Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/b4po4zQ3edQ2CIGLXW4OidJ2_p8.roa
File: b4po4zQ3edQ2CIGLXW4OidJ2_p8.roa (raw, json)
Hash identifier: MTH9Ee99oV/+7tDR/Qk2oSMrTj/3Y/5C3nU0kN4aw94=
Subject key identifier: 6F:8A:68:E3:34:37:79:D4:36:08:81:8B:5D:6E:0E:89:D2:76:FE:9F
Certificate issuer: /CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Certificate serial: 0182439214F807020D6F56E64401DE048489
Authority key identifier: 84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/b4po4zQ3edQ2CIGLXW4OidJ2_p8.roa
Signing time: Thu 28 Jul 2022 06:50:23 +0000
ROA not before: Thu 28 Jul 2022 06:50:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44709
IP address blocks: 91.198.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:43:92:14:f8:07:02:0d:6f:56:e6:44:01:de:04:84:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8466e91742dad1b9f4c796b23b37eb7acd858161
Validity
Not Before: Jul 28 06:50:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f8a68e3343779d43608818b5d6e0e89d276fe9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:24:ac:e2:9a:16:d6:ac:21:a1:53:41:8f:d0:
64:fd:d6:f3:30:24:81:fd:e8:fd:81:e0:67:a8:a2:
c4:66:92:f2:26:8f:a2:e6:fd:4c:e8:ce:d3:6b:a1:
85:b2:14:31:91:0a:7b:8f:62:42:ef:49:10:67:b5:
02:2e:7b:6e:ba:c7:11:7c:73:2b:c0:65:3d:ef:5a:
ec:e1:d4:4e:3e:68:75:22:aa:db:38:63:61:6c:60:
fb:06:cf:5c:d6:b1:71:42:b4:b0:25:6a:c7:cf:4c:
a4:f0:69:e4:19:6c:7a:84:ff:aa:8a:05:ad:27:54:
ce:dc:84:1a:d7:0e:c2:05:46:97:50:e9:3a:da:4e:
29:fa:05:b0:e3:a3:b5:88:f2:c0:7b:d4:d5:9c:cc:
bf:6d:e9:8f:73:6b:e8:26:ec:37:e5:28:7e:08:0e:
ce:79:75:ff:e9:5c:e5:d6:9e:fe:89:48:9f:bf:b6:
54:24:f5:6c:88:1a:61:b3:bd:1f:9b:c5:bb:4f:e1:
b3:f8:76:f9:89:ab:a4:9e:6f:a2:ba:e6:8d:8d:94:
43:9a:39:6a:f0:eb:d7:61:7f:3a:10:bf:8c:81:e8:
ff:65:3b:8c:37:fe:f3:c1:72:a5:2d:5f:3d:88:07:
31:30:f3:c1:ac:e7:e4:8f:d2:24:0e:bb:81:ee:b6:
dd:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:8A:68:E3:34:37:79:D4:36:08:81:8B:5D:6E:0E:89:D2:76:FE:9F
X509v3 Authority Key Identifier:
keyid:84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/b4po4zQ3edQ2CIGLXW4OidJ2_p8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.70.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:74:e8:14:14:11:07:e2:c4:00:26:6d:5c:0d:52:b9:ff:a4:
67:81:7c:e8:d4:f4:e4:e4:d2:bf:96:65:65:ce:6e:d4:c1:3b:
d6:ba:5a:5a:8e:f8:76:c9:5a:7e:20:86:88:0c:29:d7:7b:e4:
ca:e0:85:10:0a:09:39:5e:d1:eb:94:49:bd:3a:c4:a4:5c:5c:
00:6c:df:85:d5:56:7e:fd:17:67:af:3a:cb:0d:3e:a0:46:58:
f6:b3:4a:e4:a5:c6:92:3a:bb:20:e7:c0:33:eb:f6:7e:09:ae:
1c:9b:e6:29:ac:c3:fa:12:ec:3f:e7:0c:5f:85:ee:b3:69:bd:
10:76:94:4a:0c:1e:b2:c8:0b:ad:b3:72:2a:4e:67:34:b1:b5:
92:c6:9b:cd:4b:54:8e:a2:86:04:18:04:04:65:32:96:d0:e4:
c3:b2:8d:48:98:af:fb:62:c9:c3:b2:f6:f6:14:5b:a1:99:03:
4a:53:a0:20:3b:8d:ae:e6:21:35:4e:4f:8b:88:e5:0d:35:3a:
c5:f1:8b:96:3e:a6:21:bc:08:c1:55:a3:63:59:54:3c:8f:65:
25:ad:08:90:a6:30:fb:29:0f:a0:2f:42:aa:c1:47:39:3d:b4:
00:9b:00:98:39:81:fc:40:03:bb:29:c2:c2:1e:a3:f1:a3:36:
57:6a:91:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:04 2024 by rpki-client on console-fra.rpki-client.org