Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/UBpCC9DlGMVJFYUoWx0LZd_S2H4.roa
File: UBpCC9DlGMVJFYUoWx0LZd_S2H4.roa (raw, json)
Hash identifier: E+QtGi60rXObgtkIweKoTvua9S80hi+4jF25GSg6av0=
Subject key identifier: 50:1A:42:0B:D0:E5:18:C5:49:15:85:28:5B:1D:0B:65:DF:D2:D8:7E
Certificate issuer: /CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Certificate serial: 03D3F8EC
Authority key identifier: A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/UBpCC9DlGMVJFYUoWx0LZd_S2H4.roa
Signing time: Sat 01 Jan 2022 15:02:41 +0000
ROA not before: Sat 01 Jan 2022 15:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42927
IP address blocks: 91.198.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64223468 (0x3d3f8ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a09608f15b367aee486b856d9e404c3d1e0a5fd4
Validity
Not Before: Jan 1 15:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=501a420bd0e518c5491585285b1d0b65dfd2d87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:32:0e:26:fd:81:b8:b4:73:c3:fe:3a:6a:45:
40:1a:56:74:a7:89:59:a1:4c:f5:6c:fe:2b:d7:4c:
6b:07:3c:90:8f:e5:76:d9:67:fe:d6:76:3d:6a:4d:
ee:ad:32:15:82:24:d2:f9:6c:c4:e1:86:c5:f6:2c:
49:e0:bc:87:26:9c:1c:25:3b:9b:c9:da:13:7c:f2:
1e:97:d9:ce:0c:ca:35:36:22:24:15:83:d2:34:ac:
d0:db:91:e5:b5:6d:ae:a9:66:96:a5:3c:10:c9:3b:
49:2c:f2:7c:1f:90:76:50:ba:d4:aa:b3:75:e9:73:
6c:d7:55:7a:5d:47:0c:ff:cf:54:5f:48:85:e5:89:
3f:8b:33:a0:55:1f:d7:06:06:08:c5:23:44:0a:c9:
83:c3:9d:80:83:44:d2:ad:9c:f9:56:5b:37:d0:e6:
b4:f5:86:c6:84:18:b1:e3:dc:8c:c6:0c:12:94:6d:
8b:9a:85:92:31:6d:58:54:36:fe:b3:37:3e:da:29:
b6:59:a8:e2:67:6b:ab:ee:0c:32:1b:c6:ff:cd:cf:
0e:27:96:84:a1:f4:74:22:63:7a:90:92:a0:a7:d0:
b7:be:6b:3c:2b:7c:7d:94:e8:38:f3:1e:56:4e:f0:
ab:4f:03:f0:70:a3:68:57:40:e1:bb:aa:94:a5:d7:
1d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:1A:42:0B:D0:E5:18:C5:49:15:85:28:5B:1D:0B:65:DF:D2:D8:7E
X509v3 Authority Key Identifier:
keyid:A0:96:08:F1:5B:36:7A:EE:48:6B:85:6D:9E:40:4C:3D:1E:0A:5F:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/UBpCC9DlGMVJFYUoWx0LZd_S2H4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/81066d-2123-4b6d-8bcf-b8ed66d42782/1/oJYI8Vs2eu5Ia4VtnkBMPR4KX9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.137.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:e5:03:40:b4:28:f4:39:e1:75:d1:6f:75:32:ae:dc:10:50:
eb:f8:e0:ee:9d:1d:1f:59:73:01:3e:ca:35:03:64:95:ad:50:
b4:ac:2c:56:fc:a6:d5:80:a4:31:f5:40:c1:31:cd:79:6b:ec:
1c:06:b0:5f:2c:04:cf:c5:2a:3c:c5:eb:4c:db:db:ef:17:80:
65:30:ee:c3:6c:c6:77:10:1e:25:95:5a:e7:4d:96:69:d9:16:
d7:fe:df:4b:18:51:ea:88:af:a1:eb:59:f3:97:32:f4:9e:14:
f4:6f:e6:8d:68:86:0e:ab:f0:a9:b1:d6:79:f1:b7:24:8f:c7:
18:d6:39:b7:22:51:0a:b3:f2:2a:14:5a:77:ee:f1:5d:2d:ec:
57:57:ac:55:16:52:9b:ce:40:db:5a:2f:39:42:2d:6b:f6:f5:
eb:62:83:1b:53:24:d4:76:2a:3a:f2:2b:e7:ee:14:bd:e6:e3:
63:66:be:bd:bf:02:0f:30:3c:35:b9:0a:5f:ca:8e:c4:9f:af:
24:7d:bd:93:cb:3d:2d:3e:fc:c4:41:53:1c:25:64:b7:ec:e1:
b8:de:6d:e3:96:cc:63:4e:99:22:54:10:96:eb:59:d7:91:fb:
8a:70:99:97:2f:d0:0b:a9:2a:07:72:8d:e9:cc:91:ee:80:fd:
4a:df:79:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:17 2024 by rpki-client on console-ams.rpki-client.org