Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/rHOpMepkV8cyju7fmr8lSJI2FkM.roa
File: rHOpMepkV8cyju7fmr8lSJI2FkM.roa (raw, json)
Hash identifier: F6Z8omv30kmlbrvUu8uXsYE/HNbsydtdALLi+LzT1KQ=
Subject key identifier: AC:73:A9:31:EA:64:57:C7:32:8E:EE:DF:9A:BF:25:48:92:36:16:43
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 04F416E6
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/rHOpMepkV8cyju7fmr8lSJI2FkM.roa
Signing time: Mon 16 May 2022 11:13:30 +0000
ROA not before: Mon 16 May 2022 11:13:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202306
IP address blocks: 91.103.252.0/24 maxlen: 24
2a04:5200:5977::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83105510 (0x4f416e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: May 16 11:13:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac73a931ea6457c7328eeedf9abf254892361643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e3:eb:fc:5c:a6:41:86:70:df:88:80:ec:24:
60:6b:1f:05:d5:0a:37:77:08:9e:49:be:98:a0:2b:
54:52:fa:35:09:bb:5e:0b:21:99:d3:11:2b:9e:e6:
ce:de:28:46:66:0f:ae:6c:e6:29:5e:4c:e8:8b:ba:
28:4a:73:60:c6:d5:53:b6:c7:d9:22:5c:6b:36:e0:
bd:f1:5d:68:8e:9c:fa:83:95:89:64:8e:d1:ae:2e:
90:71:ad:33:cd:95:0a:4b:ea:57:37:fe:93:e6:ae:
34:89:fd:1b:36:70:29:5a:9d:da:2b:8d:a8:53:53:
e7:e0:df:4c:07:a4:27:f5:4d:f9:51:b3:9f:d1:dc:
cb:14:8c:f1:72:25:85:d1:eb:f9:63:60:fd:9f:66:
11:d5:4e:de:dc:6f:48:64:f1:cf:29:60:c1:35:15:
c4:b7:02:86:a6:22:a1:ab:76:2b:30:c1:93:18:7e:
c9:ba:3e:0d:0e:ed:83:52:84:7b:80:4c:0b:54:55:
c9:17:f6:28:9f:10:a2:74:56:8c:ba:df:c6:c2:35:
41:85:c2:18:e6:62:ef:75:68:4a:e8:67:75:00:55:
eb:60:7b:7d:be:f9:cd:e9:6f:b8:2f:20:86:23:a4:
09:be:26:ec:34:ad:25:52:36:75:bc:d1:80:38:5d:
31:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:73:A9:31:EA:64:57:C7:32:8E:EE:DF:9A:BF:25:48:92:36:16:43
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/rHOpMepkV8cyju7fmr8lSJI2FkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.252.0/24
IPv6:
2a04:5200:5977::/48
Signature Algorithm: sha256WithRSAEncryption
07:4a:74:40:1e:59:2f:f4:82:97:91:75:a2:13:d8:ac:e2:82:
b7:4e:f2:22:27:d6:7a:62:90:f6:06:c9:1e:e1:3b:37:46:be:
b4:b1:1f:58:64:b1:7a:7f:fe:d6:cb:ec:41:bc:b3:64:af:e7:
59:47:63:e2:09:85:3b:2b:04:e7:db:db:3c:15:37:7a:b7:34:
41:2b:25:52:2c:33:4f:13:f8:c7:e0:b1:c7:40:4c:a8:5d:71:
59:4e:83:ad:53:67:2a:1c:59:f8:53:97:7a:bc:87:9b:56:76:
9b:28:8c:69:5b:7e:e3:9c:22:5b:94:97:c1:40:34:b5:5d:8c:
31:35:c4:c4:24:16:50:fe:a4:ae:6c:72:78:27:8b:a3:d2:2f:
55:c0:1e:6d:81:e3:91:c1:9c:d5:18:f6:40:ac:c0:b1:0a:57:
c6:98:aa:2f:79:d6:db:9d:c4:92:29:66:1b:f5:66:6d:9c:c9:
69:f1:f8:17:43:eb:d6:79:87:dd:88:a2:16:cb:74:9e:0a:a4:
e9:72:56:77:cd:fe:a9:67:87:b8:cf:31:1a:a9:7e:d8:54:f5:
da:fc:ad:2d:2a:60:26:6e:ca:93:b8:8d:9d:ee:76:10:14:c3:
e2:44:a4:ea:45:fd:69:b5:61:79:44:49:43:7c:0b:b5:2b:fb:
26:fd:05:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org