Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/k1IHbyhu0-kkyGLuBW3WjsuoSKQ.roa
File: k1IHbyhu0-kkyGLuBW3WjsuoSKQ.roa (raw, json)
Hash identifier: MgUoQ9nvCqcp0mYdlYdRAcIcBXk/+WjpwzG9zKjXrlc=
Subject key identifier: 93:52:07:6F:28:6E:D3:E9:24:C8:62:EE:05:6D:D6:8E:CB:A8:48:A4
Certificate issuer: /CN=0011400d548fa21af819a0c6e23e77a6012eb5e9
Certificate serial: 07D86C19
Authority key identifier: 00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/k1IHbyhu0-kkyGLuBW3WjsuoSKQ.roa
Signing time: Mon 21 Mar 2022 07:51:17 +0000
ROA not before: Mon 21 Mar 2022 07:51:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210626
IP address blocks: 91.199.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131623961 (0x7d86c19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0011400d548fa21af819a0c6e23e77a6012eb5e9
Validity
Not Before: Mar 21 07:51:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9352076f286ed3e924c862ee056dd68ecba848a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:83:0c:36:1c:4f:c4:8c:c6:9a:2a:a1:4e:b1:
c6:e7:10:f7:e3:e6:e2:cd:13:61:7a:f7:b5:5f:96:
3b:49:a2:f9:25:e8:59:aa:1e:1e:b5:e3:fb:f5:37:
3e:58:b1:1c:66:3c:cb:ec:8b:e5:cc:5d:e2:d3:9e:
3b:ef:b8:34:ee:f3:52:7b:45:8c:7b:5d:49:e7:00:
8a:1c:a8:a8:42:80:d8:9d:bb:ba:13:39:1d:49:9b:
5c:77:58:98:2c:04:f5:51:8d:86:ef:03:fe:cf:27:
42:59:a0:89:8f:41:8e:2f:07:45:9d:91:ab:0a:2b:
d2:fc:fd:22:a9:e4:9b:1c:b0:3b:6d:dd:75:31:d6:
ed:79:21:6c:13:f0:f2:eb:5b:59:9f:4f:e4:a9:51:
47:58:ea:47:0f:1e:4d:f9:68:f5:88:5c:75:87:46:
c9:c5:d8:bd:c1:ff:43:cb:3c:23:01:fa:af:ca:64:
57:11:59:b8:0d:43:49:d1:8d:9b:e6:b0:c7:e2:ed:
54:0f:7d:2e:59:ce:21:90:9d:e1:d2:9d:8a:68:ee:
66:ad:d8:87:76:84:9c:e6:06:6b:03:cd:4e:49:9a:
56:54:1d:eb:8b:06:c7:d0:02:8a:bc:61:d8:2e:a9:
d4:9a:55:c3:e1:10:e7:a0:39:9e:18:d0:30:0e:e4:
72:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:52:07:6F:28:6E:D3:E9:24:C8:62:EE:05:6D:D6:8E:CB:A8:48:A4
X509v3 Authority Key Identifier:
keyid:00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/k1IHbyhu0-kkyGLuBW3WjsuoSKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/ABFADVSPohr4GaDG4j53pgEutek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.70.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:57:fe:02:09:4d:d5:00:08:97:95:ef:ce:c8:13:84:a4:9a:
16:ab:79:44:fd:7e:80:f4:68:55:79:7d:3d:6e:36:54:e9:db:
76:5c:bb:3c:d0:96:f4:e4:3a:4c:fa:eb:82:82:5d:e5:83:37:
1c:01:d7:a1:f5:13:27:21:88:b6:01:57:b2:44:d1:fe:a0:d0:
13:09:91:43:cd:10:a8:d8:9f:65:ba:37:dd:5e:ac:49:b6:ce:
b4:51:60:bf:ad:16:0d:f3:12:24:5a:88:01:e1:00:22:6f:9e:
65:2c:4b:65:a9:0d:59:9f:df:d5:68:ab:af:e0:01:84:89:84:
83:87:ce:dc:f0:3b:a9:bf:e3:60:3d:b9:5a:a3:c6:9e:c3:9f:
cd:47:dd:1b:0a:19:2c:75:64:01:9d:d9:55:62:8e:f4:74:57:
bc:62:54:87:be:66:49:bc:ad:c4:65:f3:74:b8:f3:fd:e0:b6:
f1:db:18:1f:9b:f2:24:01:44:00:71:07:c2:46:62:bb:4f:bc:
1a:3d:f0:00:f6:bb:dc:e5:4c:fb:c1:59:a7:53:aa:b8:f7:66:
f8:f5:52:d7:fb:b4:2a:05:66:4e:e4:b3:d0:ed:c3:f4:c0:7e:
6b:92:fb:62:a4:f0:29:55:62:ce:4d:9a:e2:e8:a2:78:52:f1:
f3:f8:c2:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:28 2024 by rpki-client on console-fra.rpki-client.org