Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/3bx2q7q_vvALJgPqYDLi5L3GLfw.roa
File: 3bx2q7q_vvALJgPqYDLi5L3GLfw.roa (raw, json)
Hash identifier: uUIPkJ+IvNecCcfGPoq93n8d9+8P5nl2RLalvgogPVg=
Subject key identifier: DD:BC:76:AB:BA:BF:BE:F0:0B:26:03:EA:60:32:E2:E4:BD:C6:2D:FC
Certificate issuer: /CN=68cef722dabe5975ca4f9ba8616388ec6c656a20
Certificate serial: 0183E2A0D6FE2BB23D83310B90551E4DBB9D
Authority key identifier: 68:CE:F7:22:DA:BE:59:75:CA:4F:9B:A8:61:63:88:EC:6C:65:6A:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/3bx2q7q_vvALJgPqYDLi5L3GLfw.roa
Signing time: Sun 16 Oct 2022 21:08:54 +0000
ROA not before: Sun 16 Oct 2022 21:08:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42910
IP address blocks: 91.240.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e2:a0:d6:fe:2b:b2:3d:83:31:0b:90:55:1e:4d:bb:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cef722dabe5975ca4f9ba8616388ec6c656a20
Validity
Not Before: Oct 16 21:08:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddbc76abbabfbef00b2603ea6032e2e4bdc62dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:92:12:2d:de:74:68:31:c1:66:2f:b4:a1:c8:
10:c3:4f:d5:4c:76:f6:85:03:b5:22:9e:23:bf:7b:
b6:39:96:d7:5b:be:68:08:cb:25:10:50:6c:81:e0:
f7:18:ea:b4:4f:d9:08:86:11:3b:5c:02:38:c3:2f:
8d:20:fd:61:27:43:64:e1:20:f9:b4:69:26:7e:03:
8f:7c:49:8f:56:b6:14:b9:f1:f2:5a:83:1e:3b:1c:
c4:a6:6e:b3:6c:1b:fb:08:9e:14:f3:c4:8b:4b:f5:
24:56:e6:cc:7c:34:64:a5:35:36:26:8a:04:ad:6e:
a8:c5:70:71:d0:8c:0f:ad:3c:98:45:26:5f:76:f6:
67:49:d9:65:54:c7:8d:cf:1d:61:4e:41:11:00:61:
aa:07:82:d3:90:19:68:fd:c3:f1:ef:ac:a0:5d:57:
b8:96:34:25:fc:bb:a9:29:d9:f9:71:c3:38:f8:cd:
01:ff:d0:2e:6d:3d:97:93:43:5f:fc:a3:aa:b2:d9:
69:a3:54:0e:97:59:49:56:8b:7d:53:1b:65:37:c3:
03:ff:2b:65:01:1a:68:ef:1f:5a:77:fd:90:f1:c0:
c6:3c:95:e7:a5:f1:0d:bb:c0:90:17:87:87:a1:94:
8e:a2:40:03:5c:5a:3b:e1:79:b5:21:0b:f3:0a:a8:
ff:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BC:76:AB:BA:BF:BE:F0:0B:26:03:EA:60:32:E2:E4:BD:C6:2D:FC
X509v3 Authority Key Identifier:
keyid:68:CE:F7:22:DA:BE:59:75:CA:4F:9B:A8:61:63:88:EC:6C:65:6A:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aM73Itq-WXXKT5uoYWOI7GxlaiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/3bx2q7q_vvALJgPqYDLi5L3GLfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/790c15-2058-4c39-90cb-cd677ab431aa/1/aM73Itq-WXXKT5uoYWOI7GxlaiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.232.0/24
Signature Algorithm: sha256WithRSAEncryption
70:66:07:27:fd:6f:c7:36:60:87:29:2b:e6:27:2c:b2:aa:2c:
d5:7b:9c:4c:a0:56:e4:78:89:36:3b:4b:9f:e7:63:e7:d9:b4:
d8:2e:2d:e8:7f:d7:f8:1d:3a:d2:0a:79:98:57:60:ab:17:8b:
a4:ac:ff:ef:22:a1:82:26:a9:8c:87:46:5b:c4:10:15:ca:ae:
c7:39:82:aa:ec:e4:c1:a3:15:5b:e5:50:48:0c:64:7c:90:6b:
bd:61:f0:0a:15:bd:12:53:94:46:43:f8:3e:ba:f5:b0:1a:68:
63:1c:be:35:7f:a3:f9:aa:d0:87:32:ac:67:0a:5a:06:e2:db:
a5:0a:7a:99:8c:e2:10:c6:d0:2b:fd:03:1d:c7:9d:eb:09:1c:
a8:8b:c9:3b:bc:f6:a1:66:d1:e5:b1:d8:b9:80:6e:c9:b7:21:
24:58:35:fc:78:b4:39:46:67:ae:86:00:fe:60:06:95:ba:27:
25:7f:be:f0:8c:59:2d:de:32:5d:34:40:46:51:a1:b0:30:21:
7e:11:22:24:ee:82:00:3a:d8:fa:96:07:8b:ac:c4:fa:ba:34:
04:3d:01:0d:1e:6a:a9:ba:c9:2b:59:90:c4:af:23:00:f0:c6:
c6:dc:5e:b7:8d:b0:12:a8:7b:4a:8a:fa:56:d3:5c:9e:9c:73:
9a:d6:2b:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:55 2024 by rpki-client on console-ams.rpki-client.org