Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/c3cda5-8a64-4290-a23d-a634791440ca/1/wNfJoJVDqz3rPVwEtwp0Bl4jPzk.roa
File: wNfJoJVDqz3rPVwEtwp0Bl4jPzk.roa (raw, json)
Hash identifier: O8thKX5PUPFJW8IiHGMneg47NybdY2THC8RJVOQ7MAk=
Subject key identifier: C0:D7:C9:A0:95:43:AB:3D:EB:3D:5C:04:B7:0A:74:06:5E:23:3F:39
Certificate issuer: /CN=35e3d4bf1bc0f81728205e51de097cf383a0cdc9
Certificate serial: 0575E52C
Authority key identifier: 35:E3:D4:BF:1B:C0:F8:17:28:20:5E:51:DE:09:7C:F3:83:A0:CD:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NePUvxvA-BcoIF5R3gl884Ogzck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/c3cda5-8a64-4290-a23d-a634791440ca/1/wNfJoJVDqz3rPVwEtwp0Bl4jPzk.roa
Signing time: Sat 01 Jan 2022 14:55:12 +0000
ROA not before: Sat 01 Jan 2022 14:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 91.231.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91612460 (0x575e52c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35e3d4bf1bc0f81728205e51de097cf383a0cdc9
Validity
Not Before: Jan 1 14:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0d7c9a09543ab3deb3d5c04b70a74065e233f39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ee:68:e9:99:73:73:f5:22:34:b9:12:3e:a5:
43:82:d0:cc:18:1e:5d:c3:3a:32:28:72:2e:50:e8:
5f:40:ed:ae:be:0c:96:98:0e:3a:b2:84:18:07:35:
64:bc:7b:14:36:d6:12:20:e4:67:c4:4c:6c:e2:44:
c2:53:c7:7a:6d:ce:d1:51:a8:aa:e4:b2:30:2c:b1:
6a:98:19:0a:6e:57:94:c6:7f:f4:cd:70:09:7c:ed:
1a:6b:6a:8a:15:d7:85:d7:b2:c4:12:28:bf:d2:1c:
65:a4:25:dc:36:74:6b:f8:08:85:32:65:78:77:0c:
92:cd:c1:3a:7a:63:7f:68:0f:0f:e9:22:50:63:ae:
7f:ba:7a:2e:0d:67:77:b3:55:42:19:d1:a8:56:e3:
13:a0:85:6f:a6:3a:55:a8:d6:14:29:6c:f3:b9:c9:
75:8b:dd:41:4d:e7:5d:60:43:9a:cc:ca:2f:b5:2f:
10:ee:16:59:48:c5:00:55:3e:0f:11:f2:ab:49:e5:
e0:37:e5:f6:8d:ab:28:d1:05:b9:67:a1:89:32:14:
37:64:5c:28:3d:06:27:c4:5b:bd:1e:43:de:eb:fa:
a4:c0:13:26:9d:bf:f8:b8:0e:86:f8:55:e6:e5:da:
6e:88:b5:08:54:bd:c5:fd:1b:67:0a:73:b7:8b:0b:
db:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D7:C9:A0:95:43:AB:3D:EB:3D:5C:04:B7:0A:74:06:5E:23:3F:39
X509v3 Authority Key Identifier:
keyid:35:E3:D4:BF:1B:C0:F8:17:28:20:5E:51:DE:09:7C:F3:83:A0:CD:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NePUvxvA-BcoIF5R3gl884Ogzck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/c3cda5-8a64-4290-a23d-a634791440ca/1/wNfJoJVDqz3rPVwEtwp0Bl4jPzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/c3cda5-8a64-4290-a23d-a634791440ca/1/NePUvxvA-BcoIF5R3gl884Ogzck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.35.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:a3:01:3d:6e:a4:a6:64:84:19:c0:fb:d2:5c:eb:d9:b1:f7:
c2:7e:88:0f:d4:36:5d:71:b6:ef:00:f5:e8:d2:44:c8:7f:13:
92:28:21:b1:f7:40:d6:1d:d8:d3:07:b3:7e:0e:71:fd:10:99:
43:3e:b2:79:3a:d7:c6:3d:17:af:45:b3:99:e6:fd:cb:61:ad:
95:ad:c8:a7:e1:25:46:d5:49:e9:f5:70:1d:e2:09:1b:17:65:
2a:be:54:25:a6:33:c1:76:dc:cb:01:9f:20:25:09:24:24:18:
3d:a4:f5:5d:a3:70:f4:94:2d:5d:90:ed:4b:e6:5f:38:d7:94:
4f:68:4f:ce:57:af:7f:03:e3:7e:8f:ae:ae:dc:84:8c:13:6e:
7d:d8:32:ce:0e:84:3c:83:1d:62:69:76:15:cc:f2:af:62:9c:
c7:4a:6e:68:d4:06:ad:90:d9:55:8d:19:b2:a8:31:46:23:cd:
23:00:41:94:0f:f8:00:e6:ab:21:bb:d0:36:5f:cf:fb:73:47:
1c:a7:fb:6f:d7:c5:8a:17:04:71:00:75:df:02:61:e7:a5:b6:
04:e2:2c:6a:2a:ca:01:d7:27:0f:c4:39:78:60:0a:a0:4e:fe:
d7:38:9c:d9:cb:bf:1d:fb:34:47:2a:19:d2:fe:41:08:72:96:
01:8a:c0:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:06 2024 by rpki-client on console-fra.rpki-client.org