Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/4d4b24-9b58-4e3c-a515-e325621e86dd/1/5K9hUaM2DzBcKYJwgaljE0Hd9b4.roa
File: 5K9hUaM2DzBcKYJwgaljE0Hd9b4.roa (raw, json)
Hash identifier: /Fa4IXMUGAQiAG17ie3qyOOpcD7dM8hG2NTw90xWMtM=
Subject key identifier: E4:AF:61:51:A3:36:0F:30:5C:29:82:70:81:A9:63:13:41:DD:F5:BE
Certificate issuer: /CN=27f48c85a42b00b39d1803e63c9fd5adebf7f95e
Certificate serial: 038F167F
Authority key identifier: 27:F4:8C:85:A4:2B:00:B3:9D:18:03:E6:3C:9F:D5:AD:EB:F7:F9:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_SMhaQrALOdGAPmPJ_Vrev3-V4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/4d4b24-9b58-4e3c-a515-e325621e86dd/1/5K9hUaM2DzBcKYJwgaljE0Hd9b4.roa
Signing time: Sat 01 Jan 2022 05:00:19 +0000
ROA not before: Sat 01 Jan 2022 05:00:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44005
IP address blocks: 91.198.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59709055 (0x38f167f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f48c85a42b00b39d1803e63c9fd5adebf7f95e
Validity
Not Before: Jan 1 05:00:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4af6151a3360f305c29827081a9631341ddf5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7e:64:a1:f7:ae:44:5b:2a:30:88:16:d1:e2:
67:12:c4:59:30:f2:eb:41:88:81:0e:00:89:6e:67:
9f:32:52:e6:ed:33:b3:34:7f:e0:b9:b0:75:f2:46:
28:f4:ab:fe:a6:9e:fa:30:d0:f0:9e:1a:a9:a6:65:
4f:1a:f2:58:fb:c5:46:6a:28:39:7d:43:4f:42:8c:
90:ee:00:97:33:f0:02:51:0f:23:ba:e7:15:c4:54:
f9:a1:fa:d2:68:3b:ea:65:a1:7a:07:5e:e1:64:07:
c4:8c:49:60:95:68:d2:8d:63:66:09:ca:0f:d1:c2:
1a:3d:c1:0d:6c:c0:56:bf:55:f7:88:01:12:9b:ce:
9b:13:c6:78:13:dd:3f:df:0d:fb:fd:57:4f:07:c1:
6e:98:5a:48:74:3f:48:4b:7a:45:4f:eb:5c:98:74:
d3:8f:4c:3d:a1:a8:ab:2d:92:b2:da:31:ce:7a:bd:
17:ef:7f:00:50:fb:a7:46:ec:80:b2:ae:bc:bf:eb:
de:5d:6d:3a:31:41:4f:72:c1:0e:8c:2f:cc:5b:6f:
fd:e5:af:cc:5a:f2:18:a3:b2:19:9e:c8:f2:db:d3:
94:e8:dd:2f:61:ad:19:5a:55:9e:e8:06:f6:39:1f:
3d:0a:65:e4:6c:39:a4:fb:9d:9a:88:42:e4:5d:00:
7f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:AF:61:51:A3:36:0F:30:5C:29:82:70:81:A9:63:13:41:DD:F5:BE
X509v3 Authority Key Identifier:
keyid:27:F4:8C:85:A4:2B:00:B3:9D:18:03:E6:3C:9F:D5:AD:EB:F7:F9:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_SMhaQrALOdGAPmPJ_Vrev3-V4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/4d4b24-9b58-4e3c-a515-e325621e86dd/1/5K9hUaM2DzBcKYJwgaljE0Hd9b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/4d4b24-9b58-4e3c-a515-e325621e86dd/1/J_SMhaQrALOdGAPmPJ_Vrev3-V4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.235.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:83:01:53:b2:e2:ce:cf:7a:32:f3:cf:39:10:bd:d2:a3:f2:
40:a4:5d:1d:ec:0e:9c:c3:34:c0:31:84:e8:94:87:80:1c:dd:
ff:ee:a5:12:27:32:99:3e:52:06:0c:a5:1c:a9:94:b0:f5:48:
f4:77:4d:ac:c9:71:6b:57:a1:ca:e1:23:42:3f:5e:95:de:a1:
7c:29:6c:c4:97:48:0e:37:c1:5c:73:8c:cc:d9:b3:ec:8f:11:
fe:b1:13:9b:bb:a7:10:5d:31:d2:b2:0c:9f:e2:1e:47:7c:b4:
2b:49:0d:f1:29:d9:7e:26:19:30:7a:33:ee:d4:ec:88:fe:77:
02:d5:7d:81:3a:e2:f8:e5:1e:d1:6a:e9:d3:21:c7:2a:81:7f:
36:a6:4b:f4:ea:1a:c6:b8:11:73:8f:e3:da:63:53:ff:69:f2:
96:07:3d:75:71:fd:23:89:b1:ba:2d:7c:da:be:8b:0a:c3:a9:
94:7c:98:e1:10:f7:78:f6:84:4b:b0:e1:fa:f8:44:fd:21:fd:
e4:41:d5:82:26:32:40:e0:61:11:72:05:37:59:c5:f5:df:35:
0f:00:4a:f0:10:a6:b1:47:33:4b:79:e2:2c:e2:13:a6:9c:90:
5b:5e:19:db:86:09:b2:f1:bc:ec:25:3b:c8:4a:71:0c:25:96:
9f:52:c6:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:34 2024 by rpki-client on console-ams.rpki-client.org