Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/zSejsOdbfbptKRbkKBhOSjopGPU.roa
File: zSejsOdbfbptKRbkKBhOSjopGPU.roa (raw, json)
Hash identifier: ZEJFeyOMvQaVRWUM1JAPFFlkEib5WH+UvlZPYFzDMgs=
Subject key identifier: CD:27:A3:B0:E7:5B:7D:BA:6D:29:16:E4:28:18:4E:4A:3A:29:18:F5
Certificate issuer: /CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Certificate serial: 039DBCDC
Authority key identifier: 8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/zSejsOdbfbptKRbkKBhOSjopGPU.roa
Signing time: Sat 01 Jan 2022 07:00:12 +0000
ROA not before: Sat 01 Jan 2022 07:00:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57828
IP address blocks: 91.235.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60669148 (0x39dbcdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ade0787cf9881a1fc59556ca1542d7779f28765
Validity
Not Before: Jan 1 07:00:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd27a3b0e75b7dba6d2916e428184e4a3a2918f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:78:f8:e4:1c:76:67:35:4d:a5:e8:f3:12:99:
74:22:af:12:03:89:1d:6d:51:a9:da:08:7b:c2:84:
06:4d:af:31:19:5b:3b:17:6c:b9:93:73:76:34:1c:
c0:f3:2c:01:8a:10:17:72:99:fc:a4:73:7a:dc:c7:
fd:ad:66:68:86:1b:bf:de:0c:f8:44:23:8b:42:86:
3b:42:73:fc:c7:56:80:2a:31:45:5d:6a:60:6f:3d:
a2:b7:ff:48:74:5b:c4:18:0e:a2:4b:07:92:b7:4f:
1c:d9:03:62:4d:38:5c:c7:0d:69:da:d3:72:3d:40:
0f:d3:66:df:3e:90:af:ab:5e:f2:47:f8:b6:48:d0:
4c:31:85:5f:01:3f:18:d2:ae:71:c3:62:df:26:18:
34:ae:a2:16:7a:f7:6b:6b:e8:03:fc:7b:8a:ac:5e:
5b:37:fe:2d:9e:be:a5:3d:fb:ec:c8:fb:f2:c3:78:
fd:91:60:ac:3a:ef:ff:28:c0:b8:89:38:2f:3d:7e:
2d:45:78:74:9c:61:1c:81:59:f8:ba:35:1d:8d:75:
da:80:75:ed:93:8c:86:9a:6b:7d:d3:32:98:3d:c7:
cc:b9:79:87:4b:e0:d4:d8:4c:34:81:22:da:96:ad:
ac:96:5e:a9:c2:98:b6:d2:15:9d:d9:89:f7:4e:a7:
24:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:27:A3:B0:E7:5B:7D:BA:6D:29:16:E4:28:18:4E:4A:3A:29:18:F5
X509v3 Authority Key Identifier:
keyid:8A:DE:07:87:CF:98:81:A1:FC:59:55:6C:A1:54:2D:77:79:F2:87:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/it4Hh8-YgaH8WVVsoVQtd3nyh2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/zSejsOdbfbptKRbkKBhOSjopGPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/bc1915-dbfe-4481-b31b-5697c7b1c5c1/1/it4Hh8-YgaH8WVVsoVQtd3nyh2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.203.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:b1:83:a5:04:09:b5:1b:f4:a7:1f:23:d1:b6:2f:d7:4f:10:
cc:dd:39:b0:6f:08:e3:64:6a:23:7f:ae:d0:ad:ba:7b:48:69:
51:02:93:80:cc:61:13:43:e8:d3:0f:ff:05:c6:37:c6:0c:d4:
15:30:fa:5c:e9:d3:99:0d:33:ac:52:ef:9e:f9:97:69:d9:1f:
0a:6a:87:b1:51:64:6e:8d:fe:3d:56:0f:5e:a0:a4:90:ad:72:
4f:52:c7:6a:41:73:92:82:e3:ad:8a:0e:bd:5c:56:62:60:c1:
ea:60:24:f7:2d:ec:5e:dd:68:72:56:dc:57:93:fe:c3:8e:8d:
e2:6d:5e:ea:56:ae:ee:0d:d8:21:7a:2b:85:e4:8b:fe:12:ce:
8e:ba:44:77:4c:4e:a5:59:cb:84:8f:00:02:7b:e5:e3:86:a6:
91:45:75:f5:b8:a9:e6:ad:6d:34:46:43:44:c0:89:61:6e:16:
b8:d4:9c:41:64:0d:a4:6b:e1:94:ee:b2:7a:2c:2a:88:8e:d6:
c2:43:3e:bd:22:2a:5d:07:4e:36:9f:9a:e9:26:b2:77:fa:11:
54:1e:fa:26:c7:c3:76:d4:53:93:e7:a5:e9:22:04:23:06:c2:
b1:d8:80:8d:14:39:9a:57:b3:25:92:c3:40:75:41:b1:7e:23:
0f:ef:cb:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:26 2024 by rpki-client on console-fra.rpki-client.org