Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/rHStmnu9S-VKfHFD8c6m50omIus.roa
File: rHStmnu9S-VKfHFD8c6m50omIus.roa (raw, json)
Hash identifier: l519a6zRj0eO8yvaW1vH9k3s6JL5IrCwoVW4be7C0eo=
Subject key identifier: AC:74:AD:9A:7B:BD:4B:E5:4A:7C:71:43:F1:CE:A6:E7:4A:26:22:EB
Certificate issuer: /CN=aca2f7748fe363dc5939e9b854fc00403130eba5
Certificate serial: 032482C1
Authority key identifier: AC:A2:F7:74:8F:E3:63:DC:59:39:E9:B8:54:FC:00:40:31:30:EB:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKL3dI_jY9xZOem4VPwAQDEw66U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/rHStmnu9S-VKfHFD8c6m50omIus.roa
Signing time: Sat 01 Jan 2022 05:58:50 +0000
ROA not before: Sat 01 Jan 2022 05:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5391
IP address blocks: 91.239.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52724417 (0x32482c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2f7748fe363dc5939e9b854fc00403130eba5
Validity
Not Before: Jan 1 05:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac74ad9a7bbd4be54a7c7143f1cea6e74a2622eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:11:48:71:ad:62:b7:94:f9:44:79:c7:e8:03:
19:e5:53:19:ad:d3:fb:f2:8d:f5:95:52:64:1a:df:
7a:96:6a:7b:06:6d:ec:ee:9b:eb:1a:cb:13:d9:35:
9c:c7:ff:08:e7:96:be:1a:76:c7:e0:70:31:eb:a4:
5b:06:c9:07:63:fd:9e:b5:31:0a:38:90:4e:e3:6b:
a5:69:78:0e:b9:03:52:7d:19:e1:fa:95:46:e0:8e:
c2:d0:4c:36:e1:f4:dc:10:07:b2:c9:5f:81:94:d2:
f7:d0:f1:d8:13:21:f1:08:27:3d:2e:b7:50:c4:88:
54:12:fd:be:14:06:16:9e:51:6e:54:30:7d:b6:d9:
6e:d2:32:79:5c:df:e9:26:fb:a3:57:a5:ea:a5:ab:
83:17:6e:69:58:9e:be:c5:ac:ea:ab:16:2e:e9:71:
97:cb:23:e2:35:4c:b4:b0:de:06:d4:b8:9a:7e:b7:
0a:d0:f8:7c:94:30:56:f4:eb:7e:a9:36:fc:6a:4c:
19:63:c0:2c:87:c6:3d:e8:58:a5:9b:2a:6f:47:1c:
d2:c2:f7:d8:0e:be:59:44:98:9d:55:e7:97:02:b1:
58:e3:1a:91:3b:ce:1d:d8:f9:e5:46:d9:21:35:63:
d9:ea:0f:e6:2e:e6:9a:fb:92:20:c5:21:03:da:94:
28:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:74:AD:9A:7B:BD:4B:E5:4A:7C:71:43:F1:CE:A6:E7:4A:26:22:EB
X509v3 Authority Key Identifier:
keyid:AC:A2:F7:74:8F:E3:63:DC:59:39:E9:B8:54:FC:00:40:31:30:EB:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKL3dI_jY9xZOem4VPwAQDEw66U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/rHStmnu9S-VKfHFD8c6m50omIus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/rKL3dI_jY9xZOem4VPwAQDEw66U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.120.0/24
Signature Algorithm: sha256WithRSAEncryption
37:85:f8:60:81:03:72:16:97:1a:4a:fb:48:52:46:6d:f3:fa:
1b:b9:60:ea:9c:8e:91:55:62:55:cf:33:3e:76:77:1e:78:9c:
8e:7c:c0:81:27:cd:dd:c6:f4:54:e4:17:23:ab:b0:8b:c8:03:
04:1b:a8:d8:e7:ed:24:2f:c4:e8:c1:bc:7e:f3:15:62:4e:f9:
55:24:4c:f4:47:30:1a:60:f7:0c:8d:04:64:02:0a:f7:ef:fa:
e6:c6:af:06:c6:9d:34:9a:83:39:27:e3:bd:2a:2f:6c:f3:ba:
a7:80:f5:19:3f:09:c8:94:17:4e:50:05:a2:ff:23:71:92:60:
59:3f:46:54:e2:e8:52:7d:8c:92:77:05:dd:06:b7:2d:a3:f3:
36:4a:70:8f:e9:c8:8e:4f:12:0f:b6:57:b1:bf:84:b3:9c:68:
9e:11:1e:8e:be:61:6f:4f:d8:c9:11:81:6f:20:fd:7d:91:33:
93:55:65:a9:a6:0c:0e:95:7d:03:d0:54:c5:ff:81:2b:b9:a4:
73:2f:60:bc:21:92:e0:03:b2:e7:ac:ea:3d:c6:a7:20:e6:ff:
9f:86:66:58:41:06:4f:e1:83:ad:d5:3a:95:9c:2f:9a:f4:f2:
38:f2:72:fc:a2:68:94:0d:db:2c:e5:bd:cc:68:17:24:de:7b:
94:7a:99:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:52 2024 by rpki-client on console-ams.rpki-client.org