:9a:64:b3:1c:59:08:b1:63:7f:cb:
2a:08:71:1d:83:d2:44:7e:d7:b2:d7:e2:fe:f0:9c:
a3:8f:0f:5f:03:ef:73:05:97:1a:0b:16:67:82:ac:
57:20:cf:de:33:32:1e:85:f5:03:cc:55:05:33:e0:
59:16:0b:5f:5a:ca:fe:bf:a9:aa:98:2a:02:51:dd:
d5:84:71:e4:c0:da:ac:6f:82:be:df:87:d1:97:fc:
80:37:a2:5c:60:07:53:e1:8d:4b:a0:36:21:5f:15:
62:8e:16:42:00:14:f3:f1:4e:a1:dd:23:d7:bc:de:
b6:10:91:78:c9:58:eb:30:f9:f4:f5:9a:36:63:46:
f2:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FA:7F:C7:19:FE:37:A5:B4:70:FB:33:33:E2:2B:3A:4B:E1:A6:10
X509v3 Authority Key Identifier:
keyid:A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/d_p_xxn-N6W0cPszM-IrOkvhphA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.22.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c7:98:fb:9c:4f:27:b1:46:ef:cd:6e:40:2c:fe:f1:7a:99:
65:38:82:3e:09:bf:d2:03:45:90:b1:bb:b5:f8:21:17:1c:36:
43:40:7a:ae:a9:74:11:ea:35:ad:a3:b3:e0:3e:f1:02:e0:79:
8f:6f:5e:9e:1e:87:a2:10:09:0b:67:7e:ca:27:bf:af:12:4d:
26:20:27:0b:aa:5c:93:0d:77:ea:b1:d0:11:5f:29:f4:49:30:
83:9a:a3:3a:62:71:31:36:6d:39:99:1c:63:29:5a:7a:99:6d:
b1:2c:dc:17:55:69:2e:df:dd:d8:f7:6a:9b:52:a3:5a:bf:69:
c4:7b:d6:6e:ae:09:a9:3a:bf:0b:66:5f:c8:51:b6:0a:6b:fa:
2a:8f:5d:7f:20:8e:42:c8:1f:f5:71:02:03:26:bb:8c:48:ce:
ed:1a:d1:85:4f:92:ca:b6:33:70:c5:bd:81:9d:df:30:b3:49:
56:d5:d3:fe:a7:de:c0:b8:29:77:8a:02:50:97:28:fe:87:2e:
a0:14:5a:87:23:c0:82:16:c5:14:4d:6a:40:7b:62:4d:f0:c9:
09:8d:1a:c9:9f:ec:ff:5e:36:3f:cc:7a:8a:4e:ae:1e:85:9f:
f8:01:f4:ab:3a:f6:1f:99:0e:5e:73:1f:e1:80:75:73:ee:f8:
8b:5d:c2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:09 2024 by rpki-client on console-fra.rpki-client.org