Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/YU2ouar7B7Bdh_qpeoZ4WuxpG3E.roa
File: YU2ouar7B7Bdh_qpeoZ4WuxpG3E.roa (raw, json)
Hash identifier: 6b0vXmmSC1/a287zOGUq+GBDEG45j1dJtRr86T9u+0M=
Subject key identifier: 61:4D:A8:B9:AA:FB:07:B0:5D:87:FA:A9:7A:86:78:5A:EC:69:1B:71
Certificate issuer: /CN=4f8477e569d1d7d60f0469a7cc8a7f4746039bb7
Certificate serial: 032AA64F
Authority key identifier: 4F:84:77:E5:69:D1:D7:D6:0F:04:69:A7:CC:8A:7F:47:46:03:9B:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4R35WnR19YPBGmnzIp_R0YDm7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/YU2ouar7B7Bdh_qpeoZ4WuxpG3E.roa
Signing time: Sat 01 Jan 2022 08:55:27 +0000
ROA not before: Sat 01 Jan 2022 08:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197386
IP address blocks: 91.220.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53126735 (0x32aa64f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8477e569d1d7d60f0469a7cc8a7f4746039bb7
Validity
Not Before: Jan 1 08:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=614da8b9aafb07b05d87faa97a86785aec691b71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ba:a1:1c:09:13:70:0d:4a:48:78:36:ed:09:
b4:e5:5a:bc:6f:bc:1f:bd:57:d8:47:18:04:17:d8:
48:54:6b:ec:12:31:db:2e:02:12:72:36:9e:57:7f:
da:e0:ed:d3:6d:ef:ef:af:24:bb:98:7d:a2:ab:31:
05:d3:47:da:ba:7a:49:be:9c:51:3a:4f:e6:95:83:
04:a2:ad:1e:22:3a:0c:b8:54:03:ef:03:33:ab:43:
6d:00:ee:0a:5a:5f:ea:4d:5d:09:6a:a2:8e:b9:4a:
74:1a:a6:2e:e0:5e:d7:8e:6e:1d:50:8c:ad:ca:22:
52:db:26:8d:f9:bf:11:a2:da:57:8b:70:81:93:6d:
4a:49:8f:6b:1b:01:02:ec:91:c1:41:f9:5c:cf:b2:
31:7c:f7:f1:d8:7e:3d:3c:a3:bb:c3:9a:c4:30:e2:
d3:51:3b:f7:e0:80:62:56:40:4e:44:91:37:56:d7:
df:4f:c7:d9:b5:df:68:96:62:63:c5:6a:dc:b1:c1:
8f:28:89:7b:c6:93:8b:8e:fe:73:8e:9f:6d:50:48:
f5:f9:20:0b:b8:91:7d:e5:f5:de:eb:64:a8:ff:f9:
3a:a9:a5:2b:34:1f:2a:39:79:bc:c1:0a:bc:c0:6a:
3d:84:2c:80:63:cd:0a:b7:42:b5:80:cf:c0:41:32:
f4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4D:A8:B9:AA:FB:07:B0:5D:87:FA:A9:7A:86:78:5A:EC:69:1B:71
X509v3 Authority Key Identifier:
keyid:4F:84:77:E5:69:D1:D7:D6:0F:04:69:A7:CC:8A:7F:47:46:03:9B:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4R35WnR19YPBGmnzIp_R0YDm7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/YU2ouar7B7Bdh_qpeoZ4WuxpG3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/T4R35WnR19YPBGmnzIp_R0YDm7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.50.0/24
Signature Algorithm: sha256WithRSAEncryption
53:c1:1f:71:d8:7a:5d:52:18:50:8d:5d:ad:0c:d8:62:33:0d:
38:eb:1d:83:42:ef:9b:45:27:02:c5:53:ec:8e:62:29:d3:7e:
9f:76:be:ff:48:38:ae:b8:dc:b8:c5:70:b6:67:58:c1:bf:d3:
ac:e8:ba:86:ab:e7:5f:f6:0c:32:04:38:9d:37:2f:f2:c6:e3:
f4:2f:5b:8d:f8:32:a1:2a:f1:5e:e5:87:d8:86:83:26:f5:c9:
f7:15:a9:9b:cc:f3:dd:d3:db:bb:6f:8d:6f:f2:71:83:de:51:
f3:4d:35:60:62:d0:ad:a0:76:c1:b7:a2:5c:3e:a6:59:0d:71:
8c:57:d5:47:95:3c:85:a7:76:06:9b:66:01:b0:09:dd:5d:bb:
50:a3:24:86:87:bc:3d:d4:48:97:fb:40:29:64:42:98:fb:c2:
cf:8a:2a:e0:11:39:dc:39:0b:0c:63:7e:b6:95:af:6c:62:d9:
db:26:fb:53:9d:30:64:12:0a:12:38:79:d7:9b:60:65:e5:2c:
17:90:46:44:32:9d:d9:59:92:e4:ae:04:11:63:85:36:36:b5:
cf:b2:65:19:cc:f9:4c:af:df:4b:fe:aa:dd:f9:4e:51:65:af:
33:46:c3:7b:51:a7:d7:9e:b9:75:09:94:d7:ff:88:45:f3:c6:
3d:96:9f:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:15 2024 by rpki-client on console-ams.rpki-client.org