Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/H3T6dpZ95CGrtDjIk0MkAfdi5zg.roa
File: H3T6dpZ95CGrtDjIk0MkAfdi5zg.roa (raw, json)
Hash identifier: g7Ouir3NCWKEUbqd7Aw006L/Z3jf0IZudafCIioUHlM=
Subject key identifier: 1F:74:FA:76:96:7D:E4:21:AB:B4:38:C8:93:43:24:01:F7:62:E7:38
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 024AC0B9
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/H3T6dpZ95CGrtDjIk0MkAfdi5zg.roa
Signing time: Tue 26 Apr 2022 03:27:13 +0000
ROA not before: Tue 26 Apr 2022 03:27:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 91.226.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38453433 (0x24ac0b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Apr 26 03:27:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f74fa76967de421abb438c893432401f762e738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e4:de:dd:77:b4:86:df:a9:ce:7b:94:ec:49:
11:dc:ea:78:44:ca:13:f5:e6:be:9e:4b:61:ab:e0:
8b:8a:92:59:9f:ee:7d:4a:8e:96:9c:a3:71:10:a8:
33:84:8d:60:09:c4:02:fa:b4:0f:86:af:bb:79:f6:
6e:dc:c9:b5:ca:ec:e9:ef:cd:08:a8:b9:50:a6:8c:
f6:d6:72:21:7c:d4:05:ef:9d:eb:b2:fe:3b:f3:d8:
9f:7d:97:a8:06:26:5b:a6:75:8d:ac:e8:c3:8e:37:
93:21:50:25:4c:79:d4:6a:a6:8b:8a:5f:f7:de:8d:
f8:44:19:40:85:f0:8d:34:64:ec:ae:f9:81:c9:55:
a2:0f:17:ea:ae:ec:4f:74:09:ff:ff:48:31:ab:a3:
15:ab:70:62:b2:55:94:0f:36:bf:ea:e5:99:3a:c1:
6a:c4:d4:29:b7:55:9d:14:fc:73:18:76:47:ce:93:
63:25:f2:96:2c:37:80:82:73:f1:6f:f3:0b:31:23:
6a:2e:f3:e8:d4:8d:78:c3:40:cb:20:8b:76:86:df:
b0:20:b1:38:ec:a5:93:07:e0:f6:9a:c3:30:d0:ad:
06:69:f7:b8:60:cf:66:15:75:b9:68:dc:d2:29:2b:
af:15:af:29:c6:59:f5:2e:f7:3e:65:6a:6d:c0:1a:
92:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:74:FA:76:96:7D:E4:21:AB:B4:38:C8:93:43:24:01:F7:62:E7:38
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/H3T6dpZ95CGrtDjIk0MkAfdi5zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.224.0/24
Signature Algorithm: sha256WithRSAEncryption
05:4b:c8:07:75:56:e1:fb:f4:63:44:89:a4:a5:c2:58:53:b0:
8f:b1:75:6e:fc:74:12:0e:2c:e4:c4:df:c3:ef:5b:df:82:84:
7d:19:4a:64:d7:45:23:83:e1:ac:b0:10:10:4d:9e:57:99:e3:
74:5e:a9:f7:15:54:83:14:e5:31:0b:88:34:bf:59:23:4b:41:
40:fe:34:da:d5:fa:b4:0f:54:a4:13:64:e6:5e:1c:ac:cd:b7:
57:ab:0a:55:b4:a5:6f:d4:53:1a:5f:67:87:9d:92:7c:76:f5:
6f:4e:96:d7:5b:eb:36:74:ca:d4:eb:97:cd:75:f1:cd:e3:17:
f8:e4:48:b0:d4:27:47:fd:bc:96:99:e8:35:d0:2c:fe:1e:ca:
e0:26:22:83:27:36:dd:35:b6:00:f1:68:51:e4:82:e5:13:eb:
75:f7:78:65:7b:cb:8d:28:43:26:62:9a:49:2a:3c:58:c6:54:
dd:84:3e:59:c6:ca:13:fd:ac:5e:a5:b0:89:79:5f:e9:c4:de:
59:b8:88:8d:83:7c:f7:e3:fd:5c:3c:72:a9:23:76:98:1b:79:
13:a7:45:fe:ed:8c:8a:6b:0c:55:fb:dd:e1:77:f2:46:d5:cd:
95:cb:24:c8:d5:47:6e:e1:dd:aa:b4:4d:9a:81:4d:25:f8:9f:
19:80:5d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:25 2024 by rpki-client on console-ams.rpki-client.org