Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/Ki6-IKrms5Ah606eScT6UK_XN4o.roa
File: Ki6-IKrms5Ah606eScT6UK_XN4o.roa (raw, json)
Hash identifier: GTWE090JjAE9sqYUADg51IAyqE+1boBruCOCA62xUlE=
Subject key identifier: 2A:2E:BE:20:AA:E6:B3:90:21:EB:4E:9E:49:C4:FA:50:AF:D7:37:8A
Certificate issuer: /CN=6e94cdea9365612adf7611144668254b388fa612
Certificate serial: 05920177
Authority key identifier: 6E:94:CD:EA:93:65:61:2A:DF:76:11:14:46:68:25:4B:38:8F:A6:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bpTN6pNlYSrfdhEURmglSziPphI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/Ki6-IKrms5Ah606eScT6UK_XN4o.roa
Signing time: Sat 01 Jan 2022 12:03:09 +0000
ROA not before: Sat 01 Jan 2022 12:03:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29075
IP address blocks: 91.217.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93454711 (0x5920177)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e94cdea9365612adf7611144668254b388fa612
Validity
Not Before: Jan 1 12:03:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a2ebe20aae6b39021eb4e9e49c4fa50afd7378a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c3:91:22:05:9d:0c:41:d3:bc:38:2f:a6:05:
83:a6:80:50:bf:b5:60:75:42:e2:db:7c:e4:b4:44:
cf:05:0f:63:91:b1:2e:52:d0:5a:ef:31:f4:a0:83:
70:30:c7:da:2b:bf:0d:9e:53:a9:28:ba:18:c7:f1:
54:4f:90:ae:a8:70:2c:43:52:3f:f3:4b:9f:80:c4:
dc:a3:2e:62:4e:e3:7e:e7:22:31:b8:e3:23:91:71:
ea:e1:f0:a3:1a:5f:ff:93:6f:fe:73:e8:ac:06:ee:
de:fe:c0:0c:cf:70:98:f9:08:e1:7a:c4:7d:95:7a:
0d:8c:cc:62:73:03:8e:1d:a4:7f:59:68:2d:d7:da:
9e:a2:9d:90:89:60:67:11:40:fb:bb:6a:da:f0:c7:
ac:02:f8:65:47:cb:31:2f:b2:be:c3:06:fa:23:db:
99:f3:92:ee:3c:3a:78:43:c0:98:eb:d6:00:97:27:
d2:f9:0d:6a:6e:5d:62:77:bf:00:4f:7b:29:9f:da:
f0:57:7a:e7:69:12:c6:a6:a8:af:10:88:38:6d:4d:
28:35:10:b2:5e:db:95:39:f7:f5:17:d4:2b:a8:e0:
32:ab:6a:93:83:a4:d3:0c:56:b4:78:ce:45:42:fa:
b3:c3:0f:27:fd:86:40:9e:eb:d4:52:e5:81:0c:86:
bb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:2E:BE:20:AA:E6:B3:90:21:EB:4E:9E:49:C4:FA:50:AF:D7:37:8A
X509v3 Authority Key Identifier:
keyid:6E:94:CD:EA:93:65:61:2A:DF:76:11:14:46:68:25:4B:38:8F:A6:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bpTN6pNlYSrfdhEURmglSziPphI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/Ki6-IKrms5Ah606eScT6UK_XN4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/336ddd-3833-4bb0-8668-9af7d2b59a4c/1/bpTN6pNlYSrfdhEURmglSziPphI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.234.0/24
Signature Algorithm: sha256WithRSAEncryption
41:16:34:9c:b3:9b:79:6e:d2:3d:cc:0b:df:34:0a:b9:84:70:
20:71:47:c6:fd:33:67:a7:49:b4:81:34:1b:21:41:0a:4e:50:
f6:04:d4:9e:41:5e:dd:9c:c0:ac:ad:61:e6:5c:17:9e:76:0f:
fe:80:84:e5:37:fb:d2:d3:5b:dd:31:67:85:82:05:80:26:52:
c6:a0:ce:db:a4:46:bb:e1:31:4a:47:30:b2:fe:fd:7c:8b:6d:
e0:ed:04:19:e9:2b:6f:79:03:49:05:83:e5:97:2e:c1:4d:92:
5a:53:b3:1c:65:b1:1a:35:cc:fe:d1:2a:38:d6:7c:89:99:dc:
bb:27:5f:1e:bf:fc:12:0d:31:9f:8e:8e:88:92:cc:3d:c3:57:
40:7b:8b:dd:d1:4c:96:0b:23:73:78:f7:cf:a2:72:dc:5e:84:
91:1d:8f:88:c2:ca:93:66:71:6f:47:86:3e:15:42:85:e5:25:
62:96:f3:d3:d6:9a:2f:99:02:6c:8c:7d:15:39:68:88:d1:b3:
e8:02:6c:26:f7:03:31:25:e6:d0:6b:29:e9:b4:ff:de:e6:bb:
7e:b5:a3:46:18:14:49:2a:f6:ad:b6:16:67:09:93:4d:b3:ad:
d3:03:47:64:87:a1:8c:52:29:bc:bc:28:6d:c4:65:93:ef:c6:
33:e8:40:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:20 2023 by rpki-client on console.sobornost.net