Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/UrgKqTiyf-t0pEnw6kkhtHS2rHA.roa
File: UrgKqTiyf-t0pEnw6kkhtHS2rHA.roa (raw, json)
Hash identifier: uCoAL4Yupp4IIG3WwhqbCQ43Kt2K3/KNbRQUnxdTf8Y=
Subject key identifier: 52:B8:0A:A9:38:B2:7F:EB:74:A4:49:F0:EA:49:21:B4:74:B6:AC:70
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 060E89A9
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/UrgKqTiyf-t0pEnw6kkhtHS2rHA.roa
Signing time: Sat 01 Jan 2022 16:01:30 +0000
ROA not before: Sat 01 Jan 2022 16:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213014
IP address blocks: 91.236.75.0/24 maxlen: 24
2a0d:f407:1021::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101616041 (0x60e89a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52b80aa938b27feb74a449f0ea4921b474b6ac70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0b:fb:d2:63:d7:2e:8e:64:73:b7:93:6d:65:
8d:14:8d:54:b5:22:8a:15:1c:0b:64:b5:9d:fe:50:
c6:3a:e2:d6:52:5e:7c:6c:e4:d9:c2:b2:17:7c:f6:
c2:ae:05:f3:1d:3d:1a:50:fe:c0:16:71:7f:a7:74:
f2:ea:6d:52:66:aa:6c:34:97:02:d2:6b:99:f8:de:
02:30:67:3a:47:32:33:be:f0:25:9d:0d:89:32:9f:
58:ce:fd:bb:48:68:b6:46:4c:91:7f:f0:db:bd:9b:
63:22:1b:66:7d:c7:2e:e0:3a:a4:6a:04:6f:64:ac:
14:32:b2:99:ea:42:84:50:1b:14:8b:8f:a2:75:8d:
ca:0c:96:7d:e2:17:eb:1b:1b:95:92:a4:34:a9:60:
1d:ad:ba:9d:d2:08:32:d3:a6:95:0d:cd:fd:61:70:
ff:b2:0e:fe:50:2d:04:14:94:eb:cb:6e:f8:ac:d1:
ff:28:f5:41:41:49:a8:94:28:4d:0e:dc:19:a3:10:
3f:2c:e2:d5:64:da:ce:41:0d:19:d7:ca:83:19:ab:
88:cd:c3:8c:fa:61:ed:1f:d8:31:a3:27:5d:9a:23:
15:0d:d4:f7:4b:0c:1d:0b:38:40:2a:8b:e7:42:c2:
ee:e9:db:bf:7b:eb:cc:89:e6:56:61:c7:31:be:60:
a2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:B8:0A:A9:38:B2:7F:EB:74:A4:49:F0:EA:49:21:B4:74:B6:AC:70
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/UrgKqTiyf-t0pEnw6kkhtHS2rHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.75.0/24
IPv6:
2a0d:f407:1021::/48
Signature Algorithm: sha256WithRSAEncryption
9b:f5:2f:44:01:0b:58:f1:e9:d2:50:54:8a:b0:09:bf:a8:54:
1c:fd:26:88:3f:90:f2:9a:f3:6b:19:17:b2:03:8d:92:68:31:
af:2e:a1:19:a1:b5:df:c0:08:93:23:0c:f7:35:76:cc:ab:23:
ef:d3:2d:e3:ce:6b:0a:08:ac:4e:fb:09:22:1a:d4:56:11:de:
00:8c:19:84:0e:8d:e5:09:15:0d:f6:c4:04:2d:1a:26:e5:7a:
63:70:4b:2f:ce:5a:6c:95:b7:ec:9b:6d:01:1d:2f:27:18:cd:
b6:d9:5f:2f:bd:b9:e3:1b:b8:39:3f:fa:a6:b0:a9:c9:79:87:
07:5d:50:bb:88:e0:ab:c7:e7:8e:23:c3:8d:8d:96:db:d9:6e:
cf:42:3b:91:0a:1c:f8:96:cf:6c:13:d3:d7:a1:88:da:3f:68:
74:6f:3f:c3:29:2d:99:5b:b1:87:7f:ab:c8:2d:d0:96:16:d2:
da:e1:37:04:2f:39:d3:ea:0c:b9:75:c0:98:7b:5a:26:c7:1b:
e6:f5:53:34:11:13:c5:62:a6:70:78:c3:52:84:b8:c3:21:4f:
60:de:5c:e3:04:95:b1:b7:eb:9f:d1:15:e1:fb:2e:ab:34:71:
8e:0e:ac:03:cf:38:d6:ba:28:c3:bb:d1:59:83:d7:ad:19:98:
bd:e6:0e:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org