Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/FT9WM3C_0a14nkMZa_-YKLgx2cE.roa
File: FT9WM3C_0a14nkMZa_-YKLgx2cE.roa (raw, json)
Hash identifier: ogAxgas2NtXWG/32SYhmXwaYKC1QLQU+TUKD2/7qIp8=
Subject key identifier: 15:3F:56:33:70:BF:D1:AD:78:9E:43:19:6B:FF:98:28:B8:31:D9:C1
Certificate issuer: /CN=dcfae7d4e69d42e4f4c95d99f482b9a944dbefc8
Certificate serial: 038CFD2F
Authority key identifier: DC:FA:E7:D4:E6:9D:42:E4:F4:C9:5D:99:F4:82:B9:A9:44:DB:EF:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Prn1OadQuT0yV2Z9IK5qUTb78g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/FT9WM3C_0a14nkMZa_-YKLgx2cE.roa
Signing time: Sat 01 Jan 2022 05:54:45 +0000
ROA not before: Sat 01 Jan 2022 05:54:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 91.236.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59571503 (0x38cfd2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcfae7d4e69d42e4f4c95d99f482b9a944dbefc8
Validity
Not Before: Jan 1 05:54:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=153f563370bfd1ad789e43196bff9828b831d9c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cd:36:4d:eb:34:47:64:ff:5b:3c:a3:71:e6:
10:af:1e:6d:62:87:f7:62:43:45:14:b4:7b:61:56:
2f:41:5b:51:85:04:dd:6f:29:8d:81:6a:84:e4:53:
c5:31:7e:da:9b:1c:c6:30:e1:86:ce:51:9b:fd:82:
8a:ff:63:06:5c:12:d5:6d:da:99:39:96:e8:45:7d:
50:07:e6:f2:d6:12:9e:7e:16:cb:35:e5:82:b2:a1:
c4:7b:0e:8d:1d:97:6c:85:54:dc:75:47:1b:ed:7c:
ca:65:8f:29:6c:39:ae:11:40:aa:f5:ed:87:73:08:
ce:0b:f9:dd:f6:66:1b:db:82:1a:2b:10:00:bf:04:
44:e1:9b:80:62:d2:64:71:64:de:3d:68:d2:74:e8:
fc:d5:06:c1:93:5d:d8:1c:70:26:61:67:6f:b0:60:
4e:48:e2:dd:c6:d2:4f:9e:c5:48:a0:4c:fd:8a:99:
9d:15:9f:54:58:71:14:4c:6e:b8:14:da:a7:8f:46:
04:92:10:eb:d4:84:d2:1b:31:f7:2d:c6:64:53:34:
e2:e9:e6:64:d0:5e:10:17:28:00:6d:25:01:86:e0:
0e:76:65:37:97:37:e4:7a:0b:d5:3b:f5:ad:f7:a1:
ad:aa:8b:84:e5:67:14:d5:af:df:9a:fa:a5:e8:e9:
01:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:3F:56:33:70:BF:D1:AD:78:9E:43:19:6B:FF:98:28:B8:31:D9:C1
X509v3 Authority Key Identifier:
keyid:DC:FA:E7:D4:E6:9D:42:E4:F4:C9:5D:99:F4:82:B9:A9:44:DB:EF:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Prn1OadQuT0yV2Z9IK5qUTb78g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/FT9WM3C_0a14nkMZa_-YKLgx2cE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/3Prn1OadQuT0yV2Z9IK5qUTb78g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.67.0/24
Signature Algorithm: sha256WithRSAEncryption
23:65:70:a2:83:3c:af:0b:a7:55:2f:d7:a1:be:dc:c2:f1:bb:
97:a0:c2:20:57:b4:b4:ab:63:a1:f2:fa:37:23:c2:b9:a6:e1:
7a:24:aa:f1:68:ae:96:34:aa:cb:7e:e5:29:23:4f:ad:46:09:
8c:cd:f7:3d:0b:2e:ef:17:83:a8:e3:f5:d5:7a:48:20:8e:c2:
c9:aa:93:71:3b:83:4b:99:c5:84:26:99:ec:9b:2a:f0:e7:dc:
b0:be:55:f2:ff:cf:e2:34:63:49:37:a8:da:50:d1:23:40:7f:
a4:f8:6c:f3:1f:ee:e8:58:a1:75:29:f4:a2:ce:b2:81:74:72:
67:b0:ca:92:49:c7:78:9f:28:6e:bf:ec:2c:f7:0b:f3:58:45:
14:23:13:bb:9c:73:8f:91:ca:fc:54:45:57:88:91:5f:1b:de:
0c:f6:bc:f1:21:13:e9:27:34:a7:42:86:07:bb:0b:7c:b1:42:
46:8c:ac:39:fc:b9:fd:c4:b7:f8:ed:59:d0:8b:b4:00:72:20:
ca:fa:c2:03:55:c9:ee:58:c7:38:b7:f0:e6:0a:cc:9b:c1:41:
15:fe:d9:d2:4a:24:c9:be:84:f4:36:92:a5:54:74:bb:07:a6:
24:41:07:89:94:f0:2a:77:e9:15:df:11:32:48:1e:4f:e0:49:
4b:c4:e8:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:43 2024 by rpki-client on console-ams.rpki-client.org