Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/d07CB3OarFuiJL0PrD6oyq410qY.roa
File: d07CB3OarFuiJL0PrD6oyq410qY.roa (raw, json)
Hash identifier: nDYhgIGea28cD6CRI131zomnlmLbMPfPgcMTlPDIRRA=
Subject key identifier: 77:4E:C2:07:73:9A:AC:5B:A2:24:BD:0F:AC:3E:A8:CA:AE:35:D2:A6
Certificate issuer: /CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Certificate serial: 014882BF
Authority key identifier: 1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/d07CB3OarFuiJL0PrD6oyq410qY.roa
Signing time: Wed 23 Feb 2022 08:39:01 +0000
ROA not before: Wed 23 Feb 2022 08:39:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 91.206.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21529279 (0x14882bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Validity
Not Before: Feb 23 08:39:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=774ec207739aac5ba224bd0fac3ea8caae35d2a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f7:73:21:73:ce:69:91:63:f2:ee:e8:9c:24:
73:cf:1d:ba:cc:c6:3a:3b:e9:58:bc:01:27:85:e9:
71:4c:9a:97:7f:27:8b:eb:0e:1a:9b:4c:ab:b2:76:
bc:c1:c2:11:de:7c:f8:4a:4e:fb:1f:6a:44:1b:81:
9e:78:d5:bc:97:9c:cd:6f:b3:9c:c2:4f:8b:cf:0b:
cf:93:38:8d:9a:8e:e6:57:69:70:f9:03:a4:ee:8c:
84:bb:10:6f:4d:88:e8:b5:1d:ed:27:e9:04:b2:61:
6e:f0:63:c8:14:fb:60:e9:c7:e7:7a:22:55:15:71:
2f:1c:d5:60:08:bd:17:4e:e2:87:b2:bc:f6:26:00:
b0:0c:c2:86:99:8a:c4:64:e2:b7:30:7b:10:fb:96:
9e:9b:b7:f2:96:6c:bf:04:6d:c5:00:09:2d:a7:24:
9f:3e:c3:2f:b0:6d:75:5f:60:d6:d3:26:d3:b8:39:
5a:59:e8:aa:22:8a:b3:7a:6b:e9:c8:b2:34:85:84:
d9:f3:2f:97:4b:01:0d:2b:02:c3:65:ac:29:8d:d6:
0e:e7:80:e1:5c:03:5c:7a:40:7a:26:3b:0f:94:36:
c5:d3:10:1b:e7:b8:1c:bc:be:72:71:f0:e4:ba:20:
31:16:ba:33:ee:b1:92:25:14:65:e3:c9:48:04:db:
c3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:4E:C2:07:73:9A:AC:5B:A2:24:BD:0F:AC:3E:A8:CA:AE:35:D2:A6
X509v3 Authority Key Identifier:
keyid:1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/d07CB3OarFuiJL0PrD6oyq410qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/HFGW3tW6XWhucJXG1cY4xrj4uto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.209.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:0c:11:4d:dc:bb:19:43:3e:67:f1:4c:5e:d3:46:29:c2:a0:
ff:d2:0d:c7:3d:67:39:4c:fa:fe:aa:ea:de:92:f4:fc:1b:28:
99:60:78:52:c5:7d:49:eb:0d:7d:f5:b3:b5:bc:85:36:4a:f3:
00:40:2b:a4:2f:02:37:28:dc:49:0f:3b:a3:a6:73:fe:bd:20:
09:6f:2c:fb:26:c9:63:68:f4:4d:7c:52:aa:5a:38:1d:bf:91:
23:9b:d3:92:3b:f9:69:e4:f0:d9:9a:96:22:57:fa:9b:6b:2a:
89:34:4e:63:b4:e2:59:a8:07:ff:1d:38:12:fd:53:2b:4e:b1:
78:a3:99:e4:a1:0c:cf:9b:96:b4:22:8c:97:3b:fd:12:b4:7b:
6f:d5:4f:ef:ac:cb:2a:6a:87:a4:a1:f7:5e:31:6a:50:aa:d4:
ed:ed:80:e9:81:9e:b7:cf:71:76:61:44:47:30:11:35:6d:b6:
ad:9d:a2:fb:38:75:4d:27:f2:ab:03:87:c5:f0:e8:70:1f:05:
fb:d6:d0:6e:ac:ec:19:96:d2:2d:f0:5a:8f:49:39:c7:a7:40:
4b:9a:71:60:11:f6:39:77:77:5a:f1:54:1b:12:11:da:33:92:
9f:a3:c4:54:68:fe:ef:ed:66:1f:94:68:99:36:eb:e3:13:a9:
7b:1d:6c:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:22 2024 by rpki-client on console-ams.rpki-client.org