Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/DwrBj4Uizi5eOrqUNNfskAOR37c.roa
File: DwrBj4Uizi5eOrqUNNfskAOR37c.roa (raw, json)
Hash identifier: llfKKaDix3/sVVKUjzT4TJrf/ylzM+eoBz7J/gzUaSM=
Subject key identifier: 0F:0A:C1:8F:85:22:CE:2E:5E:3A:BA:94:34:D7:EC:90:03:91:DF:B7
Certificate issuer: /CN=aca2f7748fe363dc5939e9b854fc00403130eba5
Certificate serial: 03254208
Authority key identifier: AC:A2:F7:74:8F:E3:63:DC:59:39:E9:B8:54:FC:00:40:31:30:EB:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKL3dI_jY9xZOem4VPwAQDEw66U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/DwrBj4Uizi5eOrqUNNfskAOR37c.roa
Signing time: Sat 01 Jan 2022 05:58:51 +0000
ROA not before: Sat 01 Jan 2022 05:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212204
IP address blocks: 91.239.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52773384 (0x3254208)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2f7748fe363dc5939e9b854fc00403130eba5
Validity
Not Before: Jan 1 05:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f0ac18f8522ce2e5e3aba9434d7ec900391dfb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1a:3f:cb:55:35:38:14:6a:d1:ba:23:79:c7:
42:32:fd:e2:0b:cd:2d:40:c6:db:05:58:6f:43:5b:
f5:e1:88:47:ae:ce:f4:ae:64:59:d9:e0:e9:c0:ab:
63:92:15:00:20:cf:8f:6b:19:c3:0f:fd:23:65:04:
b3:aa:99:57:da:c4:71:b3:7b:2a:1d:74:ec:7e:23:
2f:c4:73:1d:e2:45:f8:68:72:20:97:11:8f:2a:3f:
8f:6f:1d:0e:a2:47:ed:49:93:8f:54:88:33:fd:df:
e1:f6:69:20:7b:a0:f7:90:c5:eb:38:48:5e:8a:37:
68:a5:0a:b5:1f:8d:92:93:61:2f:c9:70:d1:b5:03:
ea:54:d6:9d:e4:bc:64:72:28:ba:a5:45:22:40:d7:
ac:2c:d0:8b:17:3a:fa:54:73:d4:55:36:4d:8a:3e:
e0:75:1d:a4:c4:53:c1:62:8d:c2:ae:ca:a5:86:d6:
cf:1f:2c:cf:d7:17:13:f1:b3:23:60:e5:bf:7e:4d:
a3:66:f5:f8:73:f4:f3:b7:32:e5:74:51:81:a3:57:
d0:e6:63:3b:25:37:13:a4:90:f2:b4:65:d5:28:d2:
69:24:ec:af:4a:ed:99:06:73:c7:7c:75:00:aa:15:
1c:98:8e:55:20:68:20:58:3c:07:7b:91:6b:4e:5b:
5d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:0A:C1:8F:85:22:CE:2E:5E:3A:BA:94:34:D7:EC:90:03:91:DF:B7
X509v3 Authority Key Identifier:
keyid:AC:A2:F7:74:8F:E3:63:DC:59:39:E9:B8:54:FC:00:40:31:30:EB:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKL3dI_jY9xZOem4VPwAQDEw66U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/DwrBj4Uizi5eOrqUNNfskAOR37c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/rKL3dI_jY9xZOem4VPwAQDEw66U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.120.0/24
Signature Algorithm: sha256WithRSAEncryption
26:10:41:eb:58:59:c3:bb:d9:e1:14:8a:4b:c9:70:07:a5:68:
f3:68:b8:c5:78:c8:6b:29:ff:f1:6a:9d:34:e0:ea:cf:f2:e5:
7c:ef:c4:fc:2a:b7:cc:e8:5c:9e:87:07:24:73:b2:09:e9:da:
17:0b:b7:06:b8:fd:9d:69:06:b8:db:17:61:49:d3:1a:22:26:
d5:70:19:8f:e1:80:07:d3:ae:29:53:17:6e:9a:62:55:de:48:
b4:ee:66:f8:73:fa:92:bd:8b:fe:97:3e:82:22:61:6d:1e:72:
db:09:41:c3:56:d3:ac:f9:ec:62:6a:c5:fc:70:8a:d9:e3:17:
fe:3f:56:39:64:e8:70:18:c2:3b:3e:14:f7:17:ce:a2:95:61:
58:3b:96:f6:d5:35:26:41:1c:92:9a:69:c4:2e:be:7a:38:0c:
cb:0a:d6:10:d0:f6:8f:48:83:2d:b5:03:dd:41:e4:56:9a:f8:
8a:d1:37:ff:4e:2e:9f:48:56:a7:f8:e8:f7:2e:66:a8:46:48:
8b:b4:41:d9:26:23:01:bf:78:a4:2d:05:95:cf:1c:44:54:64:
f7:e3:09:29:25:f2:5f:1b:f2:1c:4c:dc:fa:35:01:d4:a0:d0:
36:75:0a:e9:a3:07:e5:06:fc:2a:a3:bb:b9:40:38:5f:06:a3:
89:c8:ac:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:40 2024 by rpki-client on console-fra.rpki-client.org