Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/tUQjoeCR8kijFc0uL9rYUXCGBqc.roa
File: tUQjoeCR8kijFc0uL9rYUXCGBqc.roa (raw, json)
Hash identifier: jhfNJPWrHVRfUMzGJZuCB7px25bO2gwrDplO1ZzvjiM=
Subject key identifier: B5:44:23:A1:E0:91:F2:48:A3:15:CD:2E:2F:DA:D8:51:70:86:06:A7
Certificate issuer: /CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Certificate serial: 01342EB1
Authority key identifier: 1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/tUQjoeCR8kijFc0uL9rYUXCGBqc.roa
Signing time: Thu 17 Feb 2022 13:47:04 +0000
ROA not before: Thu 17 Feb 2022 13:47:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 91.207.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20197041 (0x1342eb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Validity
Not Before: Feb 17 13:47:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b54423a1e091f248a315cd2e2fdad851708606a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3a:fd:3c:f1:6d:ae:ca:16:8b:34:15:63:ef:
39:e3:e7:dc:01:4a:6d:86:e2:46:11:fc:73:49:17:
35:a9:32:31:90:60:c5:5b:39:39:4b:4d:21:5d:f7:
e1:52:95:f9:86:01:15:27:30:dd:80:3b:56:7e:8c:
41:f7:ae:4e:63:eb:3f:0f:e1:25:6b:e6:17:52:82:
9e:e1:2e:47:c5:77:e5:b5:a7:cf:89:ca:f6:f8:8a:
df:37:3f:0f:b9:05:14:29:60:6b:ef:ac:be:bb:b1:
5c:ae:c4:9e:d3:34:be:5d:39:eb:58:35:7e:0b:7e:
b6:38:9c:40:91:57:cb:94:95:28:21:ed:0f:9a:54:
63:87:6e:03:f9:e9:f0:48:b8:91:f2:93:ea:33:48:
3b:31:d8:a8:a2:bb:7a:38:38:3d:4c:5f:cb:90:10:
67:51:8f:3b:f7:4c:22:68:a3:61:ef:31:12:12:25:
88:b0:66:54:12:47:ee:79:0f:42:c2:57:aa:1e:0b:
05:d0:64:d2:aa:3f:53:40:e5:91:8f:b3:bc:86:f7:
f5:13:7e:75:14:26:23:b2:16:5b:58:70:19:9a:07:
7a:1d:2a:26:1d:db:63:48:d6:79:21:f4:2c:29:27:
6d:a4:8c:c8:7a:b8:5b:5d:2f:50:c9:3c:73:f1:cf:
26:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:44:23:A1:E0:91:F2:48:A3:15:CD:2E:2F:DA:D8:51:70:86:06:A7
X509v3 Authority Key Identifier:
keyid:1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/tUQjoeCR8kijFc0uL9rYUXCGBqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/HFGW3tW6XWhucJXG1cY4xrj4uto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.1.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:f5:8d:d7:e3:5c:5e:e9:02:2a:aa:14:42:89:bf:bd:1f:0a:
7d:d8:b4:e6:b0:a2:62:da:9d:b8:e4:ce:a5:5e:67:a1:0e:5a:
10:b8:9e:70:24:08:19:e6:9b:62:27:f2:3f:98:9e:77:a0:ef:
36:9d:14:a9:8d:14:6c:1a:ca:9d:51:fa:bb:b4:af:52:a3:e6:
e3:94:d6:02:f4:44:31:e0:d8:19:8e:9b:31:4c:f1:e0:c0:69:
4c:4f:e2:3a:e9:75:6a:4a:6b:fb:ed:89:1c:9b:02:98:40:0d:
42:32:f1:dc:74:c8:6a:fc:59:ec:8b:f2:ba:bc:b0:5f:94:b0:
c2:06:e4:ca:0b:22:2a:bd:d9:88:3e:ef:52:8b:92:bc:78:de:
98:76:ee:e0:2e:be:2d:f9:b6:f7:4c:88:5e:07:f9:df:b1:9f:
04:ce:fd:f6:a1:05:60:c3:63:16:b4:ab:4b:b5:6a:ee:44:f4:
78:11:9e:01:4c:ac:2b:b6:3d:b3:5f:b0:7b:e5:52:59:48:ec:
95:e5:ad:06:97:ab:5b:68:21:2c:b1:4e:eb:cc:dd:38:ed:fc:
f7:51:24:a5:34:c7:1b:88:5e:7f:3e:6e:3d:74:60:08:4e:24:
2f:29:17:05:2c:0f:bd:98:59:6c:3a:19:e2:80:72:4e:3a:0e:
ba:90:9b:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:05 2024 by rpki-client on console-fra.rpki-client.org