Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/5ff89a-2f15-4090-bcc2-807b7c2d6389/1/3ii_C-5KseeZ-G_PadtjcXoN7v8.roa
File: 3ii_C-5KseeZ-G_PadtjcXoN7v8.roa (raw, json)
Hash identifier: 2QbhT/Ua25xcj+MUWb5Hd6qmmU6kt2wFNVnczRHvRcY=
Subject key identifier: DE:28:BF:0B:EE:4A:B1:E7:99:F8:6F:CF:69:DB:63:71:7A:0D:EE:FF
Certificate issuer: /CN=1bb80b4a3327c583aecdb03cef3f64f33bd59b08
Certificate serial: 01837AEFF02415E3D1D21B094A73C4E596C5
Authority key identifier: 1B:B8:0B:4A:33:27:C5:83:AE:CD:B0:3C:EF:3F:64:F3:3B:D5:9B:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G7gLSjMnxYOuzbA87z9k8zvVmwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/5ff89a-2f15-4090-bcc2-807b7c2d6389/1/3ii_C-5KseeZ-G_PadtjcXoN7v8.roa
Signing time: Mon 26 Sep 2022 17:54:48 +0000
ROA not before: Mon 26 Sep 2022 17:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56967
IP address blocks: 91.212.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:ef:f0:24:15:e3:d1:d2:1b:09:4a:73:c4:e5:96:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bb80b4a3327c583aecdb03cef3f64f33bd59b08
Validity
Not Before: Sep 26 17:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de28bf0bee4ab1e799f86fcf69db63717a0deeff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c9:86:31:a9:e8:a5:e4:88:ee:a0:a3:f6:24:
be:e0:f1:29:1e:ca:03:13:e2:0b:55:67:5c:0d:39:
67:85:a6:9a:70:01:75:fc:7f:98:51:83:f4:af:b2:
08:a0:92:f2:b0:1e:7e:40:50:c9:19:5d:9f:ae:4b:
d6:15:2b:d4:40:ef:37:04:41:0e:92:20:bf:89:1c:
07:1c:14:3b:24:81:08:a6:0d:f4:1e:5f:28:9f:5c:
e6:0c:78:90:65:6d:e0:0b:91:c5:7f:9a:4d:23:91:
12:05:0c:75:d6:4c:fa:60:15:1c:31:23:51:7b:fd:
c1:ed:cb:49:82:b9:33:32:22:aa:3d:a1:2d:ee:8b:
a3:2d:da:c7:ee:a5:04:04:6e:81:e0:6e:f1:e0:4f:
3f:e7:9f:83:47:e1:a7:00:c0:56:0c:8e:0c:5e:e4:
fe:e4:29:c4:e0:ee:72:8b:30:7b:b5:da:b3:ae:99:
b3:94:23:7c:be:e5:96:14:c9:c9:fd:1a:2f:f8:f6:
be:58:86:66:58:a6:c4:00:2f:e1:23:f7:d4:ae:35:
39:20:5f:2d:a5:9d:5e:c8:f2:15:60:b2:17:e1:d9:
3c:74:a8:44:56:11:10:4b:d0:75:9c:5a:25:e1:5f:
40:75:74:06:e4:8f:ba:4d:79:a8:3a:be:06:cf:dd:
da:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:28:BF:0B:EE:4A:B1:E7:99:F8:6F:CF:69:DB:63:71:7A:0D:EE:FF
X509v3 Authority Key Identifier:
keyid:1B:B8:0B:4A:33:27:C5:83:AE:CD:B0:3C:EF:3F:64:F3:3B:D5:9B:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7gLSjMnxYOuzbA87z9k8zvVmwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5ff89a-2f15-4090-bcc2-807b7c2d6389/1/3ii_C-5KseeZ-G_PadtjcXoN7v8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5ff89a-2f15-4090-bcc2-807b7c2d6389/1/G7gLSjMnxYOuzbA87z9k8zvVmwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.111.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:36:d0:f9:5e:94:2d:c9:c0:e5:44:79:c8:cf:d0:a9:7e:71:
47:bc:98:2d:54:c8:41:88:c8:5f:ee:e0:4b:71:7a:ed:87:73:
6e:74:9d:1a:08:54:5a:d4:2b:09:a8:d4:d3:86:ee:02:cc:39:
91:65:1e:62:58:a0:e8:41:8f:cc:d1:b9:67:c6:40:dd:1c:80:
a5:5e:39:bc:1c:d4:84:65:71:3c:a4:69:fe:0b:b9:43:8d:60:
8b:4b:39:68:ec:b3:c9:4b:68:7e:6f:c6:c1:e3:a8:49:92:27:
83:3e:8d:5b:3f:08:1a:ee:64:0a:e2:ea:5b:b0:36:a2:16:67:
3c:97:cc:75:8f:a2:8a:ba:0e:16:c5:c7:3a:35:ee:a9:7d:05:
63:37:73:81:1e:5c:08:e0:ef:09:29:45:f9:a9:9e:d4:c6:f0:
e4:50:52:c0:de:e5:84:cb:e3:78:1b:6c:94:b3:5c:d7:01:38:
d1:58:f2:b7:c5:b0:fa:46:59:0e:38:16:30:a0:66:6c:58:e3:
17:e2:0c:9e:60:22:66:2a:cc:a0:f5:b3:1d:fd:3c:fe:e4:f2:
79:e9:c9:7a:05:60:57:d5:6c:86:a1:fb:f5:cd:a4:65:8b:0b:
8a:37:01:36:6f:3b:5e:35:0b:c3:d8:6e:d1:c9:48:13:ac:f5:
a5:7b:0c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:40 2024 by rpki-client on console-ams.rpki-client.org