Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/e5e2d0-f439-45e4-8540-f19600c7ad54/1/LFnf9A2uN0slD3IOCnQZx4GZD08.roa
File: LFnf9A2uN0slD3IOCnQZx4GZD08.roa (raw, json)
Hash identifier: ZQqHCKADIZ5FKQdHtRYkKvbxXEX80YWrIqTioQBKaHo=
Subject key identifier: 2C:59:DF:F4:0D:AE:37:4B:25:0F:72:0E:0A:74:19:C7:81:99:0F:4F
Certificate issuer: /CN=81060a518528e86a8ea77f188a0263790c08f6b9
Certificate serial: 014A8AB6
Authority key identifier: 81:06:0A:51:85:28:E8:6A:8E:A7:7F:18:8A:02:63:79:0C:08:F6:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQYKUYUo6GqOp38YigJjeQwI9rk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/e5e2d0-f439-45e4-8540-f19600c7ad54/1/LFnf9A2uN0slD3IOCnQZx4GZD08.roa
Signing time: Sat 01 Jan 2022 05:56:40 +0000
ROA not before: Sat 01 Jan 2022 05:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5603
IP address blocks: 91.217.127.0/24 maxlen: 24
91.217.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21662390 (0x14a8ab6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81060a518528e86a8ea77f188a0263790c08f6b9
Validity
Not Before: Jan 1 05:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c59dff40dae374b250f720e0a7419c781990f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ca:01:96:be:2a:36:66:04:83:6d:76:3e:5d:
17:e3:2c:e8:9c:23:00:d6:35:4b:04:3e:94:97:35:
6c:c7:12:61:32:d8:ed:b8:00:c9:e0:37:9f:65:95:
ea:5a:0d:f6:c0:e2:23:eb:ad:9f:83:21:29:11:7e:
b6:ff:20:6e:e8:36:c4:06:d2:d5:41:bd:2c:b3:c2:
d8:b9:e5:0f:87:56:aa:b7:74:66:5f:4d:7d:d8:81:
48:3d:91:d6:d2:2e:96:07:04:bb:3c:67:f6:00:25:
79:06:d9:10:cf:94:16:8e:fa:8e:c7:e6:3e:e2:5a:
e6:2a:3b:34:b0:c3:29:45:24:a9:7d:c3:67:b8:41:
84:a9:1f:55:34:27:b9:b0:85:20:5d:e9:ff:88:f9:
17:0e:a1:c5:09:93:e9:db:76:99:3a:28:17:68:21:
8b:45:cf:59:f3:95:76:f8:9e:a5:8e:8f:ec:85:94:
c7:b3:64:06:0d:88:79:d4:3d:3b:8e:1d:f4:65:d8:
8b:2f:ca:d5:58:4e:d6:00:99:df:59:cb:f4:69:8a:
9b:31:7b:41:ee:4f:60:6e:85:5b:ab:1c:a5:88:27:
87:4a:1d:d0:74:6a:da:14:08:f9:07:d7:2c:a1:94:
44:f9:7b:cf:b6:db:e0:ed:5f:7a:5b:44:1c:e1:93:
2a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:59:DF:F4:0D:AE:37:4B:25:0F:72:0E:0A:74:19:C7:81:99:0F:4F
X509v3 Authority Key Identifier:
keyid:81:06:0A:51:85:28:E8:6A:8E:A7:7F:18:8A:02:63:79:0C:08:F6:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQYKUYUo6GqOp38YigJjeQwI9rk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e5e2d0-f439-45e4-8540-f19600c7ad54/1/LFnf9A2uN0slD3IOCnQZx4GZD08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/e5e2d0-f439-45e4-8540-f19600c7ad54/1/gQYKUYUo6GqOp38YigJjeQwI9rk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.126.0/23
Signature Algorithm: sha256WithRSAEncryption
96:d9:69:f5:82:06:3e:3e:cd:ee:ce:a6:dd:e8:32:e3:4b:df:
34:24:74:c7:29:c2:6a:53:03:5a:70:6f:f0:12:0d:0e:17:76:
b0:f6:f5:f2:58:8c:ce:e3:84:6b:6c:44:9a:ac:e0:b0:98:26:
96:c2:48:93:19:06:8a:0e:48:4d:be:ac:40:cf:e8:3c:28:28:
55:4e:57:16:73:dc:9c:bc:37:de:ce:3d:82:63:7e:4b:e0:b7:
35:40:cb:27:a7:b5:27:5b:bf:ac:1b:b5:fb:7a:7c:22:e2:66:
aa:88:97:bc:6b:fd:5f:9d:6b:75:df:64:5f:e8:ff:f4:9e:b1:
5f:c9:6a:3b:dd:a3:4c:f6:54:a8:37:6c:1b:83:0e:8c:75:aa:
6f:14:a5:21:59:b4:71:5b:a3:43:95:39:32:3c:b9:c0:ad:74:
1e:88:ba:ee:f0:9e:68:2b:d8:0f:dd:c2:56:6d:9f:60:2b:79:
1e:a9:43:fc:7a:b4:24:10:a0:e7:3a:33:33:90:b2:26:a4:e9:
e5:26:e5:4b:76:57:00:c5:e3:84:45:c1:14:46:d7:6f:54:95:
de:b2:9f:ee:65:d3:7f:17:de:14:4c:d4:e9:07:4a:08:9e:a9:
41:d1:6b:23:2f:01:00:a6:07:da:3c:33:b2:82:20:53:bc:e1:
8f:24:b7:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:50 2024 by rpki-client on console-ams.rpki-client.org