Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/7a4402-f3f5-4f3a-98a8-2337a81b1f78/1/1-tY_V_ug3Y2D1b6xxmGIQpj8ksg.roa
File: 1-tY_V_ug3Y2D1b6xxmGIQpj8ksg.roa (raw, json)
Hash identifier: 9gy2RRi0rv8r36yg3pYOgyTXhehMygsU5lBhK/EkYO8=
Subject key identifier: FA:D6:3F:57:FB:A0:DD:8D:83:D5:BE:B1:C6:61:88:42:98:FC:92:C8
Certificate issuer: /CN=3389e0b8a2ff82a23b48dd6e6e76176b4cd3832e
Certificate serial: 054CDFA2
Authority key identifier: 33:89:E0:B8:A2:FF:82:A2:3B:48:DD:6E:6E:76:17:6B:4C:D3:83:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M4nguKL_gqI7SN1ubnYXa0zTgy4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/7a4402-f3f5-4f3a-98a8-2337a81b1f78/1/1-tY_V_ug3Y2D1b6xxmGIQpj8ksg.roa
Signing time: Sat 01 Jan 2022 13:05:27 +0000
ROA not before: Sat 01 Jan 2022 13:05:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41489
IP address blocks: 91.240.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88924066 (0x54cdfa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3389e0b8a2ff82a23b48dd6e6e76176b4cd3832e
Validity
Not Before: Jan 1 13:05:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fad63f57fba0dd8d83d5beb1c661884298fc92c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9b:2c:2e:1f:9c:14:a8:a8:d9:28:9c:32:3b:
2d:46:56:28:95:72:2e:da:76:4b:86:b0:27:14:7a:
6b:f6:6e:da:ae:d1:9c:a2:ee:d5:d5:f1:0c:24:35:
e3:fe:0f:92:bc:3e:98:fe:99:e7:11:bd:94:b5:c2:
73:6c:1a:ca:e3:f6:0f:7a:90:62:84:9e:98:f1:e7:
84:91:9d:36:bf:a5:55:4f:a0:07:c1:b1:13:0f:5b:
8a:da:12:9e:9e:f3:9a:79:7c:26:0e:68:8d:eb:55:
db:5d:9c:6b:c8:56:15:f5:dd:37:f2:77:22:47:1d:
1e:8d:61:ec:cd:cb:45:78:21:dc:d3:bb:cf:ef:ea:
a6:3c:e4:d3:70:f0:cd:b5:ae:2d:5a:99:e2:18:8e:
c4:8a:55:c6:81:63:29:8a:6b:05:f9:3d:76:87:57:
ad:4b:dd:c2:ae:75:f9:1f:4d:97:d9:92:1a:43:26:
8f:71:fa:05:8d:84:77:ac:ba:e6:32:ef:89:dd:b3:
be:24:98:d3:ad:99:56:cd:4f:79:bf:ea:52:f6:e2:
27:b4:e0:47:88:1b:b3:74:9f:cf:e1:be:3a:8a:bf:
47:b7:9f:b6:c0:16:3c:ee:c4:06:1d:ca:cd:f3:70:
ed:85:65:13:b2:ef:9d:62:c2:04:1b:2a:d5:cf:a7:
ac:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D6:3F:57:FB:A0:DD:8D:83:D5:BE:B1:C6:61:88:42:98:FC:92:C8
X509v3 Authority Key Identifier:
keyid:33:89:E0:B8:A2:FF:82:A2:3B:48:DD:6E:6E:76:17:6B:4C:D3:83:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M4nguKL_gqI7SN1ubnYXa0zTgy4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/7a4402-f3f5-4f3a-98a8-2337a81b1f78/1/1-tY_V_ug3Y2D1b6xxmGIQpj8ksg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/7a4402-f3f5-4f3a-98a8-2337a81b1f78/1/M4nguKL_gqI7SN1ubnYXa0zTgy4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.176.0/24
Signature Algorithm: sha256WithRSAEncryption
59:18:1c:26:fd:3d:f0:bf:b6:6a:6d:b0:0e:98:8e:ce:02:12:
0b:fb:ed:7c:26:7d:a0:01:5c:b0:e3:b2:40:99:15:df:55:60:
45:f3:50:b7:b5:72:45:ea:cc:c7:af:fd:9d:0f:21:3b:dd:25:
1b:bc:d6:0e:ba:99:64:dd:fe:22:3b:f4:20:1a:7f:90:8d:99:
fc:ba:e4:6f:b9:a5:a7:88:92:7c:b7:3e:f5:e2:00:2b:4e:6b:
1a:37:a7:b2:d5:97:57:c4:ea:e6:1e:4e:75:0e:0a:74:72:c7:
5b:d9:71:26:b4:9e:c7:8c:1b:f2:86:68:48:bd:65:f9:a5:78:
cf:6a:26:9f:3f:85:cf:5e:c7:a1:14:92:51:76:af:e2:ea:d4:
ab:94:bb:ed:1b:de:68:33:8b:ad:fe:b3:76:02:ef:f3:c5:d2:
a7:99:87:84:7c:14:68:b5:95:6d:5a:8a:93:7f:cb:75:e4:7c:
5b:45:ad:9f:0b:b3:6b:59:58:85:9e:17:06:d2:de:65:3f:a2:
83:68:4b:d6:d3:e3:48:dd:e3:17:d8:2a:73:c9:5c:df:1a:53:
68:e8:b9:0f:02:01:db:b0:00:ea:7f:48:9a:00:54:33:da:8f:
f2:2d:f4:38:99:b1:77:4a:01:e0:c2:e6:d0:44:19:47:e8:bb:
03:8e:62:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:31 2024 by rpki-client on console-fra.rpki-client.org