Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/03c734-7598-4bd7-ae21-b204f9fcadb6/1/G5AoxJK8C8Iuzoo5T9wVI3r92WQ.roa
File: G5AoxJK8C8Iuzoo5T9wVI3r92WQ.roa (raw, json)
Hash identifier: hgMKAI9PoN+aOzP++/1DGLiIdkuEDxyg4sl7xNJOLxU=
Subject key identifier: 1B:90:28:C4:92:BC:0B:C2:2E:CE:8A:39:4F:DC:15:23:7A:FD:D9:64
Certificate issuer: /CN=901f843ac9448cb07791917b90354015ffe23db7
Certificate serial: 06BC34A8
Authority key identifier: 90:1F:84:3A:C9:44:8C:B0:77:91:91:7B:90:35:40:15:FF:E2:3D:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kB-EOslEjLB3kZF7kDVAFf_iPbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/03c734-7598-4bd7-ae21-b204f9fcadb6/1/G5AoxJK8C8Iuzoo5T9wVI3r92WQ.roa
Signing time: Sat 01 Jan 2022 07:04:38 +0000
ROA not before: Sat 01 Jan 2022 07:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34717
IP address blocks: 91.223.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112997544 (0x6bc34a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=901f843ac9448cb07791917b90354015ffe23db7
Validity
Not Before: Jan 1 07:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b9028c492bc0bc22ece8a394fdc15237afdd964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f2:8b:0c:dc:3c:36:37:d4:1f:1f:60:9b:a8:
c4:77:53:b3:b2:6a:46:32:bc:85:e9:16:9b:d5:dd:
9a:2a:d1:e2:5a:2d:ed:2f:a0:31:a5:58:0c:d1:ab:
97:b1:c0:60:c3:78:03:92:ea:29:9a:0c:50:2f:1a:
b3:e6:09:76:c5:69:0d:8a:7a:b0:d6:35:39:96:31:
74:94:4a:b4:92:a9:83:5d:27:34:4a:73:52:ea:10:
5b:0e:64:e6:2e:20:c9:3f:36:d0:58:df:8a:80:36:
43:07:da:0a:3b:19:e4:28:9c:8c:11:31:5b:8a:3f:
4f:b6:12:a7:ee:a0:3d:cc:4e:36:7e:86:0f:14:31:
f1:c0:1e:52:4f:4b:77:d2:ad:c9:ca:b4:4e:ad:b7:
a7:ee:9c:51:e3:1b:0d:07:a7:c3:ed:09:ee:38:2f:
dc:b5:c0:2d:3a:6a:88:22:d2:32:9e:d9:37:67:bb:
14:6d:b9:6b:16:72:f0:85:29:52:ae:39:ec:53:1b:
ea:e4:4d:8b:04:21:9c:5d:f3:e3:4a:cf:a9:b5:5d:
d8:2b:36:cf:08:4b:99:47:82:eb:69:fd:a5:33:9c:
d9:7c:05:9a:3f:50:df:b0:dd:0e:2f:88:43:ca:c0:
ca:c4:f8:ce:bf:c8:a5:19:16:dd:05:66:60:8a:e4:
19:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:90:28:C4:92:BC:0B:C2:2E:CE:8A:39:4F:DC:15:23:7A:FD:D9:64
X509v3 Authority Key Identifier:
keyid:90:1F:84:3A:C9:44:8C:B0:77:91:91:7B:90:35:40:15:FF:E2:3D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kB-EOslEjLB3kZF7kDVAFf_iPbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/03c734-7598-4bd7-ae21-b204f9fcadb6/1/G5AoxJK8C8Iuzoo5T9wVI3r92WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/03c734-7598-4bd7-ae21-b204f9fcadb6/1/kB-EOslEjLB3kZF7kDVAFf_iPbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.166.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:ce:7a:29:4c:51:6a:00:41:f2:e4:1f:cc:cd:d3:6b:ea:d6:
cc:70:29:85:c8:7f:35:30:a9:10:b3:d4:ab:c3:20:2a:16:98:
1c:8d:19:e7:2c:73:c0:c7:a0:b5:69:1c:03:6e:39:12:14:df:
34:88:06:ae:da:34:f7:b6:67:e4:22:be:b2:69:ac:c3:8a:e2:
db:24:4a:1c:38:cf:66:d4:e5:2a:fe:5c:5a:93:37:09:c4:0b:
4a:14:20:1a:40:e4:64:df:c8:49:2d:0d:51:55:9d:80:53:24:
de:7d:e1:bd:d1:f8:a2:72:23:06:b3:96:23:8d:41:a3:b6:28:
ec:89:0c:11:f7:4b:73:28:47:bb:9a:75:09:0b:b3:21:43:cc:
13:0c:ab:ed:82:5c:4a:c3:67:ee:0c:ba:21:96:d8:db:d7:74:
14:58:5d:e1:03:75:a4:dd:1b:53:d0:07:b9:67:b3:0b:e5:f0:
d6:ff:76:55:f7:a2:60:3f:ff:fe:26:bc:b9:0b:17:b2:75:97:
e9:04:b0:fe:24:18:44:76:d4:a8:04:2e:e0:dc:0b:67:4c:24:
bf:51:7a:64:f4:15:92:42:95:e2:24:7d:49:85:21:ab:57:79:
b8:9a:dd:40:77:e5:c6:15:65:8e:ae:5f:d6:56:d3:32:78:2d:
ba:1a:29:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:22 2024 by rpki-client on console-ams.rpki-client.org