Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/e0f8c6-aadc-4c31-b92b-1a18738b4741/1/PoBV9VKdh0gT8ybF587EnL4lBuc.roa
File: PoBV9VKdh0gT8ybF587EnL4lBuc.roa (raw, json)
Hash identifier: u1BXftXfPIUohBcJCi8U3JAr4DsRa12HV6i1t1qf/5o=
Subject key identifier: 3E:80:55:F5:52:9D:87:48:13:F3:26:C5:E7:CE:C4:9C:BE:25:06:E7
Certificate issuer: /CN=361adf57c8dcb7bfd34e9aecd83e36342ec3a3c9
Certificate serial: 0431DB49
Authority key identifier: 36:1A:DF:57:C8:DC:B7:BF:D3:4E:9A:EC:D8:3E:36:34:2E:C3:A3:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NhrfV8jct7_TTprs2D42NC7Do8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/e0f8c6-aadc-4c31-b92b-1a18738b4741/1/PoBV9VKdh0gT8ybF587EnL4lBuc.roa
Signing time: Sat 01 Jan 2022 05:00:25 +0000
ROA not before: Sat 01 Jan 2022 05:00:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198812
IP address blocks: 91.239.147.0/24 maxlen: 24
2001:67c:1240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70376265 (0x431db49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=361adf57c8dcb7bfd34e9aecd83e36342ec3a3c9
Validity
Not Before: Jan 1 05:00:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e8055f5529d874813f326c5e7cec49cbe2506e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d7:f8:f6:bf:1e:88:c9:40:af:9c:4b:d9:79:
a1:a3:0c:67:d0:c3:b2:7d:5f:d0:bb:7d:22:f8:c1:
9f:c6:38:19:00:67:02:99:b6:24:8e:93:dc:34:08:
96:50:ed:36:a6:b3:12:5b:2f:7e:4c:8f:2b:17:53:
2d:25:c9:52:49:a4:a9:6d:dc:a8:87:71:a8:a8:0f:
81:16:8d:58:af:89:0b:ad:52:5d:d7:91:c4:8e:06:
a5:46:e9:53:c7:68:48:db:e0:8a:11:8c:d6:4b:a3:
0b:dc:94:9d:2f:51:b0:a7:6b:da:43:48:2f:1c:29:
18:ad:a4:06:14:20:a8:57:43:6f:a9:47:14:83:b3:
e6:b0:39:e7:8f:4c:c4:be:32:4d:84:10:67:45:14:
2c:f9:6d:23:3a:fb:80:d3:e1:21:7e:e5:cf:69:53:
1f:f7:d1:85:1c:b7:71:46:07:53:d7:fa:ce:51:9b:
c7:0f:d1:e8:e4:ad:d1:ae:c8:64:fd:dd:2e:19:7f:
b5:8f:4c:94:7a:d4:8b:8a:b0:de:56:b2:d2:e6:6c:
63:33:db:63:1c:7e:1f:ee:2c:1f:9c:13:08:c6:9a:
7e:02:46:6a:b7:a4:05:08:c0:99:99:27:2f:62:6b:
f2:ad:63:0b:6d:dd:8b:4a:be:0a:bc:a0:79:5b:37:
32:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:80:55:F5:52:9D:87:48:13:F3:26:C5:E7:CE:C4:9C:BE:25:06:E7
X509v3 Authority Key Identifier:
keyid:36:1A:DF:57:C8:DC:B7:BF:D3:4E:9A:EC:D8:3E:36:34:2E:C3:A3:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NhrfV8jct7_TTprs2D42NC7Do8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e0f8c6-aadc-4c31-b92b-1a18738b4741/1/PoBV9VKdh0gT8ybF587EnL4lBuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e0f8c6-aadc-4c31-b92b-1a18738b4741/1/NhrfV8jct7_TTprs2D42NC7Do8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.147.0/24
IPv6:
2001:67c:1240::/48
Signature Algorithm: sha256WithRSAEncryption
7d:04:7a:a7:88:64:5d:06:86:6d:17:3b:ad:7f:85:ed:72:b2:
75:51:52:93:2f:8f:a1:92:2d:6a:ad:b4:79:6d:97:6e:cb:b2:
50:a2:bd:e2:f5:8e:31:14:d5:6a:76:66:f5:87:6a:83:ab:b8:
71:a8:43:6b:02:41:cf:e8:25:75:76:54:31:84:09:5c:96:dd:
13:1e:65:2f:16:de:f0:ab:d5:b6:0d:c8:63:32:7c:f9:97:b4:
99:7b:7b:7d:d0:ae:0b:88:ed:01:f8:70:5f:54:1d:73:bf:1f:
e7:03:9c:34:7a:b8:fc:ec:fb:ee:4a:68:37:5c:65:5e:a9:76:
2b:67:50:00:d9:61:5a:72:9d:e6:f6:95:fc:5e:aa:74:a1:cf:
92:d1:c7:e6:a3:1f:75:d8:6b:80:08:5f:2b:3b:54:99:d2:e2:
f3:a4:39:ed:f1:48:e5:91:8e:08:e6:67:cc:f0:c9:84:76:8a:
d4:6d:d0:10:7f:7a:38:76:d2:e7:d7:08:19:c5:92:3b:3f:1e:
ac:e4:b5:63:ac:a9:9f:b8:dd:92:20:2c:76:e6:32:c7:13:07:
23:36:dd:27:d7:14:2d:20:36:2e:49:37:96:d9:ef:b9:5f:cc:
9b:e7:3d:ad:c3:c2:5e:2a:e9:4e:81:eb:56:ff:7a:05:80:d8:
eb:11:6a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:45 2024 by rpki-client on console-fra.rpki-client.org