Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/XAeIzK8zAAhrORs4mo5Jo_Y0Kd4.roa
File: XAeIzK8zAAhrORs4mo5Jo_Y0Kd4.roa (raw, json)
Hash identifier: dV6lhJzCe8ynybjFDEQuMTNHaNAxqvNn4+32NBDiP2U=
Subject key identifier: 5C:07:88:CC:AF:33:00:08:6B:39:1B:38:9A:8E:49:A3:F6:34:29:DE
Certificate issuer: /CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Certificate serial: 018477DA456781B9731507A719F2B710D334
Authority key identifier: 4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/XAeIzK8zAAhrORs4mo5Jo_Y0Kd4.roa
Signing time: Mon 14 Nov 2022 20:35:04 +0000
ROA not before: Mon 14 Nov 2022 20:35:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 91.238.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:77:da:45:67:81:b9:73:15:07:a7:19:f2:b7:10:d3:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Validity
Not Before: Nov 14 20:35:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c0788ccaf3300086b391b389a8e49a3f63429de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:34:93:cb:95:ef:82:9b:5d:97:c9:34:51:ac:
6d:27:3b:d8:d5:8b:d5:0f:83:17:fb:c8:47:9d:ce:
98:92:90:11:35:ab:2a:5f:ff:6d:64:74:e7:99:0f:
01:81:7c:3a:b6:28:ca:d9:c1:4b:a3:3e:33:29:11:
3d:25:00:cd:5c:70:8f:68:c1:08:b7:6f:62:6f:0c:
91:b3:05:8d:09:d9:fe:07:7a:26:24:d4:59:3a:3d:
b2:1a:ed:c2:7d:4a:68:ea:bf:20:20:be:f0:10:a4:
ea:b6:a3:a4:51:05:95:71:66:b8:68:98:2a:e1:53:
f7:df:fe:70:c4:bd:de:4d:d4:32:e4:3c:61:58:c3:
dc:01:23:02:97:92:92:ec:2c:62:8f:d5:09:70:04:
85:ae:99:f9:5b:31:98:72:d2:d1:5b:8f:dc:ad:4f:
99:43:d5:f2:93:c5:c1:48:71:e2:80:b5:5d:11:99:
46:70:ef:c7:53:4e:25:5e:e1:f0:ac:61:59:74:a9:
9b:47:d6:9a:db:7b:7e:1c:05:fa:2f:ce:c0:de:52:
37:51:b4:39:cc:50:76:38:9f:52:11:88:99:56:ae:
50:31:d8:1e:b0:ec:9d:b1:f6:23:56:07:05:6f:d2:
25:61:85:fa:22:4e:02:46:ff:9c:01:7b:2e:2d:92:
0e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:07:88:CC:AF:33:00:08:6B:39:1B:38:9A:8E:49:A3:F6:34:29:DE
X509v3 Authority Key Identifier:
keyid:4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/XAeIzK8zAAhrORs4mo5Jo_Y0Kd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.70.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:7b:2a:5d:af:f0:ac:c6:c6:95:35:3b:d0:8c:e6:de:3f:1c:
07:a5:d3:91:06:2d:8d:39:fd:28:4a:56:35:08:7c:dd:5d:f6:
92:19:27:84:b3:e3:28:bc:5c:6b:ea:60:c7:de:df:8a:3a:4f:
da:ed:2d:34:e3:db:1a:5c:30:30:88:7e:72:57:e6:25:a0:ee:
ed:0e:38:16:c8:fe:69:e4:50:e7:6a:d3:4c:07:0a:8a:94:1e:
41:07:4d:2e:49:32:dc:dd:41:b8:73:e7:f3:1e:b5:3f:43:98:
10:72:4f:04:91:16:d4:73:ba:ec:52:71:1c:66:56:b6:17:4c:
8e:75:07:06:f1:c8:27:ed:65:4d:36:af:92:02:71:8d:b8:c7:
f3:08:bf:a4:c6:de:0e:e4:1d:db:6a:3d:af:43:e2:95:95:56:
1a:99:3f:8d:78:7c:88:7e:60:4a:20:c7:c2:c3:6e:fb:fb:42:
37:4c:72:93:80:8a:19:25:c8:b3:f2:14:e1:72:7b:87:eb:1f:
f8:68:44:2e:60:d4:88:4f:b9:92:8c:d6:fe:dd:1e:96:8f:4d:
88:89:2b:71:f2:92:b2:53:84:0b:e9:da:98:00:a9:c0:9e:aa:
17:2f:2d:5a:d5:39:e0:32:ea:71:45:18:d8:bb:df:4c:ba:9c:
78:aa:68:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:59 2024 by rpki-client on console-fra.rpki-client.org