Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/ccaf34-3dee-4fe2-b2fc-8dd453ab423d/1/uUuNN0KR1Rgfj2sPXA6knKxrVcY.roa
File: uUuNN0KR1Rgfj2sPXA6knKxrVcY.roa (raw, json)
Hash identifier: 1KlyN6S9iqZdt+9t3LCAwj6ssyEgYRQNCu5LMHeID2s=
Subject key identifier: B9:4B:8D:37:42:91:D5:18:1F:8F:6B:0F:5C:0E:A4:9C:AC:6B:55:C6
Certificate issuer: /CN=b9a9088bb4201ce46d8eb83dc9f38c78b8f3be1b
Certificate serial: 20A1
Authority key identifier: B9:A9:08:8B:B4:20:1C:E4:6D:8E:B8:3D:C9:F3:8C:78:B8:F3:BE:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uakIi7QgHORtjrg9yfOMeLjzvhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/ccaf34-3dee-4fe2-b2fc-8dd453ab423d/1/uUuNN0KR1Rgfj2sPXA6knKxrVcY.roa
Signing time: Wed 30 Mar 2022 09:41:53 +0000
ROA not before: Wed 30 Mar 2022 09:41:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51450
IP address blocks: 91.217.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8353 (0x20a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9a9088bb4201ce46d8eb83dc9f38c78b8f3be1b
Validity
Not Before: Mar 30 09:41:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b94b8d374291d5181f8f6b0f5c0ea49cac6b55c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:15:9f:ec:52:64:73:73:e3:2b:f4:ca:08:56:
fc:31:9b:e4:b5:2b:27:d1:4d:4d:d8:a7:18:c8:ba:
6d:22:22:ec:b4:59:cf:88:8d:e7:d0:d5:85:f6:42:
de:06:36:52:23:67:40:39:93:cc:c4:20:b4:df:a4:
5e:ca:37:41:87:53:45:db:c9:96:f6:3a:15:a3:5f:
6c:e7:43:36:07:7d:06:89:d2:f3:02:18:e5:6b:02:
70:2b:23:8c:56:53:42:34:63:14:63:c8:52:85:09:
8f:4b:c1:7a:57:e3:f2:17:a1:24:c6:2d:01:eb:27:
93:9f:19:56:c0:48:16:50:c0:84:d3:81:40:2e:fb:
d3:53:4b:f6:75:34:f4:1e:30:ed:20:96:e9:c1:29:
73:cb:3a:80:05:51:90:11:2b:cd:26:0f:a2:51:94:
66:f4:3c:c8:95:97:f3:75:85:ae:e9:4a:35:e6:d5:
da:11:d4:f2:2f:20:e7:68:bc:37:6b:b6:17:93:fb:
aa:9f:9b:d2:35:1f:f2:42:9d:31:44:71:77:39:69:
c5:a9:a5:45:93:40:98:dc:d1:b6:ed:73:c8:55:d3:
f2:26:8e:f6:a7:c3:0a:49:ec:ff:01:32:88:bc:f5:
12:a7:f7:2d:0e:e5:42:c4:36:34:80:af:4f:18:58:
a9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4B:8D:37:42:91:D5:18:1F:8F:6B:0F:5C:0E:A4:9C:AC:6B:55:C6
X509v3 Authority Key Identifier:
keyid:B9:A9:08:8B:B4:20:1C:E4:6D:8E:B8:3D:C9:F3:8C:78:B8:F3:BE:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uakIi7QgHORtjrg9yfOMeLjzvhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ccaf34-3dee-4fe2-b2fc-8dd453ab423d/1/uUuNN0KR1Rgfj2sPXA6knKxrVcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/ccaf34-3dee-4fe2-b2fc-8dd453ab423d/1/uakIi7QgHORtjrg9yfOMeLjzvhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.170.0/24
Signature Algorithm: sha256WithRSAEncryption
40:d7:94:fa:8a:f6:fe:61:56:ce:72:e3:20:c9:d0:ee:c8:72:
33:9c:dd:28:9f:a6:1c:81:b6:c2:4a:db:a6:c7:ca:1e:dc:de:
ef:15:6d:d8:c6:a3:42:88:7f:3e:72:d7:fd:58:74:cb:85:be:
a8:68:34:85:fe:25:e8:e9:b2:91:6b:93:d2:c7:23:94:1a:4d:
c1:3e:3f:1f:20:e0:39:2d:12:fc:d9:5b:4c:00:6b:27:1b:b1:
ae:97:a9:c8:e8:ee:c4:79:b8:c9:f0:c8:c5:f8:8c:4c:32:ff:
35:08:0b:50:5c:d3:a6:72:e7:30:81:ce:89:03:03:c1:e6:fa:
9b:79:b4:63:85:86:d6:7b:0d:37:6d:ec:f3:af:c7:e9:7c:bf:
2a:2d:9d:34:dd:9e:31:70:2f:38:51:ff:8e:12:11:92:b8:d0:
d9:34:e9:3c:f7:6d:5a:2c:f9:58:9c:98:70:58:ee:3a:7c:c7:
3c:19:67:70:19:7b:d6:36:27:3c:f7:e1:81:e9:37:e8:f8:70:
42:db:6b:e4:c8:a5:2b:fb:bc:99:ac:fa:f5:21:c3:b2:60:56:
b4:eb:e9:5c:58:e5:3f:f9:4b:2e:25:a7:9b:85:c7:d2:e0:1e:
be:e7:bb:b8:c1:5c:e6:56:1b:c7:ae:48:61:a8:24:22:cd:11:
9d:76:11:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:57 2024 by rpki-client on console-fra.rpki-client.org