Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/5BU-koGPr8rSy3KNto7t7M3Bp1s.roa
File: 5BU-koGPr8rSy3KNto7t7M3Bp1s.roa (raw, json)
Hash identifier: 3W3kNdl36vd95Cpd/gfE2T+IhNPXtFsU3Ko0xR0GCtk=
Subject key identifier: E4:15:3E:92:81:8F:AF:CA:D2:CB:72:8D:B6:8E:ED:EC:CD:C1:A7:5B
Certificate issuer: /CN=cb224ea38572ea0da02f49cf4d67a3cbb7c6e140
Certificate serial: 0912224B
Authority key identifier: CB:22:4E:A3:85:72:EA:0D:A0:2F:49:CF:4D:67:A3:CB:B7:C6:E1:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyJOo4Vy6g2gL0nPTWejy7fG4UA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/5BU-koGPr8rSy3KNto7t7M3Bp1s.roa
Signing time: Sat 01 Jan 2022 11:02:16 +0000
ROA not before: Sat 01 Jan 2022 11:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34393
IP address blocks: 91.218.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152183371 (0x912224b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb224ea38572ea0da02f49cf4d67a3cbb7c6e140
Validity
Not Before: Jan 1 11:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4153e92818fafcad2cb728db68eedeccdc1a75b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6f:8d:87:4a:05:13:58:5f:c9:c0:03:07:b4:
d3:53:f0:57:88:0b:84:78:e4:53:d1:2f:53:bf:f1:
50:90:ce:fb:a2:97:68:ee:49:08:a8:01:da:a7:be:
67:89:91:ae:bf:ac:a7:fd:71:3a:a8:34:c0:c8:76:
f0:02:3b:9e:e9:e7:24:15:15:12:fd:a3:27:90:c1:
84:c2:2f:99:6a:6c:2c:70:3c:aa:15:59:45:4d:c8:
9c:76:df:e7:6a:98:52:a4:b1:ab:ce:25:8a:80:54:
11:6e:a9:b3:c4:de:22:53:92:34:8e:84:04:99:bc:
8a:cd:a1:23:49:fd:fe:96:a4:c4:27:fe:fc:7c:97:
9e:73:19:72:cb:9f:ab:67:77:3f:93:f4:bc:09:96:
e9:3e:2a:13:65:89:55:cc:f3:77:11:67:eb:1b:5f:
ea:92:5b:63:5d:77:66:5e:ef:81:d4:38:5c:3c:ac:
b6:47:f8:cf:0c:58:9d:2d:1e:bb:a1:da:87:ab:d7:
3f:ad:3f:93:10:d0:5b:9e:5d:1f:d5:fe:08:b3:f8:
68:44:32:c9:21:4a:b8:34:04:5f:41:76:6f:30:e9:
52:a0:03:7e:78:7f:7b:36:51:4c:21:ea:b0:37:08:
d1:40:a2:a4:9f:9f:7f:bd:14:21:21:cb:bb:56:98:
8b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:15:3E:92:81:8F:AF:CA:D2:CB:72:8D:B6:8E:ED:EC:CD:C1:A7:5B
X509v3 Authority Key Identifier:
keyid:CB:22:4E:A3:85:72:EA:0D:A0:2F:49:CF:4D:67:A3:CB:B7:C6:E1:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyJOo4Vy6g2gL0nPTWejy7fG4UA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/5BU-koGPr8rSy3KNto7t7M3Bp1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3503ee-5b82-4231-b57a-1fd29b108a21/1/yyJOo4Vy6g2gL0nPTWejy7fG4UA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.241.0/24
Signature Algorithm: sha256WithRSAEncryption
44:1a:a2:c2:97:66:bd:3d:85:eb:d4:dd:29:ae:cb:d3:25:1f:
41:68:c5:a0:df:19:54:73:2e:78:c2:8c:e8:f9:df:65:a0:4d:
80:91:d7:34:11:c9:80:9d:44:26:60:ad:64:86:88:6b:ff:0f:
38:35:70:82:71:7b:89:89:e6:8f:a4:fc:ef:ee:c5:ab:8e:59:
54:68:a3:12:e0:02:51:d7:76:8e:55:b2:cf:a2:82:41:ec:d0:
6f:92:1a:2d:e3:59:ea:7f:03:86:8a:c3:82:3c:b5:77:21:56:
b8:ed:94:69:24:ba:98:a8:09:cb:dd:e8:16:fb:05:b5:1f:1b:
50:29:b1:d8:54:1b:79:7d:b4:9e:4f:23:96:fe:61:86:ba:3d:
e6:69:31:b4:9d:74:a5:06:11:c0:fd:48:ad:8f:63:b1:78:bc:
70:e9:cd:77:b4:a1:26:36:13:40:96:d0:c7:dc:64:7c:f3:89:
7e:07:6d:24:cc:a1:a6:a5:99:0f:ca:f1:58:4e:6f:f0:e1:48:
70:13:d2:e8:28:96:e3:83:a4:8b:72:9f:1f:24:b7:6c:58:99:
42:96:11:3d:1f:49:9f:8c:ed:b5:06:b9:76:35:36:9e:3b:fc:
34:16:0d:d0:99:09:a4:69:b3:52:7a:6d:82:7b:70:e6:50:50:
eb:43:a3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:53 2024 by rpki-client on console-fra.rpki-client.org