Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/8ec3a9-cef2-4bf8-a06a-7e2c4b975b39/1/2HvYDTvkN-XbR4assqBFTNx7Y9s.roa
File: 2HvYDTvkN-XbR4assqBFTNx7Y9s.roa (raw, json)
Hash identifier: prQ3QODtEbBetOa5cSLeX+BaFVYwCEHKeCoevOpa02U=
Subject key identifier: D8:7B:D8:0D:3B:E4:37:E5:DB:47:86:AC:B2:A0:45:4C:DC:7B:63:DB
Certificate issuer: /CN=cf02f5f48e122e556f9b598ad9a62d3c3e14419a
Certificate serial: 0729CB45
Authority key identifier: CF:02:F5:F4:8E:12:2E:55:6F:9B:59:8A:D9:A6:2D:3C:3E:14:41:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zwL19I4SLlVvm1mK2aYtPD4UQZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/8ec3a9-cef2-4bf8-a06a-7e2c4b975b39/1/2HvYDTvkN-XbR4assqBFTNx7Y9s.roa
Signing time: Sat 01 Jan 2022 08:54:35 +0000
ROA not before: Sat 01 Jan 2022 08:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12637
IP address blocks: 91.206.74.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120179525 (0x729cb45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf02f5f48e122e556f9b598ad9a62d3c3e14419a
Validity
Not Before: Jan 1 08:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d87bd80d3be437e5db4786acb2a0454cdc7b63db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:d4:ed:80:9f:ea:45:fd:24:ec:82:0e:a3:6e:
ba:ff:43:50:48:1d:07:44:63:af:b8:b6:77:23:22:
27:45:29:3e:c9:95:3d:2c:ac:52:88:12:e8:bd:2e:
e9:8f:f2:0f:e7:ff:58:32:a4:6e:57:4e:fc:1e:a1:
d3:f2:3e:5c:29:03:7c:49:83:f2:d3:d8:cf:b3:b3:
59:2b:76:0e:27:49:e9:db:19:15:16:7e:49:ec:fa:
f9:52:29:e7:cd:ed:a9:f9:9a:ab:6d:b1:31:87:94:
7a:c7:f2:76:54:c9:e0:ff:db:a3:21:06:f0:f8:8e:
c8:ca:cf:9c:65:1b:ba:8f:58:14:17:8a:36:2a:47:
c9:e2:22:bb:97:4a:80:95:4b:ac:6e:49:72:1b:ad:
45:eb:18:ad:6b:49:cc:79:3c:d4:c8:02:57:d9:18:
52:0f:5e:aa:d6:09:78:15:3a:79:9a:d1:c6:4c:51:
95:ec:1b:30:65:cd:a2:6e:22:92:f9:24:71:6c:09:
1f:dd:87:d7:e2:20:2c:e7:21:1e:f8:55:51:68:0c:
2f:0b:fe:fb:9f:06:e8:08:71:42:de:cc:c2:bb:61:
cf:67:56:a6:6d:46:ac:f4:e2:13:01:75:6a:39:48:
31:a0:e0:30:37:0c:fb:75:29:bf:a8:78:64:56:af:
de:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:7B:D8:0D:3B:E4:37:E5:DB:47:86:AC:B2:A0:45:4C:DC:7B:63:DB
X509v3 Authority Key Identifier:
keyid:CF:02:F5:F4:8E:12:2E:55:6F:9B:59:8A:D9:A6:2D:3C:3E:14:41:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zwL19I4SLlVvm1mK2aYtPD4UQZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/8ec3a9-cef2-4bf8-a06a-7e2c4b975b39/1/2HvYDTvkN-XbR4assqBFTNx7Y9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/8ec3a9-cef2-4bf8-a06a-7e2c4b975b39/1/zwL19I4SLlVvm1mK2aYtPD4UQZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.74.0/23
Signature Algorithm: sha256WithRSAEncryption
bc:08:8d:b8:fe:d4:1d:f6:88:1d:7c:7a:35:d4:22:c5:fa:6f:
ee:58:a7:d3:dd:11:57:2f:e4:dd:c8:9e:4b:31:27:ce:5f:98:
0c:30:b7:90:6e:09:cc:9c:ae:df:2e:14:28:5b:91:5c:75:8a:
a2:fc:ca:ce:af:0e:8e:5a:01:37:cb:30:bc:87:4e:95:88:6c:
0d:91:06:f6:8d:8f:1a:61:0f:3c:77:be:c2:a6:af:3e:51:fa:
d6:0b:39:e4:9a:47:ff:5c:bb:74:ff:15:cf:f3:c4:31:79:45:
6a:3b:96:15:0f:28:f7:ad:db:c2:1d:38:1c:c5:11:bc:56:03:
0b:68:3b:ae:19:a0:bf:86:5d:29:db:89:ca:2b:39:76:43:fd:
a7:61:54:48:d8:17:de:67:1c:1d:8b:b0:89:21:19:10:e6:e8:
1c:ea:ca:d2:9a:5b:28:fd:76:6e:da:54:cc:b1:e4:1c:b0:6f:
5d:fc:18:6c:44:b9:c7:f3:77:a3:97:3d:f3:70:5b:12:96:0a:
1c:4d:0d:04:73:08:b5:3a:59:cc:83:93:7c:c8:32:da:e8:f7:
62:33:81:f8:92:f9:bf:4a:23:a1:ef:f6:b5:d3:19:99:69:b1:
04:0c:2b:21:31:f6:d3:2e:88:a7:bc:e6:b7:89:36:56:3a:7f:
d3:59:d5:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:35 2024 by rpki-client on console-ams.rpki-client.org