Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/XAxDsqEt_29CsIrWqrh8Icaxfic.roa
File: XAxDsqEt_29CsIrWqrh8Icaxfic.roa (raw, json)
Hash identifier: O+DMx0vx83XxOJ1s9Wssl5v7DgDOea3EXKiVGYnKSv0=
Subject key identifier: 5C:0C:43:B2:A1:2D:FF:6F:42:B0:8A:D6:AA:B8:7C:21:C6:B1:7E:27
Certificate issuer: /CN=1a946f4a826d622a338ed83e0afcdf78c87604f8
Certificate serial: 910CE4
Authority key identifier: 1A:94:6F:4A:82:6D:62:2A:33:8E:D8:3E:0A:FC:DF:78:C8:76:04:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpRvSoJtYiozjtg-CvzfeMh2BPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/XAxDsqEt_29CsIrWqrh8Icaxfic.roa
Signing time: Sat 01 Jan 2022 02:53:10 +0000
ROA not before: Sat 01 Jan 2022 02:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208116
IP address blocks: 91.204.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9506020 (0x910ce4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a946f4a826d622a338ed83e0afcdf78c87604f8
Validity
Not Before: Jan 1 02:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c0c43b2a12dff6f42b08ad6aab87c21c6b17e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:65:98:6a:68:6b:af:18:12:00:a0:4c:f7:39:
48:89:b1:28:9a:39:cf:94:2f:c3:b7:63:a1:dc:c2:
6f:59:e1:12:e7:95:7d:21:dd:1e:26:1b:84:4a:62:
9b:50:b4:89:dd:2d:38:d5:ff:78:6f:f2:cc:6e:ee:
9b:dc:72:db:e8:57:fb:59:11:d1:fd:4f:6d:c6:2e:
8f:34:36:4c:15:82:31:d8:aa:31:19:39:55:9d:f4:
0f:3e:5d:1b:08:17:14:2e:36:5c:92:61:90:07:ef:
c0:47:4a:dc:6c:b2:b6:61:bd:b9:84:1f:ef:8f:fc:
15:f7:d3:72:6b:79:e8:27:d8:18:d8:93:0c:dd:2e:
5c:90:22:18:f4:8c:dc:a3:d2:fa:2e:c5:e3:d5:d0:
21:e1:0e:57:de:e4:07:d8:7d:03:c3:14:9e:76:f5:
0f:db:a7:14:8f:6a:2f:58:41:54:d8:d8:6d:ec:12:
82:a0:a5:1a:05:47:f8:8d:af:7e:40:d2:42:90:6e:
0d:0c:21:09:f2:0b:c4:3b:9b:0e:78:9d:c5:01:30:
e3:4b:15:e7:bb:c7:bc:3b:4a:4f:4f:96:03:46:c8:
c2:b7:a6:0c:3f:56:7c:e9:fc:79:81:dd:6c:71:32:
48:d8:74:f7:ae:c8:d9:03:52:e2:6a:be:a7:b3:f1:
06:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:0C:43:B2:A1:2D:FF:6F:42:B0:8A:D6:AA:B8:7C:21:C6:B1:7E:27
X509v3 Authority Key Identifier:
keyid:1A:94:6F:4A:82:6D:62:2A:33:8E:D8:3E:0A:FC:DF:78:C8:76:04:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpRvSoJtYiozjtg-CvzfeMh2BPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/XAxDsqEt_29CsIrWqrh8Icaxfic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/GpRvSoJtYiozjtg-CvzfeMh2BPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.82.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:90:c7:6b:f8:2e:d2:1f:5a:40:75:2c:78:00:5a:86:d4:11:
a8:5d:de:e2:06:52:3a:70:f9:38:76:68:1e:b8:90:db:f9:3b:
fe:a5:98:e8:cc:7d:83:9f:5f:0a:5b:ad:a0:74:d5:88:82:1f:
44:07:13:ec:79:98:a7:68:52:da:6b:d1:ea:9b:84:eb:b7:9f:
b4:e2:7d:d4:e5:e9:c4:bd:b1:2b:9c:6a:8f:e1:6f:ca:6c:ee:
80:8d:8d:b5:f3:8c:46:43:ca:fb:ad:44:f2:cf:3d:9a:9a:73:
d4:3d:5c:77:be:6a:a6:0d:91:29:4b:06:fd:df:d4:84:57:50:
be:2c:2a:27:c5:66:a7:db:96:aa:fb:ab:b0:ba:c4:21:16:ae:
49:67:a7:d2:81:01:1a:96:41:b9:b2:98:5d:3c:5c:c5:1b:89:
42:2b:96:0b:3d:92:98:67:16:b7:92:9c:f3:b4:63:7b:eb:70:
42:6a:9f:c7:29:d9:d6:23:bd:e2:59:4b:d0:c3:fa:ae:b9:fd:
81:aa:87:be:7e:1d:8c:f5:6e:75:9c:6a:ae:36:6f:d8:24:0e:
74:09:21:28:ca:a8:b3:78:e4:ad:fd:5c:35:c6:94:8e:d7:c3:
a9:88:de:f1:9d:03:73:21:ee:4d:d0:77:93:9e:b7:1d:b0:17:
44:d7:4f:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net