Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/aHQLeJslogXIb0gjxYHMz93O2JM.roa
File: aHQLeJslogXIb0gjxYHMz93O2JM.roa (raw, json)
Hash identifier: bialfeRAbuC1H6T3GoC95zZM0d2aNZVeRo7Tb3u8s0E=
Subject key identifier: 68:74:0B:78:9B:25:A2:05:C8:6F:48:23:C5:81:CC:CF:DD:CE:D8:93
Certificate issuer: /CN=237f7db033314c473cda194e0df79f1c375da3f4
Certificate serial: 0C6CADC9
Authority key identifier: 23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/aHQLeJslogXIb0gjxYHMz93O2JM.roa
Signing time: Wed 27 Apr 2022 07:58:03 +0000
ROA not before: Wed 27 Apr 2022 07:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6453
IP address blocks: 91.140.128.0/17 maxlen: 17
194.54.192.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 208448969 (0xc6cadc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237f7db033314c473cda194e0df79f1c375da3f4
Validity
Not Before: Apr 27 07:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68740b789b25a205c86f4823c581cccfddced893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a3:3d:7b:8b:e8:cc:5a:40:d1:69:fb:a1:9c:
f1:4e:7d:93:25:0d:41:32:21:3e:2a:67:3f:86:0a:
25:db:35:71:ff:e5:63:7c:fc:46:db:fd:3c:24:ca:
a0:ef:d8:e8:37:3f:1e:f9:78:79:af:84:11:bc:93:
83:1d:99:34:19:05:2d:4d:a4:be:44:52:a2:00:c4:
71:b4:09:6a:b6:3d:82:4c:bf:e5:d1:4b:92:a8:09:
61:4d:a8:f5:91:6c:36:1b:4c:d2:1d:ac:96:1d:ba:
d5:d2:6a:17:73:83:d1:6c:69:27:9e:e1:ce:fb:fd:
d9:69:f3:b0:33:ff:ff:dc:ab:bf:c5:af:1e:d0:e0:
33:be:73:85:68:5d:8c:23:93:db:ca:e9:fd:95:a5:
a2:5c:37:98:ba:85:76:b3:79:83:06:77:cf:7d:e2:
b1:5b:38:78:93:86:87:eb:64:d4:00:82:35:49:9b:
a4:a9:da:e5:c2:e4:d8:85:6f:94:88:35:12:4a:48:
6f:67:b3:67:1d:2a:7d:2d:57:b2:0c:88:48:37:cc:
09:70:37:8b:e2:a8:d8:5b:e4:2c:a1:23:a7:ec:0b:
6a:73:b4:fa:1b:e9:11:44:03:eb:f7:64:e7:52:ee:
c2:e1:03:1f:f5:d1:18:5e:62:52:76:8d:96:ec:a7:
ae:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:74:0B:78:9B:25:A2:05:C8:6F:48:23:C5:81:CC:CF:DD:CE:D8:93
X509v3 Authority Key Identifier:
keyid:23:7F:7D:B0:33:31:4C:47:3C:DA:19:4E:0D:F7:9F:1C:37:5D:A3:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I399sDMxTEc82hlODfefHDddo_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/aHQLeJslogXIb0gjxYHMz93O2JM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/eef557-0e10-40ce-a48f-ee0603949f93/1/I399sDMxTEc82hlODfefHDddo_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.140.128.0/17
194.54.192.0/18
Signature Algorithm: sha256WithRSAEncryption
97:b0:43:b1:e8:af:7f:29:8b:d2:72:d1:00:64:48:72:11:cc:
e0:a6:90:5b:c0:69:e6:72:33:e7:3b:23:6a:65:3d:e0:a9:ff:
99:43:d5:d8:63:b1:9c:5a:29:8e:9e:e8:09:43:db:4e:b9:2b:
a8:0e:a6:c9:e2:5e:67:b3:61:b6:6d:6f:39:ea:80:b3:5f:4f:
11:1f:27:90:23:88:b7:de:b5:ba:18:13:21:71:fc:ec:02:0e:
53:e5:b9:30:19:94:a0:92:b6:43:b1:8b:0c:f7:0a:83:bc:6d:
6a:5a:96:25:0e:7f:40:49:26:52:fb:1d:2e:92:24:01:c7:24:
1e:c3:63:55:e7:15:df:de:1e:24:dc:6b:42:70:89:2c:c9:e2:
10:1e:7b:ad:4f:6b:25:f0:30:04:08:50:c5:38:02:fc:38:69:
e1:7e:32:95:b4:85:f2:2b:a0:17:c5:1c:07:cb:01:7f:0d:81:
60:d0:55:bb:de:dc:1c:77:43:22:27:d5:e2:dc:9d:a2:57:e8:
53:ff:f5:d6:96:3d:a1:74:02:8d:57:4e:ff:cf:ab:6d:63:28:
e9:54:a9:f6:fc:88:4c:16:aa:97:53:d9:80:57:9e:c1:b9:c1:
b9:39:22:71:e3:d7:2f:01:11:fb:b7:09:f8:0f:e3:80:aa:07:
68:f1:f4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:58 2024 by rpki-client on console-fra.rpki-client.org