Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/JKevH9vmuP22RXxlUPkDH3EuEDo.roa
File: JKevH9vmuP22RXxlUPkDH3EuEDo.roa (raw, json)
Hash identifier: sJejXG9ZDs1KxflBkPWuQSyRoc+SzRFTUMnQbEe/6bs=
Subject key identifier: 24:A7:AF:1F:DB:E6:B8:FD:B6:45:7C:65:50:F9:03:1F:71:2E:10:3A
Certificate issuer: /CN=f341cfec38131f83ae3df6998fa02837585c91dd
Certificate serial: 0EDC7428
Authority key identifier: F3:41:CF:EC:38:13:1F:83:AE:3D:F6:99:8F:A0:28:37:58:5C:91:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/80HP7DgTH4OuPfaZj6AoN1hckd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/JKevH9vmuP22RXxlUPkDH3EuEDo.roa
Signing time: Sat 01 Jan 2022 02:55:40 +0000
ROA not before: Sat 01 Jan 2022 02:55:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196610
IP address blocks: 91.214.253.0/24 maxlen: 24
91.214.253.0/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 249328680 (0xedc7428)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f341cfec38131f83ae3df6998fa02837585c91dd
Validity
Not Before: Jan 1 02:55:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=24a7af1fdbe6b8fdb6457c6550f9031f712e103a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:d2:01:d2:38:a7:a2:49:04:3a:9c:27:03:95:
b9:9e:7c:2a:9a:6a:dd:26:32:d9:df:f3:6b:43:f3:
62:18:06:f8:e1:76:6f:3c:8b:a2:fa:34:cb:a6:24:
17:bd:be:87:b6:ed:45:d3:b6:9a:f4:ec:50:b6:5b:
ff:8a:8e:6d:25:9d:55:bb:77:6c:05:d8:77:01:7c:
de:7c:d0:fb:21:83:80:b5:91:0f:4c:98:9d:30:f1:
98:87:08:4e:dc:1c:36:89:aa:e5:2a:fa:c5:6b:24:
b8:a0:d3:67:2f:8e:94:99:8d:d8:cc:08:43:4e:78:
9a:22:55:af:2a:a3:bd:63:aa:e7:1c:dc:c8:49:e4:
fe:1b:e2:b0:be:ba:35:7c:6d:d5:fd:de:83:6c:2c:
43:e7:20:c6:23:45:b8:4f:93:3f:9a:d3:c4:7a:aa:
7d:67:67:1e:8d:66:4d:40:b3:02:3f:43:03:e5:e8:
bf:56:d3:4d:8e:6a:0a:0b:be:3b:54:d6:e8:58:10:
33:35:91:8e:43:22:5b:d9:25:e2:08:07:75:dd:f9:
bd:43:75:7f:26:11:05:92:16:b4:10:cf:a4:8b:45:
91:5c:1d:d7:9f:83:46:54:c0:be:17:fc:17:72:e4:
d0:73:47:7c:f6:00:87:36:4f:e6:fe:26:47:15:3b:
ff:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A7:AF:1F:DB:E6:B8:FD:B6:45:7C:65:50:F9:03:1F:71:2E:10:3A
X509v3 Authority Key Identifier:
keyid:F3:41:CF:EC:38:13:1F:83:AE:3D:F6:99:8F:A0:28:37:58:5C:91:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/80HP7DgTH4OuPfaZj6AoN1hckd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/JKevH9vmuP22RXxlUPkDH3EuEDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/80HP7DgTH4OuPfaZj6AoN1hckd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.253.0/24
Signature Algorithm: sha256WithRSAEncryption
38:f5:f5:68:1f:de:a1:d6:d5:d2:d6:e1:cd:d6:96:f4:e1:6f:
aa:cc:33:93:35:4f:a3:80:a3:2f:47:73:55:4d:fb:47:dd:11:
f4:07:26:2d:89:e5:9b:e9:c7:8c:eb:3d:7a:fa:37:3a:41:c3:
cc:63:df:2e:ac:c8:ae:ca:6d:73:6b:65:96:5f:24:ee:3d:40:
6d:b5:ce:b8:ca:0c:f9:eb:28:82:c7:7f:62:5d:83:ff:c3:6f:
a9:d1:09:19:97:92:5a:b2:13:ef:c6:26:0c:02:09:8e:1a:13:
eb:ca:57:86:b0:3c:9c:8e:c0:66:8f:ac:b1:9a:11:cf:ed:f6:
45:c8:d5:4f:10:7c:52:91:83:49:3a:25:89:f5:75:6c:54:39:
78:6e:33:cb:b8:83:a7:ad:35:cf:ed:f0:90:64:e9:c0:b4:f8:
81:87:a5:42:55:cc:0d:75:72:cb:9f:ca:3b:67:23:09:d6:be:
72:68:c3:46:d8:d0:96:26:1d:4d:76:32:42:5a:f8:f5:3b:39:
d3:57:f2:03:f3:fe:05:40:f8:2f:17:86:c8:05:4e:2a:b4:06:
03:a5:eb:7c:32:0f:ca:96:b3:8f:fb:60:59:5e:44:4e:6c:cc:
2c:81:fc:ec:4c:a0:f8:57:e4:e0:ea:9f:e5:c4:2d:b7:11:f9:
63:3f:50:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:49 2024 by rpki-client on console-fra.rpki-client.org