Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/8wzZyEPMqCnm5HxIBPHyzBrkiLA.roa
File: 8wzZyEPMqCnm5HxIBPHyzBrkiLA.roa (raw, json)
Hash identifier: KbhTOulEfAXVBEeJ2C/MGrorLdkVuijEy7C63BUKsK4=
Subject key identifier: F3:0C:D9:C8:43:CC:A8:29:E6:E4:7C:48:04:F1:F2:CC:1A:E4:88:B0
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 01066C8D
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/8wzZyEPMqCnm5HxIBPHyzBrkiLA.roa
Signing time: Mon 07 Feb 2022 16:47:11 +0000
ROA not before: Mon 07 Feb 2022 16:47:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.221.116.0/23 maxlen: 24
91.221.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17198221 (0x1066c8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Feb 7 16:47:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f30cd9c843cca829e6e47c4804f1f2cc1ae488b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bd:f5:05:54:14:56:ce:fc:3e:b8:b3:13:32:
71:a0:8f:1e:ad:6a:4c:3b:f0:89:42:92:c8:2e:d9:
73:a8:9c:a1:f1:97:50:53:e3:b4:ca:28:95:a3:14:
6c:af:23:63:51:e7:df:99:78:16:a1:6c:bb:a5:af:
ae:78:13:48:a3:1d:3a:c9:20:9d:d5:35:f4:1a:2b:
45:e2:4b:17:1b:6b:2f:76:92:96:4c:f6:e0:47:7a:
19:03:0b:e0:23:33:c2:eb:a4:3b:5e:25:06:16:90:
83:7c:8e:55:44:e4:c6:e4:ae:30:ba:31:d5:a1:5e:
90:e9:8d:fd:38:78:97:5e:f2:f1:f1:ff:60:8c:11:
d1:12:c5:14:a8:49:3a:13:23:e1:8b:4e:3e:32:3d:
ce:19:8c:58:3d:44:e1:62:78:20:b3:23:ef:62:ae:
05:19:2a:7a:64:52:e1:ab:64:ab:9c:9e:d1:49:31:
ca:e8:7b:88:e6:ec:8e:d5:8c:21:87:6b:6f:84:1b:
ad:a8:2a:c9:18:d0:af:58:bf:3c:f5:b7:7c:af:a7:
f7:41:2f:4c:49:7a:ad:dc:b9:1d:6b:44:04:12:e5:
e2:d8:6a:5b:f5:ae:f4:c2:7d:d2:ff:6e:05:d7:c6:
3e:7d:01:0e:da:64:6d:3c:d6:2d:4a:2e:f0:52:aa:
bb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0C:D9:C8:43:CC:A8:29:E6:E4:7C:48:04:F1:F2:CC:1A:E4:88:B0
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/8wzZyEPMqCnm5HxIBPHyzBrkiLA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.116.0/23
91.221.232.0/24
Signature Algorithm: sha256WithRSAEncryption
05:65:67:6c:7e:16:c7:18:4a:04:92:08:1c:5a:72:02:26:63:
e7:d3:92:47:62:40:de:e7:9c:8b:a7:19:26:99:2a:3f:16:4a:
14:08:c9:27:1b:63:13:f5:c0:d9:71:26:11:d0:a6:2c:db:07:
01:6b:5f:37:a4:38:83:d7:a9:1c:28:57:cb:1f:86:9d:a5:87:
2c:83:63:b1:5b:11:60:3e:2a:23:f9:15:2f:37:cb:c6:ce:45:
90:d5:bc:97:83:fa:6f:db:97:a4:4f:d8:35:c7:ef:f8:e7:c5:
65:0c:0d:69:bf:8b:dd:16:10:4a:a6:d5:42:e5:53:cb:5e:72:
7b:e4:32:87:39:b4:1f:2f:9a:e7:ad:3a:1c:f6:b4:e1:a6:bb:
26:d7:93:d1:b1:91:65:4c:66:2b:99:ef:4d:7e:d4:b2:4f:22:
7a:df:35:6e:22:e0:f2:c9:2a:b9:c1:c4:47:48:ba:d4:27:c7:
6b:73:90:f6:e9:7c:35:b9:fd:87:67:dd:1c:c0:d2:92:1e:41:
f6:57:5c:99:78:b6:07:10:78:99:b4:b2:0e:37:75:5c:d7:49:
a1:ec:dc:ad:d5:89:0a:c2:51:91:42:c8:08:4d:e1:1b:6f:08:
56:9c:59:34:49:f7:ba:40:6b:c0:39:9e:90:5e:e2:d5:f9:b0:
57:55:c1:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org