Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/c8010e-3289-4a36-a2b8-12b2bc58053a/1/I0kQYvIVxmPs2MF47b2-6EV0fdc.roa
File: I0kQYvIVxmPs2MF47b2-6EV0fdc.roa (raw, json)
Hash identifier: Sef4+sDlNLq5y7RFkDQOgl+e9FU011odI1TEEII6QEA=
Subject key identifier: 23:49:10:62:F2:15:C6:63:EC:D8:C1:78:ED:BD:BE:E8:45:74:7D:D7
Certificate issuer: /CN=dba12207af4d186c44da2533c0b8f1fd1f55d8db
Certificate serial: 01851845A40353B9AD50FD49E4AAA7F6FE3B
Authority key identifier: DB:A1:22:07:AF:4D:18:6C:44:DA:25:33:C0:B8:F1:FD:1F:55:D8:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/26EiB69NGGxE2iUzwLjx_R9V2Ns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/c8010e-3289-4a36-a2b8-12b2bc58053a/1/I0kQYvIVxmPs2MF47b2-6EV0fdc.roa
Signing time: Fri 16 Dec 2022 00:11:35 +0000
ROA not before: Fri 16 Dec 2022 00:11:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 91.216.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:18:45:a4:03:53:b9:ad:50:fd:49:e4:aa:a7:f6:fe:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dba12207af4d186c44da2533c0b8f1fd1f55d8db
Validity
Not Before: Dec 16 00:11:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23491062f215c663ecd8c178edbdbee845747dd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:7e:3a:84:eb:ea:3a:84:cc:9b:51:1f:24:6e:
b2:dd:15:70:5f:ec:ea:f0:90:fc:6b:0e:7f:19:f3:
ba:3b:ad:cb:d1:98:56:37:55:8c:0d:e7:23:03:ef:
09:5f:75:6a:35:62:c2:56:e3:2d:39:b2:4e:66:4e:
75:c5:15:de:88:4a:7c:01:be:a0:4e:19:2c:52:ec:
03:4c:54:22:aa:3c:67:58:5d:2e:d4:7a:c1:39:4c:
c0:76:b4:3e:8d:5f:4c:27:7c:9c:3d:0d:b7:a6:65:
c0:f1:b0:d3:b5:d4:a2:a6:e6:f7:d0:5a:47:b2:51:
18:57:26:d1:d6:96:4c:d9:5e:de:ae:9c:33:4b:42:
f6:1b:28:1a:ae:33:ce:bd:fa:eb:be:21:18:06:cd:
20:a3:d5:cc:e7:25:6c:6a:be:65:cb:e8:b8:67:fb:
c1:fd:ee:ad:5c:2e:b5:da:61:63:c0:74:fe:9f:dd:
df:b3:07:e9:1a:48:2d:f6:e3:96:9a:fe:31:47:16:
ce:af:42:7c:48:d1:71:ac:37:3f:92:bc:3e:21:e5:
2b:2f:d2:e7:13:9b:89:f7:f8:d1:33:de:21:1a:9b:
fe:ac:c0:fe:84:73:15:68:2f:20:70:54:91:de:20:
e3:34:6a:46:4a:80:dd:cc:a9:52:83:92:c5:a1:c9:
ed:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:49:10:62:F2:15:C6:63:EC:D8:C1:78:ED:BD:BE:E8:45:74:7D:D7
X509v3 Authority Key Identifier:
keyid:DB:A1:22:07:AF:4D:18:6C:44:DA:25:33:C0:B8:F1:FD:1F:55:D8:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/26EiB69NGGxE2iUzwLjx_R9V2Ns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/c8010e-3289-4a36-a2b8-12b2bc58053a/1/I0kQYvIVxmPs2MF47b2-6EV0fdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/c8010e-3289-4a36-a2b8-12b2bc58053a/1/26EiB69NGGxE2iUzwLjx_R9V2Ns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.34.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:e5:06:02:54:5e:e5:b1:98:1e:53:1d:7a:52:33:c2:2f:1f:
e2:81:fe:1f:b6:63:f2:40:bf:a1:48:79:4e:d3:c3:ed:d4:29:
e1:4d:75:56:34:76:bc:c8:26:8f:51:60:99:01:af:b9:50:a6:
46:b6:02:21:df:a7:d0:19:47:f3:7a:53:70:97:23:06:0f:9f:
3c:b9:33:5f:30:8f:3f:77:fc:80:ce:01:b2:62:b1:8d:b7:a2:
ff:34:ab:15:f0:38:09:a5:fc:79:cc:e4:58:c6:8a:6c:53:9b:
cc:c2:32:82:92:32:de:bb:56:e7:4a:d2:40:83:d8:a6:31:b8:
d5:5e:d8:c3:79:a8:c9:53:fd:9c:2f:7b:19:8b:e1:ef:80:aa:
5f:46:be:32:44:c6:ea:a3:82:63:1e:6b:99:46:b2:27:fe:05:
e7:b0:33:26:51:8d:64:d8:e0:85:6d:94:28:ae:58:d6:67:ce:
4c:ce:98:ac:6f:5a:21:4b:9c:d9:0a:76:b6:ac:b4:a7:5c:d1:
c5:1e:c6:43:a4:a7:10:44:0a:28:42:b0:82:85:1f:73:ea:4b:
5d:7f:23:03:09:99:31:9c:e1:d3:97:d0:6b:98:bf:e7:e4:44:
46:f3:41:62:38:a9:9a:f4:db:3e:be:19:b1:e0:ad:fb:ea:37:
06:34:9e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:11 2024 by rpki-client on console-fra.rpki-client.org