Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/T-_r8D6jAARo1j0n65wUf5OV8fk.roa
File: T-_r8D6jAARo1j0n65wUf5OV8fk.roa (raw, json)
Hash identifier: U3o6FDPOj3XgLFPWapLtBsR70SWbMSJqufma130uC2k=
Subject key identifier: 4F:EF:EB:F0:3E:A3:00:04:68:D6:3D:27:EB:9C:14:7F:93:95:F1:F9
Certificate issuer: /CN=34012343a62f3f09b55cdbc01e75c38212a235df
Certificate serial: F8A1
Authority key identifier: 34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/T-_r8D6jAARo1j0n65wUf5OV8fk.roa
Signing time: Wed 19 Jan 2022 10:23:28 +0000
ROA not before: Wed 19 Jan 2022 10:23:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57593
IP address blocks: 91.233.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63649 (0xf8a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34012343a62f3f09b55cdbc01e75c38212a235df
Validity
Not Before: Jan 19 10:23:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4fefebf03ea3000468d63d27eb9c147f9395f1f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7f:fc:1d:95:3e:ac:66:30:3e:ba:9b:f6:d6:
0a:47:01:3b:10:43:ee:8c:04:42:4a:56:f5:03:f9:
5e:31:67:41:28:03:1a:b2:b4:d0:51:79:8f:72:41:
fb:5b:55:5e:4c:cd:a3:9d:17:cc:c2:21:03:8b:1b:
f5:49:ba:61:ed:c0:fa:76:dc:49:50:6e:27:99:05:
63:95:4a:67:e0:ef:c2:f7:33:33:5a:a0:ee:ef:1f:
07:20:f5:0a:13:c5:4a:ec:e0:8d:ca:e1:09:13:87:
02:3f:85:77:1e:98:bb:6b:b4:2f:1b:40:77:61:05:
b9:2b:ae:2d:98:b7:2d:1a:7d:2c:00:5a:54:bc:65:
f6:47:ef:53:37:ee:36:9f:2f:74:2f:f9:c2:81:86:
bf:c0:48:35:d8:87:90:ac:a2:2f:b6:92:d5:1b:8b:
14:8e:21:a4:2d:a2:7d:ce:25:6b:87:41:55:91:0a:
58:5d:be:ef:1b:13:e4:c8:3e:5c:89:d7:7a:e7:49:
43:54:28:e8:91:91:87:5c:19:56:da:e9:e3:9e:7a:
70:e7:ca:7e:e4:96:1f:c5:8c:76:27:97:f8:72:ef:
72:21:3b:c5:02:b3:da:8b:37:b1:d8:bd:67:7d:b7:
d1:69:f4:b9:ae:50:4e:72:ac:ef:48:93:e5:b4:10:
2f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:EF:EB:F0:3E:A3:00:04:68:D6:3D:27:EB:9C:14:7F:93:95:F1:F9
X509v3 Authority Key Identifier:
keyid:34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/T-_r8D6jAARo1j0n65wUf5OV8fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.60.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:1c:cf:55:39:80:6c:06:a2:84:6c:b8:2f:55:50:71:7f:79:
18:26:e0:d7:eb:35:42:a8:8c:9e:23:c0:54:f4:b7:3b:71:16:
6a:92:1f:23:27:9d:e0:43:02:99:b7:f2:3a:a4:17:7c:ed:ca:
7a:6f:1c:a8:b4:14:6d:10:ed:91:0c:10:a2:c4:77:fc:ae:35:
95:f8:70:68:98:a6:f0:a8:4a:11:72:78:e1:94:4b:ee:c4:fb:
d1:19:f0:67:2b:15:02:c5:9e:a5:bf:bc:8c:fa:51:f8:45:cc:
5a:35:c9:68:95:1e:1e:d6:16:9e:7a:2d:99:a9:29:81:52:86:
7a:33:57:4a:d7:f3:e9:b4:4a:52:26:82:40:e2:b8:d2:03:92:
ac:c4:6d:1b:9b:25:32:3a:b5:b0:14:c4:6e:c0:c6:7a:0a:16:
9c:65:66:fc:a6:5a:10:e3:a7:b0:8e:76:5b:2c:d4:66:28:ac:
96:24:22:27:08:b2:36:87:d0:0f:b0:b2:54:18:79:17:9e:c9:
50:91:65:66:18:77:fb:fa:d2:2b:53:a2:13:67:49:0d:d1:4d:
e1:00:e5:63:39:59:22:2f:d5:c6:9c:3b:bd:f8:e6:55:dd:61:
53:64:e7:39:68:69:c0:47:ca:72:3b:d5:e1:9c:7f:97:c5:6b:
a1:cb:fe:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:48 2024 by rpki-client on console-fra.rpki-client.org