Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/05ab60-dea6-43a3-87ef-7bfaeb195445/1/YM9Ek90BIDXzJZUuvBfTeS1-guY.roa
File: YM9Ek90BIDXzJZUuvBfTeS1-guY.roa (raw, json)
Hash identifier: sg76n3QNd8llt047O4Aoaziu/sPOOvJFt+qVoFfzOn0=
Subject key identifier: 60:CF:44:93:DD:01:20:35:F3:25:95:2E:BC:17:D3:79:2D:7E:82:E6
Certificate issuer: /CN=e0689340283794489e41ac86aafa4414f8a4d6be
Certificate serial: 0803274E
Authority key identifier: E0:68:93:40:28:37:94:48:9E:41:AC:86:AA:FA:44:14:F8:A4:D6:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4GiTQCg3lEieQayGqvpEFPik1r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/05ab60-dea6-43a3-87ef-7bfaeb195445/1/YM9Ek90BIDXzJZUuvBfTeS1-guY.roa
Signing time: Sat 01 Jan 2022 03:52:40 +0000
ROA not before: Sat 01 Jan 2022 03:52:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57600
IP address blocks: 91.233.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134424398 (0x803274e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0689340283794489e41ac86aafa4414f8a4d6be
Validity
Not Before: Jan 1 03:52:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60cf4493dd012035f325952ebc17d3792d7e82e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a9:ae:9e:de:83:b5:2e:a1:96:d0:94:f3:c6:
2a:5a:44:b4:4a:cd:05:b2:58:48:c1:69:f8:e7:d2:
9d:1d:e5:53:77:b2:21:de:7f:4d:f8:d4:7c:a9:8c:
19:a5:30:13:8d:f5:21:e8:11:6d:8f:23:7e:e7:7f:
17:78:97:46:78:55:6f:85:24:e6:3a:84:0d:a8:e9:
3b:d0:93:df:be:90:84:cc:a3:05:26:6f:7e:49:e5:
7d:6e:b5:5b:5f:75:ef:68:c7:11:1e:ea:16:af:46:
6c:e6:67:5e:d2:52:a8:23:62:60:21:45:88:dd:2c:
55:49:d2:34:f1:d5:eb:67:f1:9c:2c:76:a2:88:92:
e0:ad:55:57:23:ed:b1:4b:89:7d:0e:2e:e5:73:d6:
49:64:64:80:ba:8b:03:14:0c:4a:cd:ce:c4:0a:cc:
91:ea:32:53:d8:5b:fa:6d:05:83:34:06:4b:aa:7c:
ab:29:3e:2a:b5:84:de:af:14:88:7e:e9:06:66:7c:
af:4b:ca:b4:72:0b:4f:3b:6b:e8:c6:20:ca:77:7b:
33:46:e1:16:2d:b4:bb:67:bd:a7:e6:cd:29:7c:71:
07:12:7c:d1:e8:12:62:8a:25:42:f4:50:ed:bb:96:
83:fa:cd:95:ab:35:74:64:2a:5e:e1:42:b7:3a:88:
99:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:CF:44:93:DD:01:20:35:F3:25:95:2E:BC:17:D3:79:2D:7E:82:E6
X509v3 Authority Key Identifier:
keyid:E0:68:93:40:28:37:94:48:9E:41:AC:86:AA:FA:44:14:F8:A4:D6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4GiTQCg3lEieQayGqvpEFPik1r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/05ab60-dea6-43a3-87ef-7bfaeb195445/1/YM9Ek90BIDXzJZUuvBfTeS1-guY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/05ab60-dea6-43a3-87ef-7bfaeb195445/1/4GiTQCg3lEieQayGqvpEFPik1r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.80.0/24
Signature Algorithm: sha256WithRSAEncryption
04:bd:48:b8:4f:0d:01:50:91:f2:c0:7f:9b:d7:b0:01:28:3a:
1b:58:8c:b1:a7:a5:50:b8:7c:bd:5f:c2:06:88:f5:aa:2a:d5:
c8:b2:01:f4:a1:0a:cd:ec:bd:d6:fe:e3:82:d2:a2:3e:95:2a:
23:cb:e8:95:0c:46:9d:b4:ce:c5:b3:07:03:c0:8b:3d:b0:af:
c5:bf:c2:03:aa:d5:d3:ae:36:27:f7:55:0b:ac:d6:a0:72:24:
b1:5d:64:40:cc:2d:d8:9a:a8:94:c5:4e:15:f1:33:82:64:6d:
a3:bd:6c:e8:5e:32:80:18:4c:15:2e:03:0d:01:12:84:12:23:
9b:a0:76:0d:6b:aa:99:bb:7d:80:e4:df:38:58:ae:31:c7:fd:
7b:a9:65:60:ee:e3:60:bf:87:c4:23:d0:f1:78:f0:3a:bb:7a:
e8:1c:61:db:f6:bd:0b:fb:8f:65:79:79:d3:00:a6:12:48:06:
e8:c8:08:52:21:98:2a:de:4d:0e:02:9a:99:37:50:10:3b:43:
15:66:52:7d:02:0f:5b:d9:57:c2:c6:92:f3:87:65:d8:dd:e4:
e4:99:48:6d:e1:c6:0b:2c:72:ac:b6:24:44:8b:68:3c:5e:82:
dd:fc:c4:c2:54:9a:1a:93:a7:48:1d:e3:01:5b:61:a0:ca:fb:
44:e6:77:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:31 2024 by rpki-client on console-ams.rpki-client.org