Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/s4kQ--S27asOnJPfalZreMwkfag.roa
File: s4kQ--S27asOnJPfalZreMwkfag.roa (raw, json)
Hash identifier: EUQDTMGLZQYknuFNFGjqOe+/wPHxrOwN7lGQ1+ysA/8=
Subject key identifier: B3:89:10:FB:E4:B6:ED:AB:0E:9C:93:DF:6A:56:6B:78:CC:24:7D:A8
Certificate issuer: /CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Certificate serial: 03728984
Authority key identifier: AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/s4kQ--S27asOnJPfalZreMwkfag.roa
Signing time: Sat 01 Jan 2022 11:05:04 +0000
ROA not before: Sat 01 Jan 2022 11:05:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 91.188.219.0/24 maxlen: 24
91.188.216.0/24 maxlen: 24
91.188.217.0/24 maxlen: 24
91.188.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57837956 (0x3728984)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af27d45fc18ba917ab1e89a17ef0b63609848224
Validity
Not Before: Jan 1 11:05:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b38910fbe4b6edab0e9c93df6a566b78cc247da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8d:84:1f:17:94:2e:9e:5f:57:31:13:12:59:
97:ed:c2:bd:10:db:70:f3:d2:5d:d2:bc:02:65:ee:
3f:6a:f3:cf:70:cf:c2:2c:a4:63:fd:7b:51:1c:0a:
d1:eb:89:0e:a8:b0:5d:a5:53:34:2a:c4:f2:76:eb:
08:1b:09:33:54:8c:6a:0d:4f:e7:a9:8d:f6:c9:cc:
c3:72:59:3c:be:4f:bc:d9:27:de:4b:33:3d:56:b4:
7c:be:e1:72:6c:ce:01:c1:13:d9:99:0c:67:fe:86:
9a:55:0a:14:89:c2:a3:3e:3f:36:91:72:54:83:03:
9f:5c:79:5c:88:28:a6:99:72:ed:92:16:a3:06:32:
7f:91:6a:7f:b0:9b:ca:67:3b:05:08:7d:1b:5b:35:
d8:1c:5d:72:08:56:4b:d1:f8:ac:10:24:78:8e:b3:
80:8a:aa:22:a9:9d:92:1c:91:a1:98:92:6e:d5:a3:
ef:5b:b9:f5:c6:9e:3e:7d:0f:ed:ff:7c:68:16:09:
07:9b:21:01:2c:87:6e:13:1c:3d:99:eb:8e:01:b0:
c6:ff:32:2a:c9:27:db:43:49:a3:e0:ed:cd:2e:11:
c3:5d:11:ca:bd:bb:06:a4:8d:3b:12:9f:f3:45:07:
b7:76:2d:ac:fe:63:3b:fe:00:79:9c:11:79:4a:db:
44:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:89:10:FB:E4:B6:ED:AB:0E:9C:93:DF:6A:56:6B:78:CC:24:7D:A8
X509v3 Authority Key Identifier:
keyid:AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/s4kQ--S27asOnJPfalZreMwkfag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.216.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:71:0c:2a:1a:99:fe:fb:a4:27:ac:28:36:ca:1e:ee:9b:1e:
f8:b0:55:67:ea:7d:7d:5c:d2:f5:26:d2:aa:50:4e:bf:30:ed:
a8:30:4d:44:2a:05:b8:b2:0d:3a:aa:e0:0c:57:51:8e:b6:46:
0a:0b:53:4b:f3:9c:4b:9c:4f:70:69:2a:31:18:aa:a4:d4:09:
ea:4e:e0:88:1a:65:70:83:0f:8d:1d:df:70:79:d2:fd:d3:07:
46:88:15:80:90:a7:d6:20:92:53:0a:f2:63:de:11:58:2e:96:
57:2d:c2:22:7a:c3:db:04:ed:01:90:3c:76:55:d8:90:0d:1a:
ca:0d:a0:16:67:6d:fa:dd:b8:9c:e5:43:85:08:d4:91:a2:aa:
c7:2d:d7:b4:21:49:70:28:44:ab:75:d7:57:ed:81:8f:94:f1:
b0:9d:c1:37:17:9a:a4:e7:4e:6d:84:61:38:36:8b:87:fe:c3:
09:3e:51:97:ad:22:d4:56:75:b3:54:bd:b8:da:bc:34:86:94:
f7:f9:02:9e:4f:53:9a:db:6b:5a:34:73:f1:16:14:0a:2d:19:
c8:6d:4c:18:6b:86:34:03:f6:65:8f:81:1c:26:7e:86:11:5b:
4e:5a:6d:27:7f:ce:6d:95:cc:93:56:1f:e0:af:2b:68:1b:26:
47:04:8b:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:44 2024 by rpki-client on console-fra.rpki-client.org