Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/09d329-7ffe-451b-bc82-2831a4850645/1/3Tcd9Hn96wLBQRyPGg4dANzoLUg.roa
File: 3Tcd9Hn96wLBQRyPGg4dANzoLUg.roa (raw, json)
Hash identifier: JG0h0rUR4MqdDankx4cYdMKYdEKRecb5BFOhcZk0708=
Subject key identifier: DD:37:1D:F4:79:FD:EB:02:C1:41:1C:8F:1A:0E:1D:00:DC:E8:2D:48
Certificate issuer: /CN=39eea846551c6e419b947e0da107eecb0070419a
Certificate serial: 040D98AF
Authority key identifier: 39:EE:A8:46:55:1C:6E:41:9B:94:7E:0D:A1:07:EE:CB:00:70:41:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe6oRlUcbkGblH4NoQfuywBwQZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/09d329-7ffe-451b-bc82-2831a4850645/1/3Tcd9Hn96wLBQRyPGg4dANzoLUg.roa
Signing time: Sat 01 Jan 2022 10:05:05 +0000
ROA not before: Sat 01 Jan 2022 10:05:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21232
IP address blocks: 91.229.80.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67999919 (0x40d98af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39eea846551c6e419b947e0da107eecb0070419a
Validity
Not Before: Jan 1 10:05:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd371df479fdeb02c1411c8f1a0e1d00dce82d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:df:35:5d:1a:5c:70:a5:33:f2:c3:07:7e:
6b:14:52:66:ca:de:00:8a:4b:9b:cf:b0:c7:31:9e:
ad:14:fe:6c:34:37:f8:82:f2:14:11:fc:c7:bc:32:
99:9d:d7:16:7b:15:12:3e:f7:1e:b3:4c:85:8a:9d:
bc:cd:a2:df:2d:c7:e5:b1:72:3d:d7:76:89:e2:00:
53:c3:94:e1:64:6b:2a:63:41:3b:de:45:ae:69:99:
56:76:85:7d:34:89:13:21:d7:48:91:54:ce:25:4b:
e1:39:a1:0b:94:48:f5:83:83:cc:5a:86:71:52:ba:
91:c6:40:a7:2f:8f:d6:c3:d2:10:2b:01:65:f7:d4:
8d:7a:dd:9a:53:c9:7b:8e:15:7c:0c:3c:8d:33:3a:
d7:da:cf:21:46:8f:30:f3:b2:28:e2:42:61:78:d8:
b2:29:79:bb:b4:2e:49:dd:be:92:a7:e3:01:d9:c8:
51:44:cd:e5:97:04:e6:fa:ff:e7:d0:3a:6d:7d:a8:
1d:66:bc:ef:a9:91:f5:97:ab:8e:16:15:c2:76:00:
45:0f:2c:cb:89:90:3b:38:0c:aa:fb:cb:c3:f9:d1:
38:63:5b:c2:69:68:0d:a3:67:e9:f0:6a:4b:f7:6b:
2b:1b:2e:07:d3:99:51:85:f6:42:e5:1b:33:aa:0e:
eb:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:37:1D:F4:79:FD:EB:02:C1:41:1C:8F:1A:0E:1D:00:DC:E8:2D:48
X509v3 Authority Key Identifier:
keyid:39:EE:A8:46:55:1C:6E:41:9B:94:7E:0D:A1:07:EE:CB:00:70:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe6oRlUcbkGblH4NoQfuywBwQZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/09d329-7ffe-451b-bc82-2831a4850645/1/3Tcd9Hn96wLBQRyPGg4dANzoLUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/09d329-7ffe-451b-bc82-2831a4850645/1/Oe6oRlUcbkGblH4NoQfuywBwQZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.80.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:30:95:47:5c:ee:2f:06:11:c3:b5:2d:43:99:e1:75:46:4a:
bd:e2:63:e7:a2:06:2d:70:03:05:f6:de:49:25:2a:5a:c5:60:
e2:75:7b:68:51:73:3b:fc:4a:22:14:b1:8a:8f:d8:51:46:b6:
47:85:7b:4c:ed:c0:dc:f6:d0:14:30:f8:12:b4:3c:61:91:39:
10:59:29:79:7e:62:80:61:91:59:a4:48:32:bc:1f:f8:36:c0:
3d:28:13:d5:3f:7f:77:f5:5c:aa:08:16:31:81:61:8e:9a:8c:
10:5e:8d:cb:9a:b9:71:84:91:3f:76:bf:7b:58:83:19:68:48:
7b:9b:28:4f:8c:21:50:c3:79:2a:ca:73:00:27:86:e3:c7:a6:
f0:7e:76:75:86:f8:4b:cd:4b:8f:05:48:53:a4:2d:12:21:f9:
10:52:df:07:b4:c8:5e:bd:87:84:dd:cc:e5:1b:7e:86:e3:0f:
0b:5c:0e:5c:4f:7c:cf:4e:a5:22:35:f3:08:9a:7d:29:59:eb:
d5:61:38:d2:59:28:63:7f:4f:fe:8a:ee:8f:db:34:4f:cf:22:
22:c1:f0:a9:1a:f8:9e:a7:25:a3:0b:3f:c4:be:62:8d:7d:cf:
12:70:67:52:a3:0e:ae:12:e2:46:93:22:60:f1:51:06:cf:07:
6a:f2:21:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:48 2024 by rpki-client on console-fra.rpki-client.org