Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/dc9c6a-550a-4ee1-b4fc-543776f7c92e/1/4oP9NCz8dZUIOAbqVJfmE5z75x8.roa
File: 4oP9NCz8dZUIOAbqVJfmE5z75x8.roa (raw, json)
Hash identifier: yfnZstMprGwvRC1xEKkrJ4s7Uf03CUZgj1PIravRg0I=
Subject key identifier: E2:83:FD:34:2C:FC:75:95:08:38:06:EA:54:97:E6:13:9C:FB:E7:1F
Certificate issuer: /CN=8b1db644ea0e2749dd6ed022aecd12194bcb96f2
Certificate serial: 0B2E6160
Authority key identifier: 8B:1D:B6:44:EA:0E:27:49:DD:6E:D0:22:AE:CD:12:19:4B:CB:96:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ix22ROoOJ0ndbtAirs0SGUvLlvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/dc9c6a-550a-4ee1-b4fc-543776f7c92e/1/4oP9NCz8dZUIOAbqVJfmE5z75x8.roa
Signing time: Sat 01 Jan 2022 03:52:45 +0000
ROA not before: Sat 01 Jan 2022 03:52:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47545
IP address blocks: 91.208.22.0/24 maxlen: 24
2001:67c:2114::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187588960 (0xb2e6160)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b1db644ea0e2749dd6ed022aecd12194bcb96f2
Validity
Not Before: Jan 1 03:52:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e283fd342cfc7595083806ea5497e6139cfbe71f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e0:9e:e9:bf:6d:a3:fe:e0:96:be:35:91:a8:
9b:57:2f:a4:59:07:70:57:19:bd:36:47:43:e0:cf:
10:96:f9:a1:d9:23:c3:10:bf:a5:31:2f:f4:ac:93:
05:09:cb:4c:17:68:07:9e:5a:95:2d:ac:9f:5c:85:
21:6c:ce:70:cb:9b:d9:5e:0f:a9:46:14:57:1c:b6:
94:0a:50:29:b3:5c:eb:78:fd:7b:53:60:b0:20:2f:
1c:77:6b:fe:f5:e8:1a:95:0c:de:95:2a:a6:3f:93:
95:6b:85:22:63:68:2f:2e:d8:37:24:5d:bf:00:fc:
c2:f7:d5:ae:48:dd:ee:d3:ec:65:12:3d:94:ea:c0:
d9:f1:dd:16:a9:5a:48:95:67:42:ad:96:02:cc:17:
70:a2:f1:f4:0a:dd:6a:32:b0:a3:e7:96:5b:ce:1f:
e0:84:e5:9c:14:cc:6f:79:60:16:3f:81:67:20:f2:
52:40:f4:7f:fa:c2:5a:6b:cd:8f:74:03:50:9e:86:
df:e8:71:10:44:7c:bb:7d:bf:30:82:21:00:d8:83:
fa:10:56:00:d1:84:09:8f:c9:ba:7f:4e:36:f6:17:
d9:de:3b:d9:1f:49:a1:73:e3:70:1e:be:9f:c7:92:
d8:a7:5f:65:fe:a8:15:2e:0e:6c:ca:a0:3f:f9:44:
f4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:83:FD:34:2C:FC:75:95:08:38:06:EA:54:97:E6:13:9C:FB:E7:1F
X509v3 Authority Key Identifier:
keyid:8B:1D:B6:44:EA:0E:27:49:DD:6E:D0:22:AE:CD:12:19:4B:CB:96:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ix22ROoOJ0ndbtAirs0SGUvLlvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/dc9c6a-550a-4ee1-b4fc-543776f7c92e/1/4oP9NCz8dZUIOAbqVJfmE5z75x8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/dc9c6a-550a-4ee1-b4fc-543776f7c92e/1/ix22ROoOJ0ndbtAirs0SGUvLlvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.22.0/24
IPv6:
2001:67c:2114::/48
Signature Algorithm: sha256WithRSAEncryption
9b:ce:50:c1:a8:d8:a3:65:97:0c:6a:56:a9:d2:b9:60:bb:04:
ff:9f:66:1f:da:9f:8e:18:42:4e:d8:de:2b:56:81:7b:72:90:
df:bf:9a:06:b7:d2:ae:16:33:ce:70:6d:7c:5f:19:93:74:25:
c4:48:0a:6f:62:0c:9b:03:1f:b8:bc:8b:da:f6:b8:6b:7c:38:
ec:09:88:c9:b9:1f:f1:38:07:14:9d:6e:12:d5:b4:b4:2a:89:
b8:af:e3:12:ce:d2:68:7e:a7:68:01:e1:a7:15:a0:da:3e:df:
70:02:ff:08:3c:77:61:97:89:ac:5c:0e:9b:b4:a9:6b:63:46:
92:7b:32:bb:0b:f6:95:61:a8:70:ef:d7:43:e0:a5:e6:84:7d:
18:55:c3:a6:9a:c7:65:75:7d:7d:b5:35:78:c4:a2:48:a6:8e:
ba:ec:9e:37:0a:f9:27:58:1d:16:8e:09:0c:b2:f0:58:bb:1b:
0e:2d:85:29:4e:e0:3e:e6:61:ba:b2:de:bf:0c:ba:a3:87:22:
84:a8:9f:1c:76:d8:f1:da:29:d4:a3:12:d4:0a:5b:01:3a:2e:
f4:38:c8:ed:ef:d7:44:bc:6c:c0:e3:c0:7c:78:03:a1:88:6e:
15:88:67:40:76:d0:56:04:cc:07:90:a1:c2:5c:48:b3:c8:c4:
4e:5e:ea:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:13 2024 by rpki-client on console-ams.rpki-client.org