Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/6a4e57-fbe3-4bc2-b8a5-dc8fcc6bdaaa/1/Qdh9yHd_WLemBbvEpqFOnuF6CJ4.roa
File: Qdh9yHd_WLemBbvEpqFOnuF6CJ4.roa (raw, json)
Hash identifier: llIFVRlr6ltigO/Up+KtuoaItVCX/Mf4JvrV4G4VyFE=
Subject key identifier: 41:D8:7D:C8:77:7F:58:B7:A6:05:BB:C4:A6:A1:4E:9E:E1:7A:08:9E
Certificate issuer: /CN=a40c1ad547b93ebf655c580438dfa5ae427c6511
Certificate serial: 022760
Authority key identifier: A4:0C:1A:D5:47:B9:3E:BF:65:5C:58:04:38:DF:A5:AE:42:7C:65:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAwa1Ue5Pr9lXFgEON-lrkJ8ZRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/6a4e57-fbe3-4bc2-b8a5-dc8fcc6bdaaa/1/Qdh9yHd_WLemBbvEpqFOnuF6CJ4.roa
Signing time: Fri 17 Jun 2022 13:34:47 +0000
ROA not before: Fri 17 Jun 2022 13:34:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43178
IP address blocks: 91.194.126.0/23 maxlen: 23
91.194.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141152 (0x22760)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a40c1ad547b93ebf655c580438dfa5ae427c6511
Validity
Not Before: Jun 17 13:34:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41d87dc8777f58b7a605bbc4a6a14e9ee17a089e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:06:e2:91:b8:78:14:3a:f7:96:f4:39:0b:7a:
0a:5c:ed:04:79:84:fc:c7:90:42:99:be:c1:c6:17:
fe:a7:ef:00:e0:9f:c1:cb:95:41:35:01:96:f7:4c:
88:30:34:9e:fd:1c:ef:6e:c1:ab:65:b2:98:fe:37:
82:c2:0f:93:51:d3:40:cd:3d:45:ff:61:ae:64:00:
08:45:02:a3:15:36:fe:d9:4c:69:6c:3d:0d:a0:ba:
8d:70:10:15:9f:eb:b9:25:45:e0:ae:cf:a3:31:9b:
85:6d:c6:f8:99:e3:ad:b8:e6:4e:6d:10:7a:fe:a8:
b7:29:a1:12:da:8f:22:0d:7a:bc:49:9c:5e:5d:5b:
b0:e4:99:0e:5d:84:8f:6e:3a:8e:cf:ef:df:af:0d:
8e:a0:9a:fa:db:ea:61:ae:a0:cb:d9:00:ae:ee:d1:
ab:12:2a:c7:b0:0f:61:9d:85:5a:a1:09:ff:99:47:
c2:cf:93:6f:7d:08:86:07:ad:95:e1:62:c6:ef:f8:
67:b3:d0:8c:c5:d4:af:55:b5:3e:bc:02:1c:cd:76:
e1:ab:b1:26:64:54:17:e2:ec:45:cf:5d:eb:b6:74:
5e:7f:1d:a1:67:f0:5b:65:50:97:f5:59:3c:d9:04:
4d:84:eb:46:20:0a:03:20:2d:35:a5:e4:76:79:87:
54:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D8:7D:C8:77:7F:58:B7:A6:05:BB:C4:A6:A1:4E:9E:E1:7A:08:9E
X509v3 Authority Key Identifier:
keyid:A4:0C:1A:D5:47:B9:3E:BF:65:5C:58:04:38:DF:A5:AE:42:7C:65:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAwa1Ue5Pr9lXFgEON-lrkJ8ZRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/6a4e57-fbe3-4bc2-b8a5-dc8fcc6bdaaa/1/Qdh9yHd_WLemBbvEpqFOnuF6CJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/6a4e57-fbe3-4bc2-b8a5-dc8fcc6bdaaa/1/pAwa1Ue5Pr9lXFgEON-lrkJ8ZRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.126.0/23
Signature Algorithm: sha256WithRSAEncryption
01:cc:cc:39:97:13:a1:0a:c7:33:0f:c6:7b:08:8c:57:5b:39:
76:fb:7b:02:a5:eb:37:7d:29:06:e8:3d:2b:32:b4:19:62:64:
0b:7d:d9:19:26:54:6a:fc:9d:48:e1:15:8d:d8:71:ea:72:0d:
d8:c8:19:c9:ad:59:ca:e7:0c:30:65:bd:b6:59:e9:db:63:bb:
93:59:6a:0f:39:fb:87:7e:63:56:fe:09:58:e6:7a:9b:24:87:
2a:df:a1:a1:6e:8c:79:70:04:62:c0:94:9d:d6:02:3b:02:75:
c4:29:4d:ce:21:9c:f8:09:d0:a2:d0:0a:8c:95:8e:fd:a6:08:
c4:9d:5f:0b:71:f4:24:0e:31:c7:94:62:ec:3c:85:3e:3c:cf:
0b:e3:a0:5e:12:51:bf:ad:8e:3a:b4:28:b4:b7:e7:74:25:4c:
a3:27:9a:20:a2:fd:f4:48:ea:6b:50:d4:99:69:5e:d4:b6:42:
13:ec:c6:f2:30:6a:b1:b3:92:54:60:a5:76:dc:06:b0:c9:6c:
54:cb:3d:0e:10:dc:da:0e:f7:42:26:6f:9d:37:c7:08:43:ef:
37:9e:24:c8:b1:be:d6:c2:d1:ad:ff:7a:2f:6f:45:15:e2:92:
8b:9e:bd:a6:9d:b5:0b:3a:0a:88:14:34:3f:f8:3a:e6:e8:f1:
7c:41:47:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:59 2024 by rpki-client on console-fra.rpki-client.org