Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/ahJ9ct8hqT65UhjrmuazrABP5gQ.roa
File: ahJ9ct8hqT65UhjrmuazrABP5gQ.roa (raw, json)
Hash identifier: T0yPcWNapaCIqezo6R/Qqvr5zQ1khSd2izcBjd/N8ps=
Subject key identifier: 6A:12:7D:72:DF:21:A9:3E:B9:52:18:EB:9A:E6:B3:AC:00:4F:E6:04
Certificate issuer: /CN=bd175e878d33b47d806f2cf3e04628220935123d
Certificate serial: 07B52630
Authority key identifier: BD:17:5E:87:8D:33:B4:7D:80:6F:2C:F3:E0:46:28:22:09:35:12:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRdeh40ztH2Abyzz4EYoIgk1Ej0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/ahJ9ct8hqT65UhjrmuazrABP5gQ.roa
Signing time: Sat 01 Jan 2022 09:54:58 +0000
ROA not before: Sat 01 Jan 2022 09:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12586
IP address blocks: 91.199.8.0/24 maxlen: 32
2001:67c:2f84::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129312304 (0x7b52630)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd175e878d33b47d806f2cf3e04628220935123d
Validity
Not Before: Jan 1 09:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a127d72df21a93eb95218eb9ae6b3ac004fe604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:61:06:24:dd:88:e6:b0:ff:90:ec:a9:4a:26:
c9:1f:db:9f:1b:75:cf:f3:1c:cd:ae:33:30:08:7a:
46:ed:e8:a4:a6:dc:31:31:be:a4:2e:94:8b:fb:a6:
19:4c:5c:a3:fe:9e:cf:7c:9a:93:ef:2b:a0:26:ba:
05:69:dd:e9:40:b8:97:84:f0:bd:cc:ee:48:bf:8d:
b6:02:7f:54:82:88:16:78:90:cb:22:aa:93:f4:cf:
fb:8c:a2:a3:7c:d3:de:d0:67:31:b1:40:ff:c6:64:
2f:fc:8f:74:2b:5c:64:f3:f7:4e:8d:c0:c8:e9:89:
0e:5a:2a:17:d5:d2:f9:08:86:75:71:0a:2f:11:6e:
d1:84:81:f4:3a:0d:13:94:85:66:39:cf:00:87:08:
e2:c3:c9:be:66:82:74:5a:44:9a:14:94:b9:de:51:
a2:8c:3d:1a:76:3b:12:44:5e:ff:44:fe:75:15:2c:
aa:a7:cd:0c:a4:9a:c1:59:25:5d:24:78:47:10:7f:
3e:60:84:77:1a:9b:8d:1d:9c:12:36:9a:46:16:30:
17:87:cb:3d:85:c1:8a:75:37:98:2c:77:f7:fc:41:
1f:7a:9b:96:8b:cf:84:57:5d:77:0c:a3:ef:7b:c4:
7e:c7:71:45:14:63:a0:10:3c:b5:eb:1e:77:e4:9e:
a2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:12:7D:72:DF:21:A9:3E:B9:52:18:EB:9A:E6:B3:AC:00:4F:E6:04
X509v3 Authority Key Identifier:
keyid:BD:17:5E:87:8D:33:B4:7D:80:6F:2C:F3:E0:46:28:22:09:35:12:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRdeh40ztH2Abyzz4EYoIgk1Ej0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/ahJ9ct8hqT65UhjrmuazrABP5gQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/vRdeh40ztH2Abyzz4EYoIgk1Ej0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.8.0/24
IPv6:
2001:67c:2f84::/48
Signature Algorithm: sha256WithRSAEncryption
00:66:90:c9:e7:b2:a5:c7:3b:b8:87:4b:82:62:97:e5:c8:25:
a3:c6:cf:69:ca:55:13:7e:71:30:9a:e3:8c:61:5b:5a:17:2f:
f8:1a:4a:05:5f:c2:4f:d3:27:c0:b2:b1:ee:b8:e5:c3:d0:6b:
77:f5:31:ab:0a:24:01:f8:c1:0f:ea:e5:94:ce:14:a4:7e:65:
d7:50:e7:bb:ed:c8:d6:d5:8e:0b:e2:af:33:c5:3d:68:11:b4:
4a:66:8b:94:04:e8:ca:ff:65:14:29:b7:b8:f3:45:ef:bc:02:
f4:71:4c:5c:78:32:09:5c:83:ed:a4:e9:da:3e:a4:eb:22:0e:
71:7f:fb:88:3a:be:fa:5c:87:f7:58:a6:ce:0d:f9:e7:36:42:
42:ab:d0:44:38:43:83:21:a3:5e:f6:e1:ef:cd:98:ab:c7:9e:
57:1c:06:4e:74:53:6e:f6:3d:1d:e8:44:7a:77:6f:9c:25:10:
81:86:88:17:2e:1c:d8:cb:91:1a:4e:a8:95:e0:03:d2:eb:56:
e0:03:27:87:5a:08:b9:8f:ea:80:6f:b4:65:48:5b:5a:76:2f:
65:ac:d3:41:7d:a8:4c:73:11:9d:64:52:a5:36:42:e5:f9:24:
e9:7b:dd:7e:a7:63:74:50:9a:a2:84:87:3c:db:a9:1d:54:bf:
d8:9e:9d:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:46 2024 by rpki-client on console-ams.rpki-client.org