Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/ujpBc5HRo31T9haAWenXqQdFdc4.roa
File: ujpBc5HRo31T9haAWenXqQdFdc4.roa (raw, json)
Hash identifier: QLOlbGoXSuLH6vvscoKJ8gitCStz6bb4PUam3kgArgI=
Subject key identifier: BA:3A:41:73:91:D1:A3:7D:53:F6:16:80:59:E9:D7:A9:07:45:75:CE
Certificate issuer: /CN=eb57a2c600b69e0bbaee2c68996792f6286abfe7
Certificate serial: 04992E
Authority key identifier: EB:57:A2:C6:00:B6:9E:0B:BA:EE:2C:68:99:67:92:F6:28:6A:BF:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61eixgC2ngu67ixomWeS9ihqv-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/ujpBc5HRo31T9haAWenXqQdFdc4.roa
Signing time: Thu 21 Apr 2022 19:05:56 +0000
ROA not before: Thu 21 Apr 2022 19:05:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 91.212.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 301358 (0x4992e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb57a2c600b69e0bbaee2c68996792f6286abfe7
Validity
Not Before: Apr 21 19:05:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba3a417391d1a37d53f6168059e9d7a9074575ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0d:5d:d9:73:d8:0b:40:1f:dd:dc:ec:7a:48:
88:87:01:7b:e1:af:17:b9:ad:0d:bb:ff:01:3c:23:
22:73:5b:0e:c0:86:bf:84:35:1d:5e:0d:ee:88:87:
1b:c0:5a:84:27:d8:35:9a:f4:e9:9e:af:27:52:fd:
ed:99:d7:8a:89:e0:dd:45:5d:a8:c7:09:8a:83:1c:
21:10:ae:9d:41:53:d1:02:99:b7:9d:2a:dc:28:97:
30:77:4f:0e:90:d4:cf:3c:bf:70:ac:2f:4c:8e:7d:
33:fe:64:9a:fe:9b:99:49:8c:1d:38:9d:4f:a4:79:
49:3e:9c:8c:46:f7:00:65:21:0b:ee:73:f2:f7:c7:
b2:37:14:97:6b:4b:62:b5:47:61:26:1e:f9:f7:73:
4f:a1:53:d5:a5:57:3b:9c:93:f5:9d:bd:54:b9:5b:
9c:42:3d:4a:5a:d6:e1:8e:1d:a1:44:88:e4:37:53:
69:0e:8a:cb:88:68:a2:86:d5:79:40:23:6c:22:6e:
95:0d:32:cb:86:94:ee:e1:4d:b0:24:a7:0e:1b:46:
58:ab:79:5b:27:8a:fc:70:e2:f9:f0:ed:64:11:e4:
99:d2:cf:52:a5:91:0e:39:a2:3b:bb:a2:14:de:71:
b1:9a:1b:8f:cc:c9:41:36:7b:56:8f:94:c0:a7:25:
38:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3A:41:73:91:D1:A3:7D:53:F6:16:80:59:E9:D7:A9:07:45:75:CE
X509v3 Authority Key Identifier:
keyid:EB:57:A2:C6:00:B6:9E:0B:BA:EE:2C:68:99:67:92:F6:28:6A:BF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61eixgC2ngu67ixomWeS9ihqv-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/ujpBc5HRo31T9haAWenXqQdFdc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/61eixgC2ngu67ixomWeS9ihqv-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.216.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:bf:8e:80:9d:c2:e5:7b:4c:12:bd:0a:63:be:76:18:78:03:
e5:9c:33:bf:61:1b:96:4f:63:93:f7:f1:f8:89:95:82:2e:cd:
b0:98:17:85:c0:c8:b1:af:9d:50:30:f3:f4:52:8b:9d:51:79:
cb:0c:3a:b1:bf:15:5f:9b:70:a6:5a:5c:2c:bb:05:c5:17:7f:
bc:2d:fa:44:b1:6a:d0:ca:c3:5c:5c:ff:ad:1b:4a:14:cd:0a:
7a:31:95:76:e6:e2:42:d1:41:b4:b5:ff:26:fe:bd:af:d3:70:
af:e9:85:17:44:c2:30:1a:fb:c9:a5:42:ae:cf:2c:f9:07:fb:
4d:05:90:92:e9:dd:de:21:9e:38:7d:f2:56:b2:43:15:c6:8a:
bf:6d:c1:03:2a:98:8d:62:50:22:55:d8:7d:b0:23:f0:13:5f:
23:0b:d9:29:a7:4f:77:14:44:54:61:19:77:52:37:af:48:16:
ad:16:7c:15:6e:fa:fc:2c:3d:00:7d:91:51:69:1a:63:df:ff:
9d:9b:81:bf:36:83:30:33:7a:c3:b8:0c:21:78:50:6f:d5:f0:
15:dc:96:27:a3:50:87:af:f7:d5:17:e2:44:d3:8c:1b:49:98:
51:6e:ce:d1:f5:04:51:29:45:99:c9:c1:32:1e:f7:fa:26:b2:
73:a9:ad:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:01 2023 by rpki-client on console-fra.rpki-client.org