Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/da25c9-4fe1-45da-8e74-2bea34b8938b/1/2-hIp4bJ_tPvVctTl2GexK5qQ3o.roa
File: 2-hIp4bJ_tPvVctTl2GexK5qQ3o.roa (raw, json)
Hash identifier: JzMMGcG7WFdXGoFjM+GC7OzR4L/vadeidBZFv3kPE6E=
Subject key identifier: DB:E8:48:A7:86:C9:FE:D3:EF:55:CB:53:97:61:9E:C4:AE:6A:43:7A
Certificate issuer: /CN=b418677abf3aaee036cd4add77d66196fcde4c6d
Certificate serial: 75008E
Authority key identifier: B4:18:67:7A:BF:3A:AE:E0:36:CD:4A:DD:77:D6:61:96:FC:DE:4C:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBhner86ruA2zUrdd9ZhlvzeTG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/da25c9-4fe1-45da-8e74-2bea34b8938b/1/2-hIp4bJ_tPvVctTl2GexK5qQ3o.roa
Signing time: Sat 01 Jan 2022 02:56:13 +0000
ROA not before: Sat 01 Jan 2022 02:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8896
IP address blocks: 91.223.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7667854 (0x75008e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b418677abf3aaee036cd4add77d66196fcde4c6d
Validity
Not Before: Jan 1 02:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbe848a786c9fed3ef55cb5397619ec4ae6a437a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ea:9b:2a:54:a0:2f:4c:90:05:55:83:cf:ef:
57:9f:1c:9c:bd:7c:2d:b9:4e:97:d1:8e:d7:bc:d8:
71:45:1a:8d:4e:5e:33:a2:85:bf:38:98:3e:e5:af:
2e:85:46:1d:c9:bc:66:45:74:bc:48:c5:53:11:9a:
ef:b5:6c:54:79:a4:c4:a5:34:ae:dd:b6:4f:49:3e:
98:6d:0a:15:68:04:ec:ab:18:1c:8b:36:de:6d:a8:
50:16:38:3d:d8:c5:6f:25:d8:33:54:75:41:c5:b2:
32:68:e8:69:9b:c6:23:ad:a0:92:dd:6e:7a:bf:30:
43:95:78:75:94:5f:49:d8:a1:6a:37:fb:20:ac:43:
b3:3a:75:3e:a8:45:ab:23:c8:7a:18:3b:98:dd:d2:
60:ac:4e:08:f3:b0:2a:90:33:98:0f:69:6d:18:6c:
c5:d3:84:35:18:92:c8:c9:5c:ac:2b:63:12:e1:ef:
d7:da:1c:22:22:12:37:78:1d:05:62:bd:33:de:44:
98:2a:98:6a:42:98:e0:da:45:68:ac:1c:10:ca:60:
3f:f9:19:50:b8:fb:c5:55:0e:1d:fe:c6:aa:85:4a:
c5:3f:ad:80:33:39:a2:99:7d:55:95:f2:92:38:ca:
88:83:dd:c8:d8:56:23:38:c4:9d:50:e3:ef:ed:f5:
df:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:E8:48:A7:86:C9:FE:D3:EF:55:CB:53:97:61:9E:C4:AE:6A:43:7A
X509v3 Authority Key Identifier:
keyid:B4:18:67:7A:BF:3A:AE:E0:36:CD:4A:DD:77:D6:61:96:FC:DE:4C:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBhner86ruA2zUrdd9ZhlvzeTG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/da25c9-4fe1-45da-8e74-2bea34b8938b/1/2-hIp4bJ_tPvVctTl2GexK5qQ3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/da25c9-4fe1-45da-8e74-2bea34b8938b/1/tBhner86ruA2zUrdd9ZhlvzeTG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.85.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:fb:e6:46:f4:3e:08:38:0a:be:f6:e5:0e:bf:0b:fd:78:dd:
1a:9f:d6:61:03:98:b2:dc:05:f7:9b:6e:29:b2:65:7a:cf:cf:
3d:92:19:04:3b:38:20:41:54:a7:5f:c6:2d:ce:8e:79:56:dd:
4b:2b:4c:ff:9b:4c:19:a5:e9:17:61:32:ce:65:17:be:35:a8:
83:7d:58:39:af:dc:01:00:0d:22:6b:26:55:fb:a5:af:5b:50:
05:6f:80:c6:d8:1e:a3:fb:0d:5f:f4:71:c6:a8:71:a1:bc:43:
b9:95:89:90:4b:f4:e4:0e:04:e4:b6:7f:d9:95:57:50:2e:ac:
15:df:f5:b7:b4:af:67:85:47:83:cf:23:8b:45:73:bf:af:59:
32:c2:b0:18:6f:85:5c:41:e1:c3:52:e7:6a:12:4a:17:14:56:
ca:ea:a9:f8:c5:5e:4c:8b:3a:bc:47:3c:90:7e:67:ad:ca:f0:
29:93:f6:ee:01:c4:c4:b7:ee:f9:4c:fb:41:2d:66:70:88:cc:
81:5b:6a:5a:08:29:e8:1a:62:be:c7:99:2b:2f:b0:03:d5:73:
db:51:be:78:a0:34:b1:63:68:94:85:2c:cf:3d:37:19:b1:15:
45:f9:2d:e0:68:17:18:9d:3e:ea:dc:be:fe:e7:63:4a:80:76:
50:0c:fd:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:23 2024 by rpki-client on console-fra.rpki-client.org