Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/qMAXnKyNtbn2aVj3CWSiMUtfr5M.roa
File: qMAXnKyNtbn2aVj3CWSiMUtfr5M.roa (raw, json)
Hash identifier: onMKGz3C4mN6M007/lLZtHcSgB1wgVLDF+aICnJOp1c=
Subject key identifier: A8:C0:17:9C:AC:8D:B5:B9:F6:69:58:F7:09:64:A2:31:4B:5F:AF:93
Certificate issuer: /CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Certificate serial: 0472F348
Authority key identifier: 5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/qMAXnKyNtbn2aVj3CWSiMUtfr5M.roa
Signing time: Sat 01 Jan 2022 04:53:28 +0000
ROA not before: Sat 01 Jan 2022 04:53:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33847
IP address blocks: 91.212.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74642248 (0x472f348)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Validity
Not Before: Jan 1 04:53:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8c0179cac8db5b9f66958f70964a2314b5faf93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:85:3a:88:f6:dd:4f:21:62:20:6a:3c:30:16:
d9:6e:cc:ed:16:3d:ab:38:94:1c:89:f8:2a:e9:42:
5a:52:41:12:72:9c:82:60:4b:1a:43:fd:51:5f:ad:
bf:48:d8:26:1a:d5:a7:1c:f2:f0:cd:ca:be:0c:f4:
d5:71:15:03:2d:49:38:9e:58:b6:bb:72:35:20:b7:
9a:d4:41:8b:4e:87:f7:8c:1f:55:2e:ef:ab:9e:89:
20:12:53:e8:ac:ce:47:8a:0a:ce:53:41:13:3f:6c:
34:76:00:47:b5:01:47:79:e7:52:1a:25:fd:8a:10:
e5:83:ab:de:78:e9:1a:e1:15:2a:64:47:b2:a2:4a:
dc:4f:21:8c:43:0f:12:d1:c3:42:b7:10:d9:3b:a2:
03:42:8e:f8:40:96:aa:72:03:95:f6:70:bd:35:6c:
8b:2f:6b:97:8b:26:a6:7a:9a:af:cb:68:66:2f:7b:
6e:6f:e4:ad:72:5f:a9:9c:dd:53:b5:ec:44:22:21:
dd:25:6b:be:32:8f:77:62:2e:0f:20:f5:c3:c5:4f:
73:5e:8f:20:d0:c6:e1:1d:87:3e:ac:0f:85:0b:d4:
d7:16:0d:06:dd:af:6d:c7:18:06:a8:f6:39:ad:a9:
0e:7a:7c:e2:fd:45:bc:d5:4c:43:56:7e:22:2a:e0:
ca:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C0:17:9C:AC:8D:B5:B9:F6:69:58:F7:09:64:A2:31:4B:5F:AF:93
X509v3 Authority Key Identifier:
keyid:5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/qMAXnKyNtbn2aVj3CWSiMUtfr5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.53.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:63:64:93:0d:66:8d:52:26:71:1b:cd:3b:cd:be:d0:61:09:
68:85:3e:7e:51:b7:64:4b:a6:06:02:93:c0:e8:9b:d7:ab:0e:
93:0f:29:29:b1:70:4f:d9:ef:8f:a8:e2:3a:b6:68:1d:a6:2a:
6d:8a:33:d5:2b:31:2e:22:bb:a6:c1:86:6c:78:d6:5c:c0:3c:
c1:fc:7e:0c:85:a6:54:37:da:b5:3f:ec:2a:af:ee:a9:03:ae:
5f:5a:26:7d:34:73:ea:da:a7:3c:1c:48:04:54:83:da:9f:4f:
25:21:ee:28:d0:ac:23:1c:0a:10:fe:e4:94:98:cc:32:d3:be:
77:9c:2e:d2:38:bb:28:4e:b1:98:4c:ca:79:8e:ed:77:41:75:
50:38:86:14:76:1d:ed:cf:8a:95:71:a8:0f:62:63:db:67:68:
0f:77:df:47:9d:8a:b0:88:3c:79:d6:88:12:91:7e:2c:11:64:
b2:6b:f9:ea:76:d2:a6:5f:0d:0a:07:9a:ae:be:ad:e4:6f:de:
04:63:95:36:99:a5:66:0c:43:4d:94:b7:20:26:d8:76:ba:8a:
1e:49:d0:a0:80:c1:ca:53:17:24:02:94:1c:25:43:a3:50:b4:
7b:66:88:a5:5b:7a:17:8a:71:2e:3a:8e:b7:00:b7:0f:7b:53:
22:73:54:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:55 2024 by rpki-client on console-ams.rpki-client.org