Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b75d64-9a55-490c-8c58-3fe17481f608/1/kdwAk6J8tTkDZ3eYs7MHthf2cUQ.roa
File: kdwAk6J8tTkDZ3eYs7MHthf2cUQ.roa (raw, json)
Hash identifier: K5vrVQgubI0kya5K0Jtd0pGpk7x1n85Y6+cV0I0R7ZU=
Subject key identifier: 91:DC:00:93:A2:7C:B5:39:03:67:77:98:B3:B3:07:B6:17:F6:71:44
Certificate issuer: /CN=d6f807660bf2cd92aee391442a5343af718c18c7
Certificate serial: 182D54E0
Authority key identifier: D6:F8:07:66:0B:F2:CD:92:AE:E3:91:44:2A:53:43:AF:71:8C:18:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1vgHZgvyzZKu45FEKlNDr3GMGMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/b75d64-9a55-490c-8c58-3fe17481f608/1/kdwAk6J8tTkDZ3eYs7MHthf2cUQ.roa
Signing time: Sat 01 Jan 2022 04:51:25 +0000
ROA not before: Sat 01 Jan 2022 04:51:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44574
IP address blocks: 193.9.248.0/24 maxlen: 24
91.212.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 405624032 (0x182d54e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6f807660bf2cd92aee391442a5343af718c18c7
Validity
Not Before: Jan 1 04:51:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91dc0093a27cb53903677798b3b307b617f67144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1c:95:c3:06:4a:a6:4a:cb:8a:4d:77:ab:b5:
cb:44:c9:89:e5:e1:2a:6e:78:ba:34:b8:7a:4d:d0:
df:3c:5a:ec:df:29:3a:db:75:c0:8c:ab:ba:6a:bd:
1e:db:74:d9:ec:96:08:39:f4:e8:45:db:78:7b:87:
04:ae:83:fd:e2:ab:8c:90:fc:d1:58:24:3a:b6:d9:
cb:db:95:4c:f2:33:e1:1c:e8:79:93:3c:4c:35:24:
46:e0:b1:ca:9b:b6:9e:ae:a9:07:ed:55:e1:44:76:
66:a0:0e:a3:00:0b:63:d8:54:71:ce:b3:a1:60:13:
1e:72:5a:26:4f:23:e7:bc:3f:f0:3c:be:c3:1a:f9:
f2:6b:58:0f:25:95:a8:b5:0b:87:dd:1b:55:66:90:
ab:fa:0d:ba:0f:8c:76:d8:3a:2d:5e:ff:96:3f:e1:
90:dc:45:f1:0a:76:3a:c4:9b:3d:9a:d8:50:99:29:
42:a1:e2:fd:e2:af:a7:c9:30:64:c8:ad:ce:ff:36:
84:c9:46:8d:64:4e:63:48:e3:85:f7:df:6e:ff:d2:
3c:08:28:d4:e1:de:34:27:21:01:29:62:aa:ed:9b:
a6:2a:d0:17:7c:3b:5b:0e:18:8e:f5:ea:96:28:f9:
32:62:72:1f:82:26:e4:a9:73:0f:e2:db:f1:cd:e5:
1a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:DC:00:93:A2:7C:B5:39:03:67:77:98:B3:B3:07:B6:17:F6:71:44
X509v3 Authority Key Identifier:
keyid:D6:F8:07:66:0B:F2:CD:92:AE:E3:91:44:2A:53:43:AF:71:8C:18:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1vgHZgvyzZKu45FEKlNDr3GMGMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b75d64-9a55-490c-8c58-3fe17481f608/1/kdwAk6J8tTkDZ3eYs7MHthf2cUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b75d64-9a55-490c-8c58-3fe17481f608/1/1vgHZgvyzZKu45FEKlNDr3GMGMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.90.0/24
193.9.248.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b7:b7:72:5b:36:0d:02:c8:1e:d4:3c:a1:17:5c:85:86:af:
0d:6d:dc:fc:8e:fa:a6:17:ff:4c:32:97:83:8d:2f:24:1a:75:
96:6e:6d:7b:ab:a8:fd:ee:3b:bf:ae:59:4f:ad:79:06:65:9a:
0e:fb:8b:1d:90:11:e7:87:31:77:98:55:72:89:21:23:b9:01:
b2:fc:47:1f:40:2e:8e:05:06:61:59:7c:1b:ce:e7:54:f0:9b:
a1:8b:ff:81:0d:8c:56:fe:95:65:71:29:4d:d3:40:44:d5:26:
e8:58:c0:60:68:8b:30:79:ae:2b:13:79:29:41:e5:6d:2b:99:
fd:5a:34:1c:2d:36:74:9d:71:e0:13:c0:81:38:cc:7e:33:6c:
d1:fb:9e:24:41:df:8a:b8:be:88:0d:fd:22:0a:73:af:b5:20:
61:d3:be:4d:af:f8:f4:0d:b3:ed:ae:0f:d4:d5:2b:49:71:5a:
8e:ed:07:d4:4a:f5:5d:ff:cc:81:59:d7:24:77:21:07:20:e2:
0b:18:bb:dd:e7:ac:4b:9f:17:a8:9f:30:5c:f2:ab:3a:c6:8d:
30:01:15:a3:55:a4:32:3b:e7:d6:d3:76:f0:82:e4:81:36:ca:
67:57:85:4e:d9:ce:0f:df:9b:52:3c:0b:db:0b:e9:d3:c9:5b:
96:b5:98:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:32 2024 by rpki-client on console-fra.rpki-client.org