Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/4LqNnIf1dD--m8369YiJMeXlswM.roa
File: 4LqNnIf1dD--m8369YiJMeXlswM.roa (raw, json)
Hash identifier: xu5hl+3zc9S1fP2qmj8VfW3txCnisatooaVbJ4dTWic=
Subject key identifier: E0:BA:8D:9C:87:F5:74:3F:BE:9B:CD:FA:F5:88:89:31:E5:E5:B3:03
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0C4C2828
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/4LqNnIf1dD--m8369YiJMeXlswM.roa
Signing time: Fri 03 Jun 2022 06:55:20 +0000
ROA not before: Fri 03 Jun 2022 06:55:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211694
IP address blocks: 91.229.132.0/24 maxlen: 24
91.229.132.0/23 maxlen: 23
91.229.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206317608 (0xc4c2828)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jun 3 06:55:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0ba8d9c87f5743fbe9bcdfaf5888931e5e5b303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:cf:a4:71:a4:6a:b1:0a:5d:2f:20:53:fa:90:
c4:11:40:35:4e:38:dd:f2:27:8e:4d:0b:fc:f5:06:
ae:20:85:f0:9b:f2:ae:3a:ee:f2:d4:a6:ee:60:d2:
cb:60:ef:09:b9:b3:ba:41:70:72:30:e6:08:a8:9d:
91:42:6a:03:2f:08:2c:50:2d:bd:d4:9f:4b:13:aa:
23:f6:2d:e5:36:50:46:a3:1c:22:83:11:28:ac:38:
de:0d:dd:21:a5:13:c7:48:1c:5b:ff:5e:8b:96:12:
eb:a1:ec:b9:91:ed:3f:bb:19:ff:1d:c1:50:72:65:
e8:1f:91:99:39:f6:69:5f:f4:6d:7e:ee:a0:f3:a1:
83:4f:db:14:60:dc:e4:45:78:5c:ca:b3:74:88:cb:
86:81:aa:a4:5f:9e:0e:17:3e:3d:6b:c5:11:22:ee:
9c:5c:5c:ab:17:0e:b0:ac:ed:40:6e:ef:19:15:46:
f9:dd:ac:02:7f:67:cb:36:ba:e9:b6:6a:6c:2b:01:
06:f2:20:1b:b0:f4:46:29:21:21:77:fc:83:b4:1f:
76:4d:dc:bd:89:8a:d7:7c:72:98:02:df:79:55:94:
d8:5e:21:e0:93:74:5f:a0:18:bd:ed:f2:09:18:96:
47:91:a2:9a:61:a0:36:34:cf:ba:e5:15:8e:ad:f4:
10:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BA:8D:9C:87:F5:74:3F:BE:9B:CD:FA:F5:88:89:31:E5:E5:B3:03
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/4LqNnIf1dD--m8369YiJMeXlswM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.132.0/23
Signature Algorithm: sha256WithRSAEncryption
e1:eb:34:5c:0b:65:78:29:52:d5:d4:8d:00:88:82:56:a8:e1:
66:58:8b:0f:39:ee:d5:80:78:ef:db:0a:dc:35:43:d1:ba:48:
62:61:c2:25:5c:b1:b4:9d:49:84:1a:12:54:41:90:95:b5:76:
52:a6:99:9f:20:75:d6:e7:81:77:8a:10:97:30:f9:81:18:6a:
50:c6:bb:eb:99:f1:0b:93:0e:72:f2:4f:b8:f7:c0:b7:45:29:
f0:be:02:7a:0c:0d:14:15:84:1a:4b:61:02:6d:7c:73:82:df:
09:8e:12:1a:80:50:03:be:3c:9d:51:3c:4c:c4:1d:7c:dc:a1:
27:1c:86:3e:4d:62:03:70:e9:c5:19:bb:db:40:97:91:c0:9f:
30:0d:f7:4d:5e:08:59:8a:fc:df:54:db:0d:74:0e:84:e0:67:
88:b4:ec:38:43:a2:f8:7f:ea:3a:cb:eb:a7:0b:d6:25:f5:39:
10:b6:cd:82:e2:af:65:c3:4b:6d:63:30:9c:24:26:c2:fb:0b:
10:d9:60:b7:74:aa:bf:b5:73:33:7d:1f:c3:d3:58:ee:99:94:
0a:9f:a1:ea:5b:ed:8b:0a:b5:85:4c:64:44:35:26:65:d5:07:
ad:aa:aa:b0:ec:14:da:d4:de:9c:ad:77:f1:46:52:aa:24:e6:
75:5e:0e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:11 2024 by rpki-client on console-fra.rpki-client.org