Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/eNU7mnjF4vQ80GlMHjpXCQl5GkQ.roa
File: eNU7mnjF4vQ80GlMHjpXCQl5GkQ.roa (raw, json)
Hash identifier: IIbcQDJ6BFc98P528WGzEO/Xhj8FEieB31aMIcFLgRs=
Subject key identifier: 78:D5:3B:9A:78:C5:E2:F4:3C:D0:69:4C:1E:3A:57:09:09:79:1A:44
Certificate issuer: /CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Certificate serial: 05B54888
Authority key identifier: 84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/eNU7mnjF4vQ80GlMHjpXCQl5GkQ.roa
Signing time: Sat 01 Jan 2022 01:55:23 +0000
ROA not before: Sat 01 Jan 2022 01:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42926
IP address blocks: 91.198.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95766664 (0x5b54888)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845beedf438a9aa961c34326437c29c4dd0cc4bc
Validity
Not Before: Jan 1 01:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78d53b9a78c5e2f43cd0694c1e3a570909791a44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6a:ba:f2:d1:24:7b:39:75:d8:c5:21:d2:34:
ba:34:2c:99:6a:62:57:9a:5c:a5:32:79:de:95:0b:
f7:1f:4b:20:70:5b:f7:0f:7d:ba:5f:ee:97:b8:18:
33:97:f7:92:3e:b7:a3:70:06:ff:f0:47:84:ca:8b:
9f:4e:c5:39:df:fa:12:d0:0f:10:2b:56:ed:14:04:
42:61:a4:bf:30:9e:a5:1f:92:51:54:26:18:1a:88:
4f:10:0e:0d:6e:11:03:65:f0:48:3b:a3:e9:88:79:
a9:6f:ab:4a:5b:da:2b:7c:04:1d:d8:35:20:17:a0:
77:46:7e:db:29:25:3e:c1:90:cc:6a:73:ce:f4:8a:
11:fe:7a:6e:71:c7:f2:6b:2d:21:70:dd:d3:8b:ed:
1e:78:0a:8d:68:ba:9f:c4:8a:f2:73:c1:33:60:70:
14:28:06:87:fa:23:e0:75:e9:f6:89:16:c5:88:9f:
f4:dc:c2:e3:57:31:80:65:25:99:63:57:a7:52:04:
32:b1:36:9a:ca:8f:b6:04:1b:84:88:2f:59:ef:de:
a4:1c:19:bf:ec:ed:a0:2b:ac:d1:e1:a1:b1:bc:fe:
dd:7c:64:81:c1:42:17:ab:5e:9d:15:25:27:5c:8e:
73:c5:c7:b4:87:7b:3b:77:51:04:b3:2c:a5:0f:22:
3b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D5:3B:9A:78:C5:E2:F4:3C:D0:69:4C:1E:3A:57:09:09:79:1A:44
X509v3 Authority Key Identifier:
keyid:84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/eNU7mnjF4vQ80GlMHjpXCQl5GkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.124.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:8c:ad:4a:34:2a:07:6f:26:b5:41:a5:b2:9b:57:ed:e0:fb:
9e:94:24:a5:fe:37:0c:9d:1a:11:c6:4a:77:1b:59:ba:ea:a5:
18:34:af:05:4a:04:96:2c:ff:0e:68:4c:62:fe:72:a3:a6:2b:
fa:ef:a1:c2:94:8e:e5:4c:b2:c9:ed:7a:3c:0e:c8:91:b9:4f:
66:4f:50:ef:a6:44:a8:29:90:14:5c:16:a0:a3:3d:4b:ba:2a:
e5:44:ab:3b:a4:18:05:af:10:7d:c2:1e:62:2b:6e:bd:4b:a4:
b2:10:78:7c:84:a6:34:a1:d8:92:6e:29:31:93:9c:f4:40:66:
ed:a7:25:8b:11:b8:a5:dc:bd:dc:0f:54:d3:32:3a:f0:a1:bf:
06:8c:bb:35:9f:5f:b6:26:7d:9c:3d:a8:3a:74:f3:34:43:92:
5d:fa:7a:5e:79:1a:dd:36:02:a5:32:ad:bf:01:fe:88:4a:72:
22:9d:1f:ec:82:39:53:21:c1:e4:c2:21:39:43:a7:60:b2:cd:
cd:44:89:e4:5c:10:de:8c:a4:68:5a:eb:60:4e:36:cc:67:25:
78:64:b4:26:36:ca:0e:37:12:f6:bd:53:a6:d9:b6:88:78:2a:
6c:94:fe:fd:52:f7:72:ca:9a:aa:4c:76:4b:24:3d:f7:a9:21:
44:22:f2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:07 2023 by rpki-client on console.sobornost.net