Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/L5vcHvXOMGkrcudQ1Sn4kHIYLJc.roa
File: L5vcHvXOMGkrcudQ1Sn4kHIYLJc.roa (raw, json)
Hash identifier: 8bQlTfptIO2+6RzmwHiTYPE05+b8qEqlNEvX6e2JCzg=
Subject key identifier: 2F:9B:DC:1E:F5:CE:30:69:2B:72:E7:50:D5:29:F8:90:72:18:2C:97
Certificate issuer: /CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Certificate serial: 74C6B0
Authority key identifier: CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/L5vcHvXOMGkrcudQ1Sn4kHIYLJc.roa
Signing time: Thu 24 Mar 2022 08:03:32 +0000
ROA not before: Thu 24 Mar 2022 08:03:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35381
IP address blocks: 91.207.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7653040 (0x74c6b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Validity
Not Before: Mar 24 08:03:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f9bdc1ef5ce30692b72e750d529f89072182c97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:fd:93:80:1b:6f:ce:dc:f8:dc:f3:64:4a:5a:
20:db:b6:03:72:fb:34:06:ba:7e:9c:64:9e:01:36:
63:56:08:60:90:06:93:59:b5:14:c4:31:cd:49:ec:
a7:25:41:43:94:15:ec:d5:76:d0:a1:9f:08:a7:26:
9a:a9:4d:39:32:a8:07:bd:c9:e2:fe:d0:72:30:cd:
9c:b0:38:f0:38:25:6e:45:17:a5:c0:f6:f5:ac:b3:
17:8f:7b:3b:95:8b:cb:cd:3a:2e:ee:4b:12:97:3d:
13:1a:0a:7c:9b:8d:39:48:fe:1b:8b:78:38:a8:0b:
8d:39:51:f6:f2:2a:11:67:2e:4d:b9:5a:df:db:60:
a2:42:30:5d:45:a8:a0:7c:10:35:4d:57:ff:f9:80:
48:fd:06:2b:59:67:74:46:38:e6:7b:13:34:9f:a1:
b4:4b:15:4f:a1:b2:ee:1a:16:eb:46:22:ea:bb:77:
ea:11:88:d7:64:83:02:1f:fb:1f:e3:4b:e0:2b:49:
b1:33:d9:8d:c6:dc:1d:87:9a:56:5a:7b:8d:a0:7a:
b2:69:29:cf:16:f8:27:dc:7f:ba:7c:38:2c:07:5f:
a3:49:ca:5d:77:07:58:d1:2f:24:2e:07:99:f4:43:
7b:c6:16:d6:2c:2c:a3:1e:8f:46:a3:f1:76:6d:d2:
20:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9B:DC:1E:F5:CE:30:69:2B:72:E7:50:D5:29:F8:90:72:18:2C:97
X509v3 Authority Key Identifier:
keyid:CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/L5vcHvXOMGkrcudQ1Sn4kHIYLJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/zx32Zn2jjleiWxlF-kDlk-Wt-gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.107.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:e2:34:60:e1:25:9d:54:77:d2:55:a5:28:77:c6:b7:63:90:
d4:d1:ab:51:10:94:84:c2:0e:1d:8c:44:13:1f:1d:fd:67:2a:
02:2d:dd:02:03:53:11:71:d5:5d:00:eb:e7:42:dd:34:84:91:
a6:ec:02:ec:ea:6a:c0:5b:63:cf:ff:0c:aa:ee:b4:2a:ab:a1:
5b:77:16:6f:7d:da:52:04:2b:97:c0:c9:d6:37:1b:6b:17:0c:
b7:c9:37:2d:aa:0c:93:78:f4:b1:c6:0a:16:22:9d:2b:f4:90:
af:08:49:17:e2:30:21:e5:8d:a1:58:5d:c0:8d:43:d8:60:8d:
06:d5:b6:3f:7c:76:11:67:cc:7d:65:7f:ff:40:6c:3d:dc:9a:
59:f3:99:1c:ae:8b:61:98:10:13:df:77:4b:91:96:58:83:27:
9d:d4:ec:76:2b:a7:94:b3:c6:4d:4d:92:02:60:90:24:41:01:
41:0f:fd:b8:ca:ea:0a:ed:8e:58:e5:01:ae:4f:28:0a:c0:16:
c4:3a:f8:6c:9e:c0:2a:af:d3:f6:05:07:3b:d7:80:0d:ff:0d:
0c:b0:0d:d5:7d:ed:e1:13:59:0f:f2:75:55:24:cc:7e:63:f8:
9d:d7:75:f5:f8:ea:af:4a:f6:45:4a:33:07:2a:6b:eb:a3:ee:
fd:46:b3:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:06 2023 by rpki-client on console-fra.rpki-client.org