Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/33e0dc-19ba-48a4-8086-1ac4c5d4292f/1/IE0bgcRsk6OqIjp9OcZWkVD4Amg.roa
File: IE0bgcRsk6OqIjp9OcZWkVD4Amg.roa (raw, json)
Hash identifier: XuJzXw9B9bnt6KN9/fUO0JkcwigCzXLoQrMpOovDxrs=
Subject key identifier: 20:4D:1B:81:C4:6C:93:A3:AA:22:3A:7D:39:C6:56:91:50:F8:02:68
Certificate issuer: /CN=42f7fb8478177f48cf45bed07cbecf9b6e95de88
Certificate serial: 017EFA12
Authority key identifier: 42:F7:FB:84:78:17:7F:48:CF:45:BE:D0:7C:BE:CF:9B:6E:95:DE:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qvf7hHgXf0jPRb7QfL7Pm26V3og.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/33e0dc-19ba-48a4-8086-1ac4c5d4292f/1/IE0bgcRsk6OqIjp9OcZWkVD4Amg.roa
Signing time: Sat 01 Jan 2022 14:56:13 +0000
ROA not before: Sat 01 Jan 2022 14:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48756
IP address blocks: 91.212.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25098770 (0x17efa12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f7fb8478177f48cf45bed07cbecf9b6e95de88
Validity
Not Before: Jan 1 14:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=204d1b81c46c93a3aa223a7d39c6569150f80268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:31:2c:cb:0d:66:1f:df:38:a0:9e:63:f1:c9:
a2:b6:51:70:ac:52:e4:ae:cd:9c:52:9a:5e:f4:01:
9d:e2:67:ab:a2:48:11:65:58:f4:32:55:22:c6:38:
a5:d0:76:f8:5d:9f:dd:5e:45:aa:59:55:75:b8:7f:
45:3f:b1:49:6f:3e:9f:11:d7:ca:ec:d7:3f:b6:bd:
a5:5a:bf:01:1c:0b:94:72:bc:65:17:36:94:f7:9d:
43:9a:95:22:88:87:a5:f4:a9:44:66:63:43:6d:be:
c3:fd:78:68:c7:84:aa:59:18:df:f2:08:f5:c3:e4:
f4:7a:82:fd:ca:aa:35:82:41:0a:01:7b:c3:76:54:
05:47:2f:4e:5b:3d:8f:3d:8a:d0:e7:75:5e:56:02:
2a:80:6e:16:44:6b:49:2b:d0:15:70:c3:09:d0:75:
e3:96:99:71:c0:df:fd:99:54:c5:ee:58:9d:96:e6:
42:c0:68:61:7b:81:5c:df:69:a4:96:2e:39:1e:ff:
60:3f:a9:be:b0:1c:fb:6b:f6:37:7a:17:77:39:30:
41:7f:76:66:ed:1b:11:d4:bc:8f:46:cf:f6:a4:7d:
2d:53:2f:af:30:37:07:af:94:f6:94:c3:7d:cb:98:
d7:6f:3f:32:96:1e:16:55:19:86:92:05:a7:86:f8:
b8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4D:1B:81:C4:6C:93:A3:AA:22:3A:7D:39:C6:56:91:50:F8:02:68
X509v3 Authority Key Identifier:
keyid:42:F7:FB:84:78:17:7F:48:CF:45:BE:D0:7C:BE:CF:9B:6E:95:DE:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qvf7hHgXf0jPRb7QfL7Pm26V3og.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33e0dc-19ba-48a4-8086-1ac4c5d4292f/1/IE0bgcRsk6OqIjp9OcZWkVD4Amg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/33e0dc-19ba-48a4-8086-1ac4c5d4292f/1/Qvf7hHgXf0jPRb7QfL7Pm26V3og.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.22.0/24
Signature Algorithm: sha256WithRSAEncryption
37:b8:e7:00:5e:84:5b:b4:4a:e3:91:f3:1a:e2:04:3d:6d:57:
e1:47:37:6b:87:fa:ae:64:8d:2a:8d:68:5e:85:cc:d0:43:eb:
e1:b1:ea:4e:35:e1:bc:ba:78:84:0c:f7:88:fd:bb:18:f1:28:
d2:4f:8c:53:b9:f8:cc:e6:26:b1:22:7e:03:2c:e7:a9:6d:14:
9f:12:56:42:50:34:f6:69:8e:ab:c8:04:c8:71:57:d6:db:fb:
8a:d5:cd:8b:22:0e:3f:99:23:bd:67:09:54:0d:3a:78:ba:d8:
13:0e:22:83:76:bf:b8:d2:f5:24:7d:fc:ee:89:32:fa:52:81:
d5:17:c8:df:4f:b8:09:70:8f:4f:0f:36:cc:15:4a:5e:01:ee:
64:32:3e:e3:9c:d6:91:4d:fd:cf:f8:60:8f:d6:24:e6:b2:34:
df:8e:31:38:13:f4:fd:3b:44:30:c7:f6:60:0b:17:e6:08:16:
64:0d:6d:50:c2:83:01:d6:f4:cc:2c:36:b4:51:56:a4:c3:ba:
37:ef:4c:67:cb:81:e0:cd:f3:e5:f9:5a:c4:f1:99:68:2a:2a:
ca:1d:73:32:0e:c7:cf:a8:bb:bc:ef:b8:ca:3c:a7:1e:56:a5:
e7:9d:84:77:1b:31:c2:91:4e:aa:d9:f3:65:a6:cb:cd:b3:c4:
2c:07:22:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:32 2024 by rpki-client on console-ams.rpki-client.org