Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/ghY4FtFSpe5NfJCEY7NbX3ggP1I.roa
File: ghY4FtFSpe5NfJCEY7NbX3ggP1I.roa (raw, json)
Hash identifier: X/7aTGbukUYOPApp+92bm/0mTWc/vw6YhnHGjUeemlw=
Subject key identifier: 82:16:38:16:D1:52:A5:EE:4D:7C:90:84:63:B3:5B:5F:78:20:3F:52
Certificate issuer: /CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Certificate serial: 07A188F0
Authority key identifier: 4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/ghY4FtFSpe5NfJCEY7NbX3ggP1I.roa
Signing time: Sat 01 Jan 2022 09:03:08 +0000
ROA not before: Sat 01 Jan 2022 09:03:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46562
IP address blocks: 91.238.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128026864 (0x7a188f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Validity
Not Before: Jan 1 09:03:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82163816d152a5ee4d7c908463b35b5f78203f52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3d:81:ff:60:f9:c1:f8:dc:ce:07:ac:57:6f:
ee:dd:5e:ae:af:4d:3f:09:ea:bd:c5:94:90:3a:a0:
31:e6:32:b7:49:43:a5:31:18:6e:25:ac:d9:c5:3d:
7a:ee:ac:bb:5a:1f:66:f5:5b:55:0f:a0:cb:3d:f2:
e5:65:f5:14:8b:e7:3b:9a:57:dd:31:75:37:6e:80:
05:f4:e6:31:bc:cd:17:dd:79:d8:86:91:1d:e8:bf:
c8:4d:c6:36:af:fc:4c:a8:ef:b8:a7:74:90:3b:29:
87:10:b3:bf:61:d6:66:63:2f:26:f0:07:55:89:3b:
c0:ef:f4:ba:7a:a5:45:15:25:1a:b8:bb:cf:c6:9a:
fb:82:6a:aa:c8:47:8b:ea:9a:33:c7:ff:f5:e4:de:
8a:ac:cb:ee:5a:91:d4:05:96:eb:c1:f5:07:69:8f:
ca:da:57:68:00:4d:a0:26:77:03:91:73:7d:59:fb:
28:28:5c:6e:fc:26:28:c2:75:69:93:3f:a0:86:18:
39:00:31:2f:45:a2:35:3f:f5:96:a8:dd:f0:c8:2a:
f3:1f:53:92:4a:f0:3c:c1:03:69:5e:51:f5:90:bb:
08:d0:4b:22:b7:49:58:92:0d:36:3a:01:b9:47:33:
08:f1:bc:40:8c:48:60:73:a9:7e:67:68:7f:9d:88:
73:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:16:38:16:D1:52:A5:EE:4D:7C:90:84:63:B3:5B:5F:78:20:3F:52
X509v3 Authority Key Identifier:
keyid:4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/ghY4FtFSpe5NfJCEY7NbX3ggP1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.71.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:c7:e9:c8:7b:53:e3:89:6d:ed:e0:9e:b7:5c:e9:8c:7e:3a:
68:5c:4c:19:f1:ca:d4:1d:79:d0:13:a4:bc:6d:44:82:0c:78:
70:61:45:6f:e7:2e:96:6e:b1:e3:6b:66:5c:cd:2b:19:67:95:
b7:e2:f5:63:94:62:45:ba:40:b7:2f:57:2c:6f:01:54:cf:ee:
24:68:fa:aa:66:35:32:8b:6b:7d:5c:9e:19:81:18:53:c6:55:
1d:00:2f:fd:44:61:48:fe:c8:f4:0f:14:f4:e0:d0:e7:1b:f1:
70:c2:28:dc:b1:3b:bd:37:d9:6c:5e:00:47:9d:9a:15:bf:49:
e3:e3:d6:2a:68:f4:ae:b1:b9:8e:73:69:a9:01:04:ab:48:2e:
44:d8:59:a7:07:43:fa:40:52:3b:33:e7:5a:ea:60:b0:8e:ce:
56:36:2d:b5:8d:80:f0:e2:be:74:dc:cd:36:69:8a:f5:0f:de:
b1:90:57:d9:35:40:35:5c:c6:90:3a:63:58:9f:43:fa:c8:ab:
f6:1f:61:92:35:2d:d6:0d:a5:db:c0:92:c4:bd:2d:1a:eb:7e:
95:70:b1:85:7f:5e:27:1e:60:22:fd:81:79:e3:f4:2c:43:e4:
4e:7a:7f:41:ee:6f:65:5c:c1:71:b2:d1:d7:5a:29:de:15:d6:
0e:3d:5d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:59 2024 by rpki-client on console-fra.rpki-client.org