Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/530933-5915-4ff2-b1f9-5010d05f99a8/1/XBJ_aeioBNP7UDhrofC-5TujSZs.roa
File: XBJ_aeioBNP7UDhrofC-5TujSZs.roa (raw, json)
Hash identifier: h57K7hDAIFABsifl7cYyAPyT82oS7IgZzEs/GLOD0NU=
Subject key identifier: 5C:12:7F:69:E8:A8:04:D3:FB:50:38:6B:A1:F0:BE:E5:3B:A3:49:9B
Certificate issuer: /CN=7f58bc086412f4d2c54fa0702d92ce25496ce479
Certificate serial: 04013FAD
Authority key identifier: 7F:58:BC:08:64:12:F4:D2:C5:4F:A0:70:2D:92:CE:25:49:6C:E4:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1i8CGQS9NLFT6BwLZLOJUls5Hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/530933-5915-4ff2-b1f9-5010d05f99a8/1/XBJ_aeioBNP7UDhrofC-5TujSZs.roa
Signing time: Sat 01 Jan 2022 07:59:09 +0000
ROA not before: Sat 01 Jan 2022 07:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 91.205.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67190701 (0x4013fad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f58bc086412f4d2c54fa0702d92ce25496ce479
Validity
Not Before: Jan 1 07:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c127f69e8a804d3fb50386ba1f0bee53ba3499b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e0:3b:26:e6:58:3d:85:2f:5f:47:27:be:92:
5b:23:3c:f1:5c:95:e6:69:ce:f0:87:1f:ad:b5:28:
74:ac:3b:12:18:26:a4:ae:6d:e6:d8:d0:02:90:be:
9d:fb:1d:69:c0:95:a9:14:f1:d7:03:3e:1a:62:86:
a2:71:64:23:01:42:d5:77:58:5c:a2:42:01:18:c0:
6a:17:f3:05:6e:15:d4:08:75:9c:5d:11:b0:9a:47:
c5:de:8c:ab:42:8e:42:92:f2:bb:41:78:b1:5f:1b:
7a:ad:52:59:7a:44:4a:15:8a:6f:cd:2e:98:7b:7c:
a5:7c:85:2c:18:cc:60:4e:7c:c8:09:30:72:2d:af:
5e:cd:80:38:b1:26:93:27:61:34:3d:80:22:d7:24:
49:d9:d5:26:d3:3e:9c:fc:ee:24:87:23:0a:02:3e:
bd:43:16:5c:2b:1b:e1:ae:da:9c:d3:f5:2c:2a:42:
b5:79:97:22:ba:cb:0f:ab:97:42:ce:5d:fe:84:e1:
a6:0b:48:59:f4:7d:f6:69:3a:22:43:49:e1:9f:3d:
dd:0b:8c:68:8d:b3:fb:a9:e0:9c:d2:9b:98:87:bf:
b4:8f:a1:a9:f4:3a:24:90:45:74:8a:6f:aa:cf:32:
89:be:80:a5:23:8f:28:27:63:e9:ea:f3:50:41:d2:
b7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:12:7F:69:E8:A8:04:D3:FB:50:38:6B:A1:F0:BE:E5:3B:A3:49:9B
X509v3 Authority Key Identifier:
keyid:7F:58:BC:08:64:12:F4:D2:C5:4F:A0:70:2D:92:CE:25:49:6C:E4:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1i8CGQS9NLFT6BwLZLOJUls5Hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/530933-5915-4ff2-b1f9-5010d05f99a8/1/XBJ_aeioBNP7UDhrofC-5TujSZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/530933-5915-4ff2-b1f9-5010d05f99a8/1/f1i8CGQS9NLFT6BwLZLOJUls5Hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.125.0/24
Signature Algorithm: sha256WithRSAEncryption
37:96:f2:13:4e:92:16:94:17:7b:b8:59:c1:4f:98:4b:8c:12:
88:4a:b7:33:65:ca:03:68:bc:26:ca:f5:6c:41:88:66:95:65:
6d:fa:41:4b:f4:a5:6d:dd:cb:d4:c0:cf:35:59:c1:50:be:7c:
16:c2:b0:05:3c:08:db:ae:f5:21:0b:8a:46:69:89:e7:0e:c6:
0b:46:bb:52:dc:d7:de:eb:a0:a9:78:0e:ac:90:94:e6:b3:cd:
a7:b4:d9:b2:6f:36:5b:6d:80:1f:6f:74:be:3f:6e:b6:09:7b:
0c:03:fd:63:03:3f:2b:f4:3d:a4:58:fd:ba:ba:0d:5a:bb:e4:
f3:49:8d:d8:b6:dc:91:df:b9:e1:7c:07:df:2a:02:cf:c6:7e:
11:13:78:77:e1:d1:59:4f:e4:96:e8:09:d5:35:9c:03:c1:0c:
5f:4b:b5:9d:24:c1:32:bf:b1:77:fb:05:8e:1c:35:67:74:05:
1f:15:e9:32:ac:94:9f:07:9d:8a:6e:39:3d:68:f8:0e:4f:e5:
bd:12:c6:48:2d:89:00:89:ea:74:4c:ea:9b:c7:44:fb:71:f3:
56:66:69:13:9e:29:14:2f:c9:54:ef:d0:f3:d4:7f:88:ff:7a:
7b:38:9d:7b:19:f5:65:ad:c5:cc:4d:a6:66:85:e8:c9:46:95:
12:de:75:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:34 2023 by rpki-client on console.sobornost.net