Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/Tndkjf4w9bSRwyz4SC2Lbi-SyXI.roa
File: Tndkjf4w9bSRwyz4SC2Lbi-SyXI.roa (raw, json)
Hash identifier: s+STHkNdwW7uxM5woL3RzW6hiHaP+l+vtcf/cT6t73M=
Subject key identifier: 4E:77:64:8D:FE:30:F5:B4:91:C3:2C:F8:48:2D:8B:6E:2F:92:C9:72
Certificate issuer: /CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Certificate serial: 015CA9
Authority key identifier: CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/Tndkjf4w9bSRwyz4SC2Lbi-SyXI.roa
Signing time: Thu 09 Jun 2022 14:13:02 +0000
ROA not before: Thu 09 Jun 2022 14:13:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58034
IP address blocks: 91.237.130.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89257 (0x15ca9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd911702f493d6ede1b6e872bcacdcb854282bad
Validity
Not Before: Jun 9 14:13:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e77648dfe30f5b491c32cf8482d8b6e2f92c972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:11:a2:af:7d:c4:55:cb:19:a4:23:a2:a6:93:
13:bb:0b:39:fc:a5:6c:c9:93:03:d5:38:73:47:fe:
e8:b9:4b:2c:b3:d7:85:b7:e9:1e:23:22:b4:ab:65:
78:79:f1:3b:ed:74:4e:83:3f:fe:ed:6a:c6:2f:0a:
ae:f5:af:c2:ed:31:4f:6f:d6:58:d3:8f:42:b9:58:
6b:12:f2:f4:ac:cf:5b:b3:13:df:76:1a:98:48:7f:
a0:43:88:48:9d:f1:83:f6:4a:5c:b5:15:74:01:2f:
1c:fa:97:b4:9d:31:8a:3d:8e:e8:5a:d8:bd:67:5a:
d2:c8:d2:4a:4d:1c:27:d5:7e:7f:04:55:bb:86:12:
24:98:ea:7a:0c:41:b7:38:12:4b:b6:e0:34:e4:3b:
71:04:70:c0:5d:9c:e8:b6:b2:36:fa:82:48:18:94:
b5:d4:1b:61:45:df:b5:5b:89:b5:ed:6a:68:b6:80:
a0:db:7c:41:dd:1a:dc:eb:2f:ed:c2:77:3b:eb:9b:
28:14:16:43:78:06:39:4c:61:87:18:56:87:1a:c7:
36:fd:c2:df:7e:88:0b:54:1a:d9:dc:38:59:76:c3:
cb:de:62:a6:42:17:57:30:c7:11:7c:ce:a6:d9:fd:
db:3e:74:88:05:d2:e4:01:b4:b3:1c:ca:6b:ec:02:
e3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:77:64:8D:FE:30:F5:B4:91:C3:2C:F8:48:2D:8B:6E:2F:92:C9:72
X509v3 Authority Key Identifier:
keyid:CD:91:17:02:F4:93:D6:ED:E1:B6:E8:72:BC:AC:DC:B8:54:28:2B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZEXAvST1u3htuhyvKzcuFQoK60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/Tndkjf4w9bSRwyz4SC2Lbi-SyXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/b74207-3853-435d-abde-22b7782162ca/1/zZEXAvST1u3htuhyvKzcuFQoK60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.130.0/23
Signature Algorithm: sha256WithRSAEncryption
33:76:0c:92:0c:ee:59:14:6f:58:c8:13:83:44:ef:1f:07:63:
20:ff:6b:3c:10:41:05:81:1a:be:9b:a5:07:42:f9:b5:4a:e1:
50:11:44:75:98:85:f5:6e:0f:53:ce:01:53:4f:0b:08:fa:11:
4d:6d:05:df:16:9d:f2:aa:c5:44:45:24:cf:88:4c:00:d0:7a:
66:08:a5:6e:71:1f:e5:83:d0:59:6e:d2:a3:c6:65:6a:ac:b6:
d8:88:2b:5f:10:99:22:c9:1d:c8:b5:b4:bb:21:c7:a1:7e:f6:
6e:1a:58:fc:20:18:9d:52:91:f5:8c:0d:46:c0:ef:64:d5:6a:
fe:3c:3a:04:67:04:35:b4:11:99:eb:a3:62:ab:bd:1f:cd:71:
65:63:f3:e8:3c:8d:e4:9a:c4:05:99:c7:6a:58:c2:e9:3e:f5:
d4:66:6c:d1:90:4f:40:f1:f7:b2:6e:18:8c:94:77:66:40:e4:
ad:c7:26:ba:28:a3:d7:0d:41:80:8e:92:61:44:17:de:90:ba:
d5:ce:c7:fb:39:96:63:ee:5d:4f:ad:cb:95:51:c5:f8:ea:19:
f1:09:cf:39:57:9e:63:3d:c8:67:d0:4a:cd:c1:45:16:1e:d7:
e2:c1:3b:c9:d8:39:8b:87:cf:05:0e:c6:43:1f:c1:13:72:dd:
b0:6b:b8:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:54 2024 by rpki-client on console-fra.rpki-client.org