Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/5hnyiXDbRy9d0_qrgxdMicknsPw.roa
File: 5hnyiXDbRy9d0_qrgxdMicknsPw.roa (raw, json)
Hash identifier: IWS/ucFJpLOakkvMQ+E++dogEhnEcD1aZLgDBUX1lGU=
Subject key identifier: E6:19:F2:89:70:DB:47:2F:5D:D3:FA:AB:83:17:4C:89:C9:27:B0:FC
Certificate issuer: /CN=ae3cc567febfe34878aeb913861cf0600a283903
Certificate serial: 07A0451E
Authority key identifier: AE:3C:C5:67:FE:BF:E3:48:78:AE:B9:13:86:1C:F0:60:0A:28:39:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjzFZ_6_40h4rrkThhzwYAooOQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/5hnyiXDbRy9d0_qrgxdMicknsPw.roa
Signing time: Sat 01 Jan 2022 09:02:00 +0000
ROA not before: Sat 01 Jan 2022 09:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51881
IP address blocks: 91.220.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127943966 (0x7a0451e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae3cc567febfe34878aeb913861cf0600a283903
Validity
Not Before: Jan 1 09:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e619f28970db472f5dd3faab83174c89c927b0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:71:b9:d2:86:34:98:ee:c8:89:44:9a:0c:05:
85:62:53:07:e1:71:66:25:f2:d9:1e:65:f9:ed:1a:
7d:94:60:1a:84:cf:58:f0:ef:06:f6:2c:f8:5a:a9:
33:e2:27:ba:16:ae:83:a8:b6:78:94:02:37:b7:09:
a3:c7:f9:49:e4:1b:75:fa:cd:be:24:df:39:fc:e7:
e5:05:b0:91:bd:fd:48:8c:ed:45:86:4c:16:2e:5e:
22:40:4f:44:3b:1f:95:3f:f0:41:88:e4:17:0d:1b:
18:83:25:6d:df:f8:fb:11:e2:24:23:99:a4:aa:5d:
0f:ba:4a:4c:0a:d4:bc:0b:98:d3:c7:72:0e:7b:1c:
6a:31:f0:28:c0:d1:6f:f8:7d:b7:63:24:63:75:44:
f3:4b:4e:49:56:2e:5a:52:11:23:ad:05:4a:ca:e3:
2b:7f:49:1e:4e:57:ba:62:7d:ef:48:4d:e9:9a:0d:
2a:0d:3b:d6:55:e8:55:d2:ab:be:05:8a:8c:51:32:
94:7f:56:42:43:c5:3c:eb:89:a1:74:7f:01:2c:50:
7a:57:d1:4d:04:95:e8:03:dc:fe:fe:1d:27:56:38:
1e:2f:13:6f:28:ef:bb:71:40:bc:b5:1d:9e:0d:06:
36:f3:77:77:12:e6:a1:2f:64:6a:65:ba:02:42:d2:
f7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:19:F2:89:70:DB:47:2F:5D:D3:FA:AB:83:17:4C:89:C9:27:B0:FC
X509v3 Authority Key Identifier:
keyid:AE:3C:C5:67:FE:BF:E3:48:78:AE:B9:13:86:1C:F0:60:0A:28:39:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjzFZ_6_40h4rrkThhzwYAooOQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/5hnyiXDbRy9d0_qrgxdMicknsPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/299278-c57c-4354-b966-9fb224be8b08/1/rjzFZ_6_40h4rrkThhzwYAooOQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.167.0/24
Signature Algorithm: sha256WithRSAEncryption
62:37:d3:1a:9d:41:fd:b2:13:76:87:9c:1b:f7:a9:3f:cf:f3:
19:08:89:3f:25:9f:1b:ad:1f:18:e8:57:63:c6:f2:d5:0e:c3:
b9:4f:19:92:9f:70:ae:bd:5f:cd:aa:18:65:c3:b5:58:d7:74:
75:18:a4:17:43:fc:fb:d0:37:d8:b2:29:be:19:49:56:ee:ba:
1d:2f:a6:9b:2e:42:67:ba:0c:fa:74:0d:c8:33:3d:0c:0a:db:
e0:8b:f1:27:b9:6d:6c:c7:da:52:87:ba:b6:4f:bd:20:83:c4:
93:44:a1:b4:e7:b8:96:10:22:79:36:98:77:8e:64:70:c6:d1:
cb:ca:c1:03:a2:33:5f:c1:6b:ec:98:53:c7:f0:e6:a5:fc:17:
ff:45:9b:44:66:e8:42:7d:82:e0:44:66:d1:0d:b7:99:b5:51:
fc:81:75:55:12:6d:68:a2:32:0d:67:4d:76:4d:c1:c4:1b:b6:
71:6b:d7:0d:7d:b4:e6:75:6a:d4:4d:10:2c:b2:7b:b8:40:f5:
27:65:08:54:f9:c0:dc:5f:be:2c:71:f9:0e:15:3f:1b:7c:7b:
1a:1a:36:ce:33:fa:88:c9:0f:17:88:3d:3b:bb:62:bf:55:8f:
1f:5c:79:4f:08:fc:9c:df:ce:ae:35:86:4c:96:61:2d:60:07:
69:c6:b1:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:50 2024 by rpki-client on console-fra.rpki-client.org