Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/82d65a-45e2-4efb-b23c-955ad78bcb07/1/JIXeSZAXrTDQzO-B8JEZBgfIXcE.roa
File: JIXeSZAXrTDQzO-B8JEZBgfIXcE.roa (raw, json)
Hash identifier: XkqXB6Y2JTu7m6CoPI+mDND6pIxdMpLzeG/8oWfn1/0=
Subject key identifier: 24:85:DE:49:90:17:AD:30:D0:CC:EF:81:F0:91:19:06:07:C8:5D:C1
Certificate issuer: /CN=d4d86e7d073a9e4d69ec715c3623176805894d5a
Certificate serial: 203E
Authority key identifier: D4:D8:6E:7D:07:3A:9E:4D:69:EC:71:5C:36:23:17:68:05:89:4D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1NhufQc6nk1p7HFcNiMXaAWJTVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/82d65a-45e2-4efb-b23c-955ad78bcb07/1/JIXeSZAXrTDQzO-B8JEZBgfIXcE.roa
Signing time: Fri 22 Apr 2022 07:55:38 +0000
ROA not before: Fri 22 Apr 2022 07:55:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62350
IP address blocks: 91.240.236.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8254 (0x203e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4d86e7d073a9e4d69ec715c3623176805894d5a
Validity
Not Before: Apr 22 07:55:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2485de499017ad30d0ccef81f091190607c85dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:19:d0:e2:b2:c8:de:c4:8a:ff:1d:54:19:1e:
fd:d1:96:84:77:07:7b:65:5e:18:a7:f7:7f:52:14:
68:90:c4:f5:69:cd:12:f8:92:4e:45:5a:1e:7b:b4:
77:cb:5a:79:a2:73:de:53:3d:94:ec:05:e8:39:c3:
be:a8:03:2e:e3:6c:0e:c5:fe:d0:14:8c:10:85:c3:
f6:11:09:77:29:e2:49:b9:4b:0a:1e:02:b8:be:52:
a5:8f:dc:e1:05:0d:42:2f:89:6c:cc:dc:be:a9:ec:
60:87:0f:ce:96:92:6d:e3:f1:b5:4f:30:dc:00:aa:
e2:00:d7:34:e6:48:49:c1:cb:10:6f:5a:15:aa:29:
cd:1b:a3:ca:32:0c:b4:8a:78:dd:12:8f:87:4f:29:
bd:3a:8f:be:29:80:83:4b:d6:9a:3a:f1:56:9a:05:
b7:3a:48:39:96:44:fb:bb:da:31:a9:86:5c:ec:a8:
13:c4:a9:7c:9a:75:6f:82:2d:fc:da:d0:bd:76:9e:
d6:20:5f:78:01:ab:0f:1d:9c:58:07:a9:14:43:3d:
34:51:75:61:29:58:97:2d:a0:9c:3e:71:1c:1a:1c:
a2:c5:70:40:35:ee:0b:7a:24:1d:9c:5d:4f:1e:cc:
11:35:7a:93:ba:0a:ed:01:e1:54:be:3f:2f:19:d7:
5f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:85:DE:49:90:17:AD:30:D0:CC:EF:81:F0:91:19:06:07:C8:5D:C1
X509v3 Authority Key Identifier:
keyid:D4:D8:6E:7D:07:3A:9E:4D:69:EC:71:5C:36:23:17:68:05:89:4D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1NhufQc6nk1p7HFcNiMXaAWJTVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82d65a-45e2-4efb-b23c-955ad78bcb07/1/JIXeSZAXrTDQzO-B8JEZBgfIXcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82d65a-45e2-4efb-b23c-955ad78bcb07/1/1NhufQc6nk1p7HFcNiMXaAWJTVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.236.0/23
Signature Algorithm: sha256WithRSAEncryption
05:eb:75:f2:f4:99:2c:7e:ae:dd:c2:b9:4c:64:f9:91:13:48:
9d:b2:7d:5b:13:96:95:26:f0:17:39:35:b8:cd:96:9b:58:8d:
29:26:b0:27:a9:1c:e8:e3:b2:8b:73:d7:7a:60:2c:d3:fb:59:
be:cc:38:bd:96:01:c5:01:5d:68:6d:56:db:53:aa:1e:57:86:
cb:14:84:99:8c:da:b2:02:65:28:47:e8:eb:56:da:42:fe:1d:
c5:78:4e:01:5e:4f:5f:95:7c:60:03:b5:bc:07:90:73:b1:b0:
6d:ef:27:7d:0b:78:78:ff:c8:8f:af:15:4d:e9:66:56:b1:9d:
e1:2d:2f:31:6a:d3:15:9a:3e:6e:eb:a3:f1:6a:2e:75:0f:be:
bd:0e:bd:c5:23:4f:2a:ff:88:47:ab:77:25:17:f3:04:8e:11:
25:19:1d:b4:0b:a9:56:de:83:c3:0d:09:7e:a4:99:ba:b7:ff:
ed:5e:6c:28:13:ab:3c:df:f4:a9:29:03:ca:c0:fb:be:ff:3f:
2e:b8:4d:b2:ca:07:f5:f7:01:d3:a6:53:40:43:15:cc:cf:81:
8d:35:0b:14:8f:7a:ae:81:41:9e:fe:f0:0f:90:c6:f0:f3:fd:
53:90:61:a9:ea:08:ed:0b:b8:67:99:57:dc:76:0c:70:36:dd:
88:b8:8f:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:56 2024 by rpki-client on console-ams.rpki-client.org