Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/9BMPdJlYNqD9o2JVUgxUk_RHw2g.roa
File: 9BMPdJlYNqD9o2JVUgxUk_RHw2g.roa (raw, json)
Hash identifier: AqeydGoNBxFyelywXrPQKfRgsFC0OYbEJGeC8hG3dCg=
Subject key identifier: F4:13:0F:74:99:58:36:A0:FD:A3:62:55:52:0C:54:93:F4:47:C3:68
Certificate issuer: /CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Certificate serial: 07A402D1
Authority key identifier: 70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/9BMPdJlYNqD9o2JVUgxUk_RHw2g.roa
Signing time: Sat 01 Jan 2022 04:58:46 +0000
ROA not before: Sat 01 Jan 2022 04:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51915
IP address blocks: 91.220.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128189137 (0x7a402d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Validity
Not Before: Jan 1 04:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4130f74995836a0fda36255520c5493f447c368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:62:44:55:b5:0a:00:38:09:75:5d:90:21:63:
09:f7:49:b6:99:95:a2:ed:64:32:de:27:a1:91:12:
4d:ea:b6:0d:64:23:13:bb:19:21:19:3f:62:42:d6:
0b:5c:f4:9e:03:3a:1a:68:4b:21:a3:b9:40:96:f5:
94:48:13:4e:9f:47:5b:f5:4b:30:0c:3b:1b:fd:f5:
b6:20:f5:a9:b2:91:c0:b3:91:6d:a0:2d:62:d7:a7:
b5:30:45:d2:33:e4:84:97:f5:3f:48:d0:03:bb:31:
98:99:d4:d3:f5:d3:73:06:ed:97:5d:69:38:1c:da:
f4:6f:2e:65:be:44:5c:cf:f9:b3:cb:6a:a4:b7:bb:
63:d8:f7:91:49:41:7a:4c:ac:8d:34:aa:32:71:74:
e4:a2:86:b2:85:94:10:de:8e:3f:35:aa:cd:a1:4c:
d2:35:c0:3e:3b:0e:08:e8:8e:69:7b:c5:7e:a5:89:
60:07:01:41:a7:15:c7:50:e7:fa:07:69:5b:88:f3:
e1:84:6b:f2:b9:11:16:ca:88:3a:45:7f:79:84:a8:
18:4a:b1:e2:47:a9:30:15:ad:57:33:d8:74:04:6c:
89:27:03:7d:ed:8b:b8:57:29:cb:52:53:62:13:87:
f2:1b:05:18:1c:4a:ef:05:49:fe:ae:0e:b3:63:f6:
24:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:13:0F:74:99:58:36:A0:FD:A3:62:55:52:0C:54:93:F4:47:C3:68
X509v3 Authority Key Identifier:
keyid:70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/9BMPdJlYNqD9o2JVUgxUk_RHw2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.182.0/24
Signature Algorithm: sha256WithRSAEncryption
46:2f:75:1f:31:b5:7b:a2:6e:6b:a7:89:bd:39:e6:a6:76:f2:
55:07:10:0c:2f:dc:19:27:e4:65:de:0f:72:97:a2:0e:67:f1:
5b:51:0d:20:bc:74:2e:20:40:44:61:ec:3c:f4:87:13:29:df:
1e:b0:47:8d:da:43:e9:4f:9f:21:64:a8:3a:77:c5:87:02:d7:
4b:3e:58:27:09:36:d3:f7:df:61:f4:4a:c6:3c:c5:67:a1:c8:
af:da:17:ec:7a:b9:7d:1a:40:7e:3f:dc:f3:03:b2:7b:df:a8:
2b:00:c7:4c:82:f7:26:ab:8d:31:e2:c7:72:d2:8a:2d:ae:df:
a0:d6:6f:4d:61:2a:03:a1:58:e5:de:f8:4b:36:df:6b:6f:42:
4e:8d:02:2b:be:1d:0a:67:46:9c:ff:49:33:dd:2c:8a:2a:b7:
4e:cb:93:57:47:17:6f:57:6c:8d:5c:ef:23:f3:9b:4a:07:3d:
96:4e:b2:1e:40:04:5b:7c:fc:50:42:cf:84:a7:e4:00:f0:5e:
f0:bf:91:1c:33:c6:19:55:1e:53:bd:a0:1d:1d:b7:f0:2c:1c:
50:62:9e:d0:35:88:f5:78:ce:f7:1e:06:23:bb:2b:2f:48:95:
1a:d0:71:07:10:99:58:c3:a9:82:2d:65:71:f5:9c:9b:45:3c:
07:3a:ca:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:31 2024 by rpki-client on console-fra.rpki-client.org