Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/6agTI3qs-6nqEIHZXodI6YU3pF8.roa
File: 6agTI3qs-6nqEIHZXodI6YU3pF8.roa (raw, json)
Hash identifier: ECswqExsBE5pCj0tSfd/odFh8ak4K/YHTVyEs81Vt5g=
Subject key identifier: E9:A8:13:23:7A:AC:FB:A9:EA:10:81:D9:5E:87:48:E9:85:37:A4:5F
Certificate issuer: /CN=98fd440cbbb04b969b92bb6b39c0bbb41634cd12
Certificate serial: 18D0143B
Authority key identifier: 98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/6agTI3qs-6nqEIHZXodI6YU3pF8.roa
Signing time: Sat 01 Jan 2022 05:04:38 +0000
ROA not before: Sat 01 Jan 2022 05:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2914
IP address blocks: 91.212.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416289851 (0x18d0143b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98fd440cbbb04b969b92bb6b39c0bbb41634cd12
Validity
Not Before: Jan 1 05:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9a813237aacfba9ea1081d95e8748e98537a45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:07:cd:89:bf:20:54:93:b0:0a:ca:45:c9:a1:
d8:24:bc:33:71:cf:05:ac:41:5b:8b:34:5c:51:91:
98:c1:06:84:3d:d3:c3:4f:bf:03:11:bc:ac:9f:4b:
67:0b:62:03:28:eb:ef:6b:37:4f:30:5b:a5:ae:10:
0e:fd:cc:5f:c3:f4:8c:8d:c6:14:56:06:f1:50:6e:
85:b1:0f:3b:df:d5:bc:18:84:61:12:41:c8:1c:15:
7b:03:46:51:dd:dd:61:06:7d:8e:b3:cf:2e:65:fb:
28:c6:50:90:b1:d1:b3:3a:b0:8c:2a:a6:f3:9d:4d:
6e:e3:61:65:9a:f0:24:4b:b1:ae:64:44:6b:79:79:
64:1a:e0:e5:f3:0d:0e:fb:77:ec:98:c6:da:8a:a1:
c2:8f:07:f7:b3:df:86:ba:c3:ac:61:17:02:b6:61:
62:da:45:b4:da:b7:b2:2c:70:a6:4e:01:aa:1c:d1:
e9:97:b1:bb:24:24:fd:b6:0f:33:d1:fc:9e:7e:a9:
07:88:ae:2a:cf:d1:9a:08:ec:2a:88:18:ff:ae:6f:
09:71:f9:95:d7:dc:83:89:53:b8:91:11:25:6b:8b:
f6:b1:b4:ae:b4:20:da:42:aa:61:61:b5:2d:36:07:
6f:bf:30:9e:fc:ed:34:39:a1:0d:33:d6:3c:93:f3:
36:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A8:13:23:7A:AC:FB:A9:EA:10:81:D9:5E:87:48:E9:85:37:A4:5F
X509v3 Authority Key Identifier:
keyid:98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/6agTI3qs-6nqEIHZXodI6YU3pF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/mP1EDLuwS5abkrtrOcC7tBY0zRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.152.0/24
Signature Algorithm: sha256WithRSAEncryption
78:24:a6:c4:02:df:07:31:46:fe:26:80:b6:33:4e:86:73:a7:
56:0a:f0:d6:fb:fa:7a:93:5d:6a:a0:2a:73:c9:da:c2:61:95:
13:81:e1:ae:e9:a3:1e:86:46:b7:fb:e3:8b:0f:8c:fd:36:5b:
f5:c2:70:4d:7f:17:15:5f:ff:08:13:b1:be:a4:30:17:c7:db:
74:8e:c2:42:c6:2d:4f:ad:4b:9a:54:ba:db:be:ea:1e:f0:17:
e6:bb:29:00:d1:0f:b2:a5:9c:ec:be:7f:58:51:04:e3:2b:7a:
da:fe:34:c3:89:c9:68:df:26:af:03:71:c3:d0:40:e7:f2:1a:
21:c9:f9:c6:0b:67:f2:fa:ad:a7:fa:4c:b0:a2:7a:8e:18:e6:
25:2f:7b:0f:47:bb:d3:da:c1:8b:2a:ec:4f:2f:5f:cd:58:16:
48:45:b3:71:e5:dc:d0:37:62:91:51:de:80:ad:8e:4f:d5:f6:
e0:bd:56:2c:84:c1:a8:e5:00:f1:73:e4:f3:06:6d:3c:3f:4c:
5e:3e:90:76:48:89:35:54:94:8b:d7:dd:dc:0b:12:2b:da:c7:
28:ab:c9:37:64:df:f2:b7:98:e2:a6:69:eb:26:1e:c2:70:67:
b6:28:5a:d4:73:02:fd:13:61:47:41:0e:85:e2:3c:71:10:52:
14:ac:ee:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:36 2023 by rpki-client on console-ams.rpki-client.org