Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/mzEusD65kuoeB1zk11lwFkyLRac.roa
File: mzEusD65kuoeB1zk11lwFkyLRac.roa (raw, json)
Hash identifier: D85/Yofw2GblqC3b/IyuoY4Quk41CjJa2x0iK3Afd5I=
Subject key identifier: 9B:31:2E:B0:3E:B9:92:EA:1E:07:5C:E4:D7:59:70:16:4C:8B:45:A7
Certificate issuer: /CN=a389e7035b08e181a341f37eda7343d23f1cafa4
Certificate serial: 055C174E
Authority key identifier: A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/mzEusD65kuoeB1zk11lwFkyLRac.roa
Signing time: Sat 01 Jan 2022 03:02:23 +0000
ROA not before: Sat 01 Jan 2022 03:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49788
IP address blocks: 91.240.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89921358 (0x55c174e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a389e7035b08e181a341f37eda7343d23f1cafa4
Validity
Not Before: Jan 1 03:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b312eb03eb992ea1e075ce4d75970164c8b45a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cf:ed:5f:17:06:cd:67:d8:e9:9a:40:8c:7f:
eb:b0:5d:af:17:d9:ff:de:4d:9e:9a:18:32:79:88:
d0:cd:74:47:e7:30:0c:5d:0b:54:0b:9a:dd:07:fe:
b8:44:c4:e9:67:c3:6b:1a:dc:1f:f2:7a:07:03:60:
41:54:3a:f3:cb:56:3e:e8:45:df:97:a6:93:42:dd:
ea:54:f9:9b:f7:d6:80:3b:da:6a:3e:a7:27:f1:9d:
d4:de:b1:13:85:a3:5f:96:2c:8f:40:c9:eb:1c:f3:
01:73:13:19:9a:cd:ba:8e:da:62:2c:82:b6:d9:27:
36:d7:ed:fb:56:a7:94:23:93:57:73:37:77:fd:64:
1f:a4:fa:a6:d3:ba:25:db:a3:e3:57:0f:ce:87:79:
71:98:8f:99:01:0a:f7:38:93:dc:c5:aa:ef:8d:51:
87:aa:0a:03:b6:6f:2d:34:2a:b3:d7:0a:80:e6:3e:
cd:2d:7f:ce:09:cd:95:b3:b0:d7:42:4f:56:8a:1f:
31:ac:e3:79:86:5c:d0:97:47:b6:ad:52:1e:78:74:
28:db:e2:a8:de:99:18:dc:4e:e6:32:46:b2:5c:92:
ea:88:29:d4:11:e5:7b:53:82:78:d7:3b:0c:9b:ea:
bb:3b:e2:d0:5b:ff:9a:fb:89:51:3f:21:ad:94:bc:
7b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:31:2E:B0:3E:B9:92:EA:1E:07:5C:E4:D7:59:70:16:4C:8B:45:A7
X509v3 Authority Key Identifier:
keyid:A3:89:E7:03:5B:08:E1:81:A3:41:F3:7E:DA:73:43:D2:3F:1C:AF:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4nnA1sI4YGjQfN-2nND0j8cr6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/mzEusD65kuoeB1zk11lwFkyLRac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f053cd-1d79-43a1-9aab-0e72416b4dc7/1/o4nnA1sI4YGjQfN-2nND0j8cr6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.204.0/24
Signature Algorithm: sha256WithRSAEncryption
01:e1:74:15:59:7c:14:45:1a:67:fa:0d:f5:06:38:19:76:8f:
a9:0c:fc:09:15:10:7d:02:d3:90:56:6e:e6:46:0a:76:44:2c:
ad:c0:bd:3b:04:46:f1:01:53:50:1e:9e:21:87:7f:17:b0:10:
84:9d:da:77:31:98:3b:9c:95:47:1b:70:c3:b2:b0:5d:fc:e2:
b3:0e:c1:7c:b3:49:0e:c8:00:39:3f:51:b0:52:67:c0:01:bb:
fd:5e:10:68:01:cc:16:f9:98:1f:4c:7a:da:9c:8d:5f:fd:de:
a2:8b:ae:3d:42:fb:3f:a0:2d:38:c1:15:f4:6f:af:09:e0:69:
fb:1e:88:6a:44:22:ff:e6:fa:06:9e:4a:fa:af:9a:b3:ff:08:
f1:7a:52:31:b8:9c:df:61:6b:e8:35:02:93:94:1c:97:0e:a0:
ab:ef:41:c0:7d:4b:a0:44:da:b9:5b:50:53:59:a2:a9:a3:6e:
ae:a9:f2:35:df:48:b9:55:7a:42:05:84:4d:da:d4:cb:c5:8b:
79:95:9e:58:2b:45:75:c0:17:25:92:12:65:2b:17:bd:dd:2b:
2d:4f:e5:f1:e8:63:19:99:f5:e0:5a:04:5f:15:4f:79:45:64:
14:00:78:f8:2e:38:9c:73:c1:53:2a:1c:b8:df:6d:50:83:ca:
31:d8:b3:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:59 2024 by rpki-client on console-fra.rpki-client.org