Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/LETUpBDUkhFIGIltdiYIizHYMkQ.roa
File: LETUpBDUkhFIGIltdiYIizHYMkQ.roa (raw, json)
Hash identifier: anqJ4nSI4YMMriX6TmcYoWXtNSEN5uhg7ivXNyNPLkY=
Subject key identifier: 2C:44:D4:A4:10:D4:92:11:48:18:89:6D:76:26:08:8B:31:D8:32:44
Certificate issuer: /CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Certificate serial: 77B21D
Authority key identifier: CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/LETUpBDUkhFIGIltdiYIizHYMkQ.roa
Signing time: Thu 24 Mar 2022 08:03:50 +0000
ROA not before: Thu 24 Mar 2022 08:03:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48086
IP address blocks: 91.207.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7844381 (0x77b21d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Validity
Not Before: Mar 24 08:03:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c44d4a410d492114818896d7626088b31d83244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:08:07:86:a2:64:9d:d7:53:57:4c:9c:a5:f7:
b4:e9:b0:12:4d:b2:6c:cf:21:5a:f6:ce:6c:dd:84:
e6:52:42:5d:95:c4:85:a5:8d:81:d9:18:0b:6f:a4:
d9:a5:86:0e:f5:1a:c1:5e:e7:55:de:42:fa:1e:a8:
6b:6a:41:8b:47:43:4a:58:1f:02:7c:49:bd:ec:2c:
01:34:0e:5a:e0:ca:ef:8f:99:17:70:96:77:1f:94:
df:f5:e0:57:0b:60:83:5c:4b:e8:d7:e2:31:d2:94:
19:22:78:37:e1:59:f3:cf:70:4b:bf:41:62:df:74:
1c:f2:89:65:aa:ba:8d:74:2e:00:0e:c4:fe:2b:90:
14:57:15:0c:9b:7a:c4:93:0a:49:57:9c:51:a1:df:
46:f0:ac:3a:a7:88:11:b3:22:2c:7d:97:88:88:12:
7d:17:57:a8:16:20:6f:1c:e5:6c:23:de:de:37:10:
1b:68:3c:ca:cc:6b:30:0b:66:2c:95:3f:84:e4:ea:
d6:12:93:a5:54:18:10:02:2d:20:32:68:d8:45:eb:
26:aa:7d:78:b2:d3:49:fd:da:53:33:90:25:52:a2:
dd:78:20:44:a4:d0:a5:16:75:cf:23:a3:7f:c4:ea:
a2:10:ff:38:6f:bc:17:7a:74:b8:f0:85:09:57:af:
dd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:44:D4:A4:10:D4:92:11:48:18:89:6D:76:26:08:8B:31:D8:32:44
X509v3 Authority Key Identifier:
keyid:CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/LETUpBDUkhFIGIltdiYIizHYMkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/zx32Zn2jjleiWxlF-kDlk-Wt-gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.106.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:da:b5:69:8f:d8:7f:83:1b:42:a2:09:68:4e:92:a3:fa:6f:
3c:33:60:0a:82:e0:90:c2:20:1e:9d:e8:50:e7:5c:02:f5:63:
6b:85:15:ed:8c:08:59:22:cb:2e:5f:7c:bc:7d:86:66:b7:05:
08:27:94:95:12:fd:41:76:c8:6a:3f:2a:4c:d8:96:72:48:8a:
19:b8:a8:1a:5a:8b:c2:1d:3d:ed:34:92:1f:e6:55:5b:b8:46:
8a:e9:6d:56:ab:73:ad:fa:4c:4b:e8:2a:48:b0:46:49:35:42:
30:d6:f1:bf:06:cf:53:e7:6b:0d:4e:66:cc:6c:1a:94:a3:86:
44:3d:f6:2b:a9:09:52:fa:66:6b:68:ce:4d:76:d0:b7:bb:82:
3b:55:53:54:9c:46:3d:cb:44:3b:b4:3b:11:e6:0d:26:8b:79:
cf:ba:14:48:eb:c2:34:f7:a1:4e:90:7f:6c:0a:bd:a0:a1:99:
c6:c4:4b:96:f7:1e:ae:95:7e:a6:35:87:58:6e:df:b9:11:d4:
9f:a0:f7:0c:2d:e2:06:82:62:a4:24:a2:07:b5:77:24:e0:d5:
d5:b5:dd:b8:a3:33:e4:f2:4a:91:f3:fd:a6:31:a1:1c:65:06:
01:fc:04:33:67:9f:75:1c:be:0f:e1:48:64:09:4c:49:3d:29:
f1:58:71:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:53 2024 by rpki-client on console-ams.rpki-client.org