Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/91xa-J99KG72f0sTWoJTr1AYJck.roa
File: 91xa-J99KG72f0sTWoJTr1AYJck.roa (raw, json)
Hash identifier: 5u54WgB4rjQRe1ajoBERR36XJN74aHi56RgBOp80/J8=
Subject key identifier: F7:5C:5A:F8:9F:7D:28:6E:F6:7F:4B:13:5A:82:53:AF:50:18:25:C9
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 03951CAA
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/91xa-J99KG72f0sTWoJTr1AYJck.roa
Signing time: Sat 01 Jan 2022 07:57:28 +0000
ROA not before: Sat 01 Jan 2022 07:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212373
IP address blocks: 193.163.168.0/24 maxlen: 24
2a10:8ac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60103850 (0x3951caa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Jan 1 07:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f75c5af89f7d286ef67f4b135a8253af501825c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e7:1a:de:3b:e7:21:97:1c:95:b3:a5:ff:53:
1f:57:08:29:d2:de:e3:b3:53:53:32:3d:24:86:5e:
19:da:41:f8:37:b7:3c:5f:a4:62:e8:a5:42:36:75:
f7:e7:ca:09:63:f5:1d:14:33:20:36:97:a9:35:06:
8a:11:38:22:af:de:1c:ad:41:f8:38:e7:9e:ea:94:
c9:89:08:d9:41:94:74:44:0a:02:d5:9a:05:ac:72:
a7:b3:f3:e8:9e:33:1e:86:44:75:95:b3:1b:03:20:
a8:a2:ca:d4:23:fc:d0:a6:bd:cd:95:70:17:2f:36:
e2:7c:34:1b:1b:39:3a:d0:1b:67:9f:10:62:bf:88:
52:49:2c:6d:a2:2c:66:0d:1b:7f:11:79:7b:80:1e:
2b:41:5f:e0:2a:65:01:34:53:f3:7c:a1:b3:7f:f4:
91:03:4d:78:eb:74:87:fa:85:5c:b8:2b:61:b3:8d:
22:c9:01:05:ce:ad:37:3d:3d:b9:96:5d:cb:ce:6a:
95:b6:de:6c:fb:0b:51:1c:24:2e:5f:9c:17:26:8b:
38:70:41:4a:c6:1e:ba:d7:39:5a:88:4a:0b:27:9d:
3c:c1:3c:f4:44:5c:98:97:75:15:f7:ab:45:4a:7f:
02:6e:de:52:e9:9f:22:69:83:6b:f0:41:92:ea:fe:
a7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5C:5A:F8:9F:7D:28:6E:F6:7F:4B:13:5A:82:53:AF:50:18:25:C9
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/91xa-J99KG72f0sTWoJTr1AYJck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.168.0/24
IPv6:
2a10:8ac0::/29
Signature Algorithm: sha256WithRSAEncryption
6f:50:fb:08:4e:de:41:63:7a:ad:2e:7d:29:4b:3c:7b:73:51:
d0:82:f9:dc:ea:b6:f4:94:30:20:e0:7e:63:0d:f2:a1:de:c4:
79:6c:ab:9a:fa:ee:8f:5f:08:44:a9:9e:02:12:40:98:8d:ea:
3d:44:64:13:fb:46:c8:40:bb:ea:78:6f:50:fc:b4:ff:33:7d:
2a:cf:0f:be:74:6d:f2:97:00:11:c9:ad:39:7e:95:5f:4e:f9:
21:2c:02:7b:e6:e8:5e:1c:1e:28:cd:6a:d8:73:3b:51:dd:41:
be:35:f1:c8:b2:33:a7:d6:d3:a1:94:65:6b:c3:a9:8a:22:2a:
21:5a:b9:b3:b5:ad:02:6f:62:c1:bc:be:a2:d8:1e:53:83:b1:
c5:6a:1a:8d:bd:e9:69:91:59:89:8a:4c:2b:4b:c6:9d:36:e5:
5c:a7:f2:a0:c0:a0:49:f7:41:e3:a8:27:64:cf:81:8c:88:eb:
56:3f:6e:e4:42:f2:24:c8:93:07:1f:1d:80:71:1a:c3:57:2f:
34:7d:68:c6:ff:6f:12:63:ab:ad:8c:ea:72:fd:a3:d3:28:f7:
1c:58:cd:97:fc:7b:fd:6d:96:4c:11:7b:d6:0e:b7:a7:d2:29:
a4:d5:8f:f8:c4:6b:b6:79:9f:29:f7:52:1a:66:7d:14:e9:64:
8f:4b:52:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:34 2024 by rpki-client on console-fra.rpki-client.org