Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/vRNj0gov6B7XbsZ0ja8Yr5aTRmg.roa
File: vRNj0gov6B7XbsZ0ja8Yr5aTRmg.roa (raw, json)
Hash identifier: zL+D8ULFc2ZyY5FNNfcyvUWCZckrxcYlBFKtIuERyXw=
Subject key identifier: BD:13:63:D2:0A:2F:E8:1E:D7:6E:C6:74:8D:AF:18:AF:96:93:46:68
Certificate issuer: /CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Certificate serial: 01CA8370
Authority key identifier: 1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/vRNj0gov6B7XbsZ0ja8Yr5aTRmg.roa
Signing time: Wed 20 Apr 2022 11:20:53 +0000
ROA not before: Wed 20 Apr 2022 11:20:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 91.207.0.0/24 maxlen: 24
91.207.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30049136 (0x1ca8370)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Validity
Not Before: Apr 20 11:20:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd1363d20a2fe81ed76ec6748daf18af96934668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b7:48:ce:08:eb:ce:72:5a:d7:7d:1c:d6:3a:
3a:be:29:91:6a:7f:89:9b:e9:4c:79:30:a3:45:47:
a4:e5:26:80:60:88:c5:55:f5:0c:56:09:af:6c:b6:
93:1c:d8:2a:95:96:f1:99:4e:3a:1a:8a:48:b1:f0:
a4:2e:4d:a9:67:b6:df:c0:75:94:08:62:6c:8b:ee:
dd:dd:bc:b3:9a:b3:34:96:a3:d0:78:1e:c7:d7:69:
66:5f:4e:9b:d1:48:b2:ea:f5:1a:ee:69:6c:b4:ea:
c4:c2:16:84:20:89:69:fe:2d:30:d5:b1:bf:4b:d2:
8c:df:65:c4:ed:49:f9:94:65:bc:27:89:77:f7:d6:
00:a1:21:00:0f:df:92:5f:f5:78:32:aa:3d:0b:56:
16:5a:6e:7b:d7:ca:5e:e6:c1:97:b2:ce:09:cf:34:
d4:97:c3:9a:17:b9:33:5f:2e:23:2f:5a:9e:5f:cf:
34:f0:3d:4c:9b:21:93:51:55:fb:e6:88:95:a5:03:
19:c3:1b:c5:1a:db:93:71:2d:d8:fd:c5:3b:cc:ea:
37:3d:54:74:46:4c:06:b2:ef:a2:c0:1a:1e:19:ce:
60:9c:59:79:10:c8:c1:ce:94:44:55:0a:56:33:38:
de:5b:04:f0:74:d2:28:2b:57:9f:f4:ef:1f:ff:e3:
88:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:13:63:D2:0A:2F:E8:1E:D7:6E:C6:74:8D:AF:18:AF:96:93:46:68
X509v3 Authority Key Identifier:
keyid:1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/vRNj0gov6B7XbsZ0ja8Yr5aTRmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/HFGW3tW6XWhucJXG1cY4xrj4uto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.0.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:e6:90:ef:08:14:16:30:4d:dd:e9:22:6a:3e:df:16:f7:9f:
5c:fd:a6:ec:6a:2b:2e:b6:78:2d:63:99:84:84:93:8c:8c:2b:
c6:b1:d4:13:a6:99:59:35:6c:66:38:75:b9:ff:e0:55:4a:72:
a1:22:31:8d:60:09:f3:9d:1e:b4:93:34:0d:3c:7d:af:bb:d8:
5b:7d:7a:a3:19:64:c7:c3:57:03:bb:15:34:f5:7c:20:38:26:
6c:d4:d1:1e:01:15:b8:c9:06:de:e7:a7:92:a6:12:e6:3b:39:
da:00:f3:f1:40:7d:4d:5d:01:1d:78:ee:22:bd:62:24:b0:e9:
62:f8:4b:4c:a3:b7:73:f9:90:eb:df:b3:d6:b1:79:09:21:05:
41:72:51:b5:62:2b:f7:4a:90:8d:43:60:49:c5:65:b9:b5:a6:
b9:2c:d0:18:61:9d:6a:01:ea:3d:7c:bd:97:ed:46:27:4d:f9:
77:73:31:67:c3:5b:30:f9:73:db:e6:b3:0e:a3:3a:74:09:a1:
cd:5d:9b:a2:36:bd:a0:b0:11:a5:c8:e1:7a:52:c8:5f:d3:18:
8c:5a:2c:eb:df:75:df:ac:c9:dd:61:7f:da:cd:35:1c:17:0a:
d7:15:f7:09:eb:92:41:fa:c8:65:31:77:03:5c:ea:10:3e:65:
f7:38:4b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:22 2024 by rpki-client on console-ams.rpki-client.org