Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/5r5KKFOJmLQI_9ofi5B5bNz8Ly8.roa
File: 5r5KKFOJmLQI_9ofi5B5bNz8Ly8.roa (raw, json)
Hash identifier: BGolnayQPDgtHrwfWz9HlvzNXbzIBEgzJ4V54oNzc2w=
Subject key identifier: E6:BE:4A:28:53:89:98:B4:08:FF:DA:1F:8B:90:79:6C:DC:FC:2F:2F
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0BE87323
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/5r5KKFOJmLQI_9ofi5B5bNz8Ly8.roa
Signing time: Wed 27 Apr 2022 07:53:44 +0000
ROA not before: Wed 27 Apr 2022 07:53:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 91.229.134.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199783203 (0xbe87323)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Apr 27 07:53:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6be4a28538998b408ffda1f8b90796cdcfc2f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8b:a2:63:0a:2b:bf:0c:28:07:99:2c:86:19:
33:32:b5:82:75:ff:96:dd:be:bc:94:bc:71:68:f9:
a5:51:55:e3:73:c9:3c:a8:3d:dc:ab:4a:fc:8a:43:
67:d5:fe:d3:98:50:70:44:86:f2:92:80:be:4c:e3:
9a:22:44:52:14:ff:25:1e:f0:eb:da:7a:de:96:f3:
7e:a3:cd:f2:64:86:c4:24:ae:9f:69:08:c6:40:30:
1b:b1:59:f7:cd:c1:10:19:55:2a:bd:26:c2:1a:bc:
1b:38:35:f2:bb:a6:a1:ea:d0:95:52:01:d2:05:a6:
50:03:ef:88:50:3d:6e:c3:d6:7b:93:4f:65:93:11:
a9:6f:af:75:03:2f:93:06:e1:2c:dc:cb:f6:1e:78:
16:92:2d:fa:4c:2c:b9:67:28:5b:b7:a6:12:1a:4a:
30:c9:0c:8d:8a:18:25:9f:71:3a:e5:ad:92:a1:51:
6f:72:63:0c:67:bc:86:dc:11:f3:98:0a:58:55:9f:
55:33:4d:85:32:37:fc:62:4c:27:d3:2b:d9:42:31:
4c:01:50:17:b3:3a:0b:d3:67:18:fc:3f:de:de:6d:
8a:67:cb:4d:28:e1:cf:83:76:86:5e:fe:a5:00:cd:
3e:fd:0c:1e:9d:db:df:65:ed:a3:a9:d4:41:d6:8e:
d1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BE:4A:28:53:89:98:B4:08:FF:DA:1F:8B:90:79:6C:DC:FC:2F:2F
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/5r5KKFOJmLQI_9ofi5B5bNz8Ly8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.134.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:1e:ec:d4:f3:3e:19:5a:bd:70:90:af:6b:a4:de:7b:f0:30:
44:2f:18:16:96:d1:84:2e:6e:ae:f3:85:70:0a:f3:8e:c3:80:
8c:c9:4e:e4:25:da:a8:89:da:44:aa:9f:dc:7a:f9:d7:98:78:
68:17:7f:58:95:df:50:6f:c8:cc:a0:52:4c:6e:25:30:dd:50:
b9:d2:4a:2c:8a:8e:7d:bf:ce:1f:5f:f7:e5:61:8e:5c:30:1f:
fd:04:df:f8:92:37:26:f5:22:e5:9b:04:b8:94:7c:c4:81:f6:
cc:29:99:cf:6b:e6:72:82:9c:68:61:e3:f8:47:21:b7:47:fc:
75:77:b9:1b:b0:cd:b7:c4:f6:3f:6f:5f:de:21:f9:8c:2e:bf:
d6:28:6f:f8:85:19:7d:f9:6a:12:14:f6:0b:0b:78:08:b8:cb:
77:44:a0:8c:34:0a:1c:62:5e:34:30:f2:9d:64:61:72:4b:7d:
c8:db:13:59:af:18:48:c0:76:6b:c8:4d:eb:22:f3:a2:04:8f:
7b:b2:cc:3c:95:b9:08:53:4f:c8:48:e4:e6:de:5c:8b:e0:da:
a3:50:74:bc:c5:05:cb:44:82:3a:ff:2b:ee:4d:14:25:78:f3:
41:e8:15:af:62:4a:6d:e4:6d:f1:c3:72:69:d5:6e:51:f5:cc:
73:8a:32:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org