Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/Gyq50e1_HXT8kq_L5CWyvbBuqLA.roa
File: Gyq50e1_HXT8kq_L5CWyvbBuqLA.roa (raw, json)
Hash identifier: RF26phkALJc6kOxlSBS9SS2vLX6rHXHcGEPcTJpOKdM=
Subject key identifier: 1B:2A:B9:D1:ED:7F:1D:74:FC:92:AF:CB:E4:25:B2:BD:B0:6E:A8:B0
Certificate issuer: /CN=761acfd649c8eead8551942781fa16f68dbd10f3
Certificate serial: 08596E1E
Authority key identifier: 76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/Gyq50e1_HXT8kq_L5CWyvbBuqLA.roa
Signing time: Sat 01 Jan 2022 15:07:32 +0000
ROA not before: Sat 01 Jan 2022 15:07:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41836
IP address blocks: 91.224.72.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140078622 (0x8596e1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=761acfd649c8eead8551942781fa16f68dbd10f3
Validity
Not Before: Jan 1 15:07:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b2ab9d1ed7f1d74fc92afcbe425b2bdb06ea8b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:47:a2:f9:e4:34:71:72:3d:3d:4c:c7:e6:31:
37:d7:73:38:b1:1f:e4:f0:de:bb:a8:09:58:67:42:
7f:d4:c6:ec:77:8d:42:f1:58:0c:6f:e5:1e:b6:1e:
4d:5a:5a:ba:43:ef:3c:c9:9a:1f:e0:ee:e9:46:c5:
58:bb:de:c7:c0:bb:04:b9:4e:5d:01:ec:a8:9b:87:
85:ea:88:ca:35:35:e0:63:25:25:e7:31:86:7b:7f:
ab:06:95:4d:c6:47:89:b6:d6:b9:a1:fa:f8:c6:2a:
3e:94:f8:52:50:c8:d0:cd:bd:24:8b:fa:80:35:6b:
6d:25:10:0c:e1:57:a4:ef:91:c0:a3:9b:33:96:c7:
02:20:fc:10:88:76:35:00:d5:10:8b:b0:3e:09:79:
b6:34:c8:0c:16:53:2d:50:ec:bf:df:76:24:bc:bf:
04:28:c7:87:a8:91:de:75:88:23:89:fe:b9:89:b4:
58:87:90:49:2f:b2:23:b2:85:08:91:64:4e:b8:ca:
5f:28:0e:ad:07:4e:80:88:30:e5:1e:f4:95:46:0c:
3b:c4:a9:45:23:65:9f:e5:d6:c1:5d:25:a3:0f:a2:
06:56:e3:fc:5c:f7:f1:25:97:9e:66:76:d4:73:95:
4d:7d:9d:89:d7:29:02:8a:81:82:04:d9:2c:20:d1:
08:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:2A:B9:D1:ED:7F:1D:74:FC:92:AF:CB:E4:25:B2:BD:B0:6E:A8:B0
X509v3 Authority Key Identifier:
keyid:76:1A:CF:D6:49:C8:EE:AD:85:51:94:27:81:FA:16:F6:8D:BD:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dhrP1knI7q2FUZQngfoW9o29EPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/Gyq50e1_HXT8kq_L5CWyvbBuqLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6f9283-b4d4-44cd-a69b-c73201df9995/1/dhrP1knI7q2FUZQngfoW9o29EPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.72.0/23
Signature Algorithm: sha256WithRSAEncryption
33:c1:ac:ae:02:b2:e9:82:64:8c:c1:5f:62:1b:c2:2c:8d:a2:
cb:f9:bb:a9:88:df:3b:fc:32:3d:04:35:83:71:5b:88:be:50:
1b:a3:29:cf:3b:24:21:5e:2a:f7:ca:00:28:3d:ff:f1:42:65:
e6:70:fc:b8:db:07:02:dc:74:14:f0:12:e3:26:01:12:de:13:
19:65:1f:21:4e:56:04:6f:16:2a:c5:38:b6:0e:f3:b9:fa:28:
69:73:bd:de:69:de:ec:3f:8d:ea:e5:da:d3:73:ed:92:c6:f4:
50:10:63:85:f0:63:62:05:9d:dc:f7:c8:d6:b4:7a:e5:e7:93:
2c:32:a0:e1:53:9f:ba:95:12:d1:6a:e6:8e:3c:96:3e:33:31:
ab:67:8a:fb:b3:e8:de:b6:1f:4f:0b:b7:51:48:e0:39:05:ba:
39:7a:e1:11:7d:98:8f:1c:4f:49:6a:82:d4:7c:e2:50:2a:3c:
74:18:29:e0:08:4d:32:cd:b4:b6:6b:cb:bf:25:41:b2:66:89:
10:6f:16:31:54:c2:98:c9:1c:51:ad:bf:1d:49:a8:d3:0f:25:
32:d4:fb:aa:89:ce:db:f8:27:9b:e2:47:59:49:d2:09:ac:21:
db:80:f8:77:7b:d0:bf:23:6d:ef:c4:f6:4a:4f:92:51:9c:85:
55:52:11:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org