Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6bb444-c0ac-4060-80d5-e3d427211a83/1/WJxrA3HeWzkCiqJ0kSMaL6gdTSw.roa
File: WJxrA3HeWzkCiqJ0kSMaL6gdTSw.roa (raw, json)
Hash identifier: 0AebCBaQn8myItSE0NsfhYXgkAqkMxr/s6v7SaPYa34=
Subject key identifier: 58:9C:6B:03:71:DE:5B:39:02:8A:A2:74:91:23:1A:2F:A8:1D:4D:2C
Certificate issuer: /CN=039916dc890f08fe55c75bb4439d6016704b7a61
Certificate serial: 0182EE2D4D926EF48CC247653874B11242A2
Authority key identifier: 03:99:16:DC:89:0F:08:FE:55:C7:5B:B4:43:9D:60:16:70:4B:7A:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5kW3IkPCP5Vx1u0Q51gFnBLemE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6bb444-c0ac-4060-80d5-e3d427211a83/1/WJxrA3HeWzkCiqJ0kSMaL6gdTSw.roa
Signing time: Tue 30 Aug 2022 09:55:22 +0000
ROA not before: Tue 30 Aug 2022 09:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51232
IP address blocks: 91.216.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:2d:4d:92:6e:f4:8c:c2:47:65:38:74:b1:12:42:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=039916dc890f08fe55c75bb4439d6016704b7a61
Validity
Not Before: Aug 30 09:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=589c6b0371de5b39028aa27491231a2fa81d4d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:75:86:91:45:42:38:9f:d5:f1:ef:a4:fe:08:
60:34:0c:21:dc:2b:6f:96:94:35:01:d1:3c:6c:e1:
ac:f9:bf:28:8b:cf:50:ae:9e:b9:2c:93:94:54:5e:
05:fa:f2:cc:24:5c:00:0a:41:70:f7:9e:23:ae:2a:
ed:83:c0:5b:d7:b6:b0:23:f6:2d:26:8c:5e:d8:88:
aa:ca:3a:39:4e:ed:09:a5:9d:5f:a5:c9:20:9c:16:
92:d6:54:12:77:34:40:76:92:8a:06:73:ed:73:f4:
1a:ab:7f:f5:3d:5a:80:f9:4b:b9:3a:a1:60:ae:5d:
db:dd:80:7d:1c:04:62:b3:f7:39:b9:7d:f3:d5:b4:
99:d6:7f:c9:19:bd:93:68:d1:d9:90:53:ba:3c:b1:
c9:c4:69:97:c3:95:fd:87:6d:f8:a7:67:89:45:85:
8a:e3:74:c0:f0:27:75:18:94:f8:92:7b:28:cd:e8:
9f:c6:50:ca:cb:db:8d:b3:b5:38:a6:2d:dd:75:26:
e1:4e:37:05:67:ed:3d:7b:5f:1c:b6:11:29:9a:23:
16:ff:e8:22:b0:fe:06:53:11:a2:fa:0b:c0:95:4d:
07:2a:3a:80:11:57:00:de:a0:69:26:ea:b1:9a:6a:
ad:f1:92:c0:1b:76:37:a2:96:d3:b9:a0:58:e6:5a:
c9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:9C:6B:03:71:DE:5B:39:02:8A:A2:74:91:23:1A:2F:A8:1D:4D:2C
X509v3 Authority Key Identifier:
keyid:03:99:16:DC:89:0F:08:FE:55:C7:5B:B4:43:9D:60:16:70:4B:7A:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5kW3IkPCP5Vx1u0Q51gFnBLemE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6bb444-c0ac-4060-80d5-e3d427211a83/1/WJxrA3HeWzkCiqJ0kSMaL6gdTSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6bb444-c0ac-4060-80d5-e3d427211a83/1/A5kW3IkPCP5Vx1u0Q51gFnBLemE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.60.0/24
Signature Algorithm: sha256WithRSAEncryption
36:30:f3:6f:5e:34:5e:03:f8:1d:f0:51:93:bc:60:e8:4d:15:
d4:79:c6:d4:83:47:a0:4b:1c:38:3b:79:c5:78:c7:68:45:98:
1c:7a:57:90:87:29:56:e9:00:c2:b7:7e:72:7f:24:c9:e0:b3:
85:0b:e0:38:ab:19:50:94:24:61:49:97:d5:f9:52:91:eb:eb:
a9:86:67:74:a0:76:74:f6:3d:d2:3f:22:7c:a1:9a:34:8c:58:
53:d5:f6:1c:e4:5f:9f:c5:49:d5:42:74:95:d3:74:b0:23:db:
63:48:87:eb:88:5c:54:d0:c4:7c:0e:80:5c:11:08:f8:f2:be:
3c:a0:cb:67:52:bd:3a:f7:7d:1c:e3:1d:5e:c5:d6:11:f9:dc:
74:9a:c2:71:fc:44:f1:0d:69:b0:fd:5e:b8:12:94:75:7b:4b:
68:64:22:9e:21:49:11:07:b9:61:44:b5:c9:7a:fd:25:f0:05:
83:63:39:84:52:d6:20:47:a0:8f:d2:ec:4f:31:39:d9:39:d3:
1c:2f:dc:69:f5:9c:94:02:6b:a2:02:fa:58:97:68:60:b4:9c:
ba:fc:33:7e:5d:a8:30:48:85:49:ec:55:6b:d3:dd:e6:5f:a7:
c4:46:2a:46:70:fe:78:eb:d6:d9:ee:26:1e:53:d5:09:50:05:
93:d6:e7:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:33 2024 by rpki-client on console-fra.rpki-client.org