Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/DBO28Q94c0iMLjbyYaXsrmEp2Vs.roa
File: DBO28Q94c0iMLjbyYaXsrmEp2Vs.roa (raw, json)
Hash identifier: MFnMdL2bIm8lsChpStnV/iqMuHgmtQQap2aB9k1jiWM=
Subject key identifier: 0C:13:B6:F1:0F:78:73:48:8C:2E:36:F2:61:A5:EC:AE:61:29:D9:5B
Certificate issuer: /CN=331ed3d7ba511ca6002d845b3c0aa8111a3559cf
Certificate serial: 0248C817
Authority key identifier: 33:1E:D3:D7:BA:51:1C:A6:00:2D:84:5B:3C:0A:A8:11:1A:35:59:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mx7T17pRHKYALYRbPAqoERo1Wc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/DBO28Q94c0iMLjbyYaXsrmEp2Vs.roa
Signing time: Sat 01 Jan 2022 09:54:11 +0000
ROA not before: Sat 01 Jan 2022 09:54:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213134
IP address blocks: 91.201.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38324247 (0x248c817)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=331ed3d7ba511ca6002d845b3c0aa8111a3559cf
Validity
Not Before: Jan 1 09:54:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c13b6f10f7873488c2e36f261a5ecae6129d95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e3:94:b3:4f:87:3d:16:27:9c:30:5c:85:a8:
22:1d:34:e3:01:7b:20:f2:58:34:ba:e2:47:a8:d9:
7a:06:c3:cb:ea:53:f1:60:14:a6:9d:48:44:21:6c:
10:5d:94:91:c0:f9:90:c6:47:38:20:ea:1d:2c:75:
49:44:00:ee:21:b5:44:54:93:60:f2:8e:2f:4d:20:
8e:04:43:30:dd:db:e4:29:e8:88:3c:ba:d9:bc:df:
3f:59:6e:ca:f7:bd:cd:53:11:c0:1a:d5:45:13:38:
14:44:45:ea:b1:2a:73:51:08:15:57:6d:52:50:fb:
5a:54:63:6d:3e:f0:a8:90:40:f5:86:e3:8e:d2:fb:
89:7a:03:6b:d8:24:6e:52:44:22:ad:83:32:8c:7c:
de:0f:c6:7c:af:78:77:55:1c:e3:e1:a4:70:22:21:
f5:ad:76:87:a7:9e:45:50:20:f0:6b:51:ad:6c:d3:
c9:e2:c2:13:af:73:8f:a7:96:56:65:85:66:64:6f:
9d:15:52:da:17:b5:bf:fa:f1:f3:63:d0:0e:69:40:
0a:a3:4b:b8:ed:d1:a6:62:fd:e4:bd:04:ed:3f:d5:
6c:b8:e3:76:78:cf:e5:bf:e8:5b:cc:2a:75:c5:13:
51:02:84:ac:66:e8:b2:5e:55:a0:45:a2:40:8b:42:
d9:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:13:B6:F1:0F:78:73:48:8C:2E:36:F2:61:A5:EC:AE:61:29:D9:5B
X509v3 Authority Key Identifier:
keyid:33:1E:D3:D7:BA:51:1C:A6:00:2D:84:5B:3C:0A:A8:11:1A:35:59:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mx7T17pRHKYALYRbPAqoERo1Wc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/DBO28Q94c0iMLjbyYaXsrmEp2Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/feaa1b-b7c1-4b48-9594-baf24dd5839f/1/Mx7T17pRHKYALYRbPAqoERo1Wc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.196.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ac:4d:91:70:44:e3:1f:34:d5:e3:42:f9:ce:e1:fc:ec:78:
89:12:56:57:cf:ce:1e:27:45:42:a4:33:e1:fb:83:3b:87:a7:
3f:73:ea:61:aa:17:09:50:14:99:1c:ee:36:fa:a8:0a:18:85:
62:29:33:28:1d:56:be:53:43:49:7b:8a:30:f1:40:fa:ed:96:
a6:95:e3:29:4e:b8:dd:64:51:ef:b8:a8:82:49:f0:79:a6:a7:
dc:b2:c9:81:20:dd:18:7f:b6:d5:bb:24:81:e4:3a:9f:ff:de:
97:8e:69:47:e0:9f:b8:5d:9d:04:1c:b4:6b:af:6c:b1:21:6f:
7d:db:be:42:19:b5:66:c5:9a:31:70:55:88:61:35:1c:57:75:
68:70:32:79:4e:e2:a5:01:76:72:33:58:0c:29:10:8d:f1:a4:
d1:61:c8:81:ac:c5:aa:84:5f:0a:ca:81:ca:ad:e3:a8:40:74:
8a:f5:32:45:5f:42:b0:83:94:a6:ac:8b:01:af:46:62:26:dc:
74:97:62:f1:ca:0f:1c:0e:62:bb:2d:93:22:1b:c9:a7:d2:b6:
68:a4:d2:6b:f0:5c:79:24:17:5b:be:dc:b7:a1:7d:d8:f0:01:
d2:2c:3d:8e:eb:db:88:fd:33:d8:a7:0b:72:0c:de:ce:c3:71:
e4:59:1d:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:55 2024 by rpki-client on console-ams.rpki-client.org