Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/0cfe3e-729f-4418-9cf4-863daecfc2e8/1/WdEUhrZQUgDi9860xJisjUBYA78.roa
File: WdEUhrZQUgDi9860xJisjUBYA78.roa (raw, json)
Hash identifier: NMOKXfBa9JNt6Ve4Wwbt2UKvBmd+oW8TU1KP8y/OfqY=
Subject key identifier: 59:D1:14:86:B6:50:52:00:E2:F7:CE:B4:C4:98:AC:8D:40:58:03:BF
Certificate issuer: /CN=b4fa4d081b36887f3e5ca6537f7469eee21d71ae
Certificate serial: 07C55EBA
Authority key identifier: B4:FA:4D:08:1B:36:88:7F:3E:5C:A6:53:7F:74:69:EE:E2:1D:71:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPpNCBs2iH8-XKZTf3Rp7uIdca4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/0cfe3e-729f-4418-9cf4-863daecfc2e8/1/WdEUhrZQUgDi9860xJisjUBYA78.roa
Signing time: Sat 01 Jan 2022 08:04:06 +0000
ROA not before: Sat 01 Jan 2022 08:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51094
IP address blocks: 91.216.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130375354 (0x7c55eba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fa4d081b36887f3e5ca6537f7469eee21d71ae
Validity
Not Before: Jan 1 08:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59d11486b6505200e2f7ceb4c498ac8d405803bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3d:4d:d6:96:6f:1a:03:ca:7f:f8:a3:6a:c0:
1d:42:5f:a6:f7:09:ec:4f:4c:af:b9:77:4c:d2:57:
bc:e9:b6:01:50:f5:5a:a9:59:5f:81:4a:2d:01:d4:
04:5e:15:00:e1:55:35:76:0d:f9:ac:ba:ec:98:b9:
36:f2:c3:ce:24:24:95:b1:70:a8:44:78:0c:26:6b:
47:a4:79:a3:39:b0:f9:ce:f4:fa:57:81:9d:db:f7:
f2:ab:ac:fc:40:c8:63:d6:9e:95:53:8b:68:17:be:
99:23:6e:3f:78:90:66:ce:37:f8:f1:c3:c5:e6:1a:
57:9d:8d:4f:bc:9b:d6:23:7e:1f:07:78:eb:ea:4b:
a3:c1:73:0c:58:df:81:a2:45:ba:a1:52:2d:b7:e1:
3a:c9:86:3c:4d:47:9d:e5:22:81:ae:f6:1c:94:fd:
3b:3b:98:7b:59:4f:2c:7f:18:57:b8:5e:50:2b:c4:
db:c3:6e:d4:c9:cb:08:82:a7:d3:58:55:97:9d:0d:
b4:7e:6f:f2:cf:2b:cd:83:ad:27:0c:51:ca:f3:75:
9f:5d:25:f8:39:ef:55:ab:75:a0:39:33:2f:8f:7d:
65:d6:fd:0f:57:19:8a:ff:19:70:c7:3f:40:9b:a4:
6c:6f:c3:d7:82:56:f5:9b:86:f6:8d:7e:95:3b:78:
d8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D1:14:86:B6:50:52:00:E2:F7:CE:B4:C4:98:AC:8D:40:58:03:BF
X509v3 Authority Key Identifier:
keyid:B4:FA:4D:08:1B:36:88:7F:3E:5C:A6:53:7F:74:69:EE:E2:1D:71:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPpNCBs2iH8-XKZTf3Rp7uIdca4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0cfe3e-729f-4418-9cf4-863daecfc2e8/1/WdEUhrZQUgDi9860xJisjUBYA78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0cfe3e-729f-4418-9cf4-863daecfc2e8/1/tPpNCBs2iH8-XKZTf3Rp7uIdca4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.144.0/24
Signature Algorithm: sha256WithRSAEncryption
45:2b:56:95:e1:a8:35:a3:65:63:50:3c:ba:2b:c9:bb:b5:a9:
e4:6d:b0:11:ca:33:7f:69:f0:34:fe:93:0c:e8:12:66:58:3d:
51:6a:7c:4f:3c:41:f3:6c:7a:f3:07:0c:13:95:79:ee:13:65:
86:c6:99:76:a7:e0:e1:fe:0e:9c:0b:1c:72:9e:ac:c4:bd:2e:
49:0e:e9:d8:0c:44:40:49:74:e2:3b:db:f5:04:0e:6c:15:3b:
95:c8:0e:94:7c:74:55:21:9c:00:0b:a6:1d:08:85:f0:9c:12:
e1:43:20:fe:85:24:eb:dd:68:e9:36:21:0a:8c:99:2e:d6:e4:
e9:a8:3f:75:37:60:e2:b8:1d:72:ba:fb:7d:1f:1c:fc:19:33:
fe:b9:5f:cd:35:af:61:c9:51:6a:19:8c:5b:64:9b:62:35:1b:
67:3d:51:19:72:91:fc:2c:e8:34:1c:1a:ec:e6:b2:e9:53:29:
bf:09:1d:9a:bf:64:c1:42:20:88:ae:45:6f:d2:3a:dc:7d:8a:
6b:b2:8a:74:6d:63:c9:7a:f5:c3:c9:b0:fa:66:53:80:6d:50:
05:19:21:05:d4:93:cc:dd:05:0c:a6:16:92:32:da:bf:ee:b1:
15:72:a7:86:12:3b:93:62:c5:b0:13:c6:7e:55:4b:48:f9:2c:
37:5f:1d:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:28 2024 by rpki-client on console-fra.rpki-client.org