Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/3YjbTd2VCjeZibsJ2HSlRGA0Hqk.roa
File: 3YjbTd2VCjeZibsJ2HSlRGA0Hqk.roa (raw, json)
Hash identifier: 2P+JLA1uQIr8OEOUBKE+ke43XCY8PtqJsav2Yx5qMcU=
Subject key identifier: DD:88:DB:4D:DD:95:0A:37:99:89:BB:09:D8:74:A5:44:60:34:1E:A9
Certificate issuer: /CN=d5ee40f4589d6a11b24f7bbcc29ab9f9ae689719
Certificate serial: 01852F7C7E78FC167A0226AE3EE8F96C7E6A
Authority key identifier: D5:EE:40:F4:58:9D:6A:11:B2:4F:7B:BC:C2:9A:B9:F9:AE:68:97:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1e5A9FidahGyT3u8wpq5-a5olxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/3YjbTd2VCjeZibsJ2HSlRGA0Hqk.roa
Signing time: Tue 20 Dec 2022 12:22:45 +0000
ROA not before: Tue 20 Dec 2022 12:22:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49321
IP address blocks: 91.196.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:7c:7e:78:fc:16:7a:02:26:ae:3e:e8:f9:6c:7e:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5ee40f4589d6a11b24f7bbcc29ab9f9ae689719
Validity
Not Before: Dec 20 12:22:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd88db4ddd950a379989bb09d874a54460341ea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1e:6f:5b:c0:13:58:3b:b0:57:ce:88:30:27:
81:36:15:27:04:c7:14:7e:82:42:ce:2f:5b:21:0b:
4f:2e:21:e1:63:2e:d8:2e:a8:2e:02:59:81:f8:88:
0b:1e:5a:df:d2:30:a6:78:0d:74:a6:65:37:bd:2d:
2a:6b:59:4d:21:04:ee:24:d3:58:51:2b:b3:7b:80:
5f:3a:11:51:33:5e:b2:67:6f:75:47:33:dd:3e:2d:
c8:83:33:ca:88:c6:e8:74:2f:d0:41:b8:9e:60:d4:
23:d8:d3:b4:55:a4:5c:b2:3a:48:21:f3:e3:e4:3e:
41:7d:ba:c8:23:03:1b:d4:e1:43:41:4e:66:78:b2:
c8:8a:7d:c5:ec:23:14:2e:de:8e:06:18:6b:fb:e0:
3d:e8:70:ec:35:d6:13:8c:a8:16:2b:8a:d9:6c:6d:
9a:c8:49:f4:5e:13:c9:1a:3e:b6:be:78:a9:52:79:
68:1f:5a:70:89:86:a4:eb:07:ae:16:c6:a7:c6:b2:
54:ba:f8:db:7a:30:25:47:ba:1d:cd:5e:d6:66:3b:
92:8e:a1:1b:81:29:0b:54:3e:0b:fc:76:c7:14:cc:
72:b3:3e:5c:3f:69:b5:cc:94:64:9d:dd:bb:51:6b:
a5:ad:95:76:65:d3:b5:61:47:b5:d3:e0:f2:b4:54:
83:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:88:DB:4D:DD:95:0A:37:99:89:BB:09:D8:74:A5:44:60:34:1E:A9
X509v3 Authority Key Identifier:
keyid:D5:EE:40:F4:58:9D:6A:11:B2:4F:7B:BC:C2:9A:B9:F9:AE:68:97:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e5A9FidahGyT3u8wpq5-a5olxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/3YjbTd2VCjeZibsJ2HSlRGA0Hqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/1e5A9FidahGyT3u8wpq5-a5olxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.155.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:e0:d5:d5:7d:7b:5e:81:5d:f7:b4:df:d6:4b:01:98:8c:3f:
28:90:7d:6a:33:68:58:fe:34:d5:c7:eb:7f:89:7e:9c:64:43:
ca:78:1a:2a:47:08:5c:71:75:4b:6d:df:29:07:b6:6c:f5:9d:
9c:8e:67:30:ff:38:f7:e3:f7:c7:91:35:10:19:75:5f:2d:bb:
7e:a3:27:97:2e:5c:cd:5c:f0:a6:df:0c:dc:f6:4a:6a:59:75:
30:d1:8b:9a:a4:70:db:22:22:3b:e2:47:35:38:2c:5f:da:8b:
2e:c1:02:01:96:ac:ec:1d:14:1c:66:96:c5:97:1d:1c:4b:c0:
b1:df:ad:73:59:dd:bc:2d:03:24:25:1a:13:9e:31:22:d9:cd:
92:99:2e:12:46:2c:11:61:e9:46:11:35:04:52:d6:2a:f0:91:
97:d1:63:72:99:2b:ed:d0:8a:10:c7:c6:37:1b:02:50:1f:e2:
43:27:dc:a1:fc:d1:44:97:8d:50:b6:1f:9b:2d:80:fd:5c:ef:
f6:08:fa:5c:fc:86:58:08:9a:81:a5:92:1b:e1:a4:64:dc:2d:
28:9f:ee:19:8d:fe:7c:6e:4c:ba:47:05:a5:aa:4d:39:3e:54:
2e:84:4e:83:de:d5:8a:2e:c7:68:7b:73:56:e4:f6:a3:d0:45:
f9:12:f3:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:14 2023 by rpki-client on console-fra.rpki-client.org