Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/eooCO0nTy4M3bzGXnhScOOKhksM.roa
File: eooCO0nTy4M3bzGXnhScOOKhksM.roa (raw, json)
Hash identifier: itUCi1X9bFcukTN7s+enU0IdZ59HrcCK/qfE7MxYV3g=
Subject key identifier: 7A:8A:02:3B:49:D3:CB:83:37:6F:31:97:9E:14:9C:38:E2:A1:92:C3
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 01F2FFEA
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/eooCO0nTy4M3bzGXnhScOOKhksM.roa
Signing time: Wed 18 May 2022 14:30:17 +0000
ROA not before: Wed 18 May 2022 14:30:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 91.221.117.0/24 maxlen: 24
91.221.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32702442 (0x1f2ffea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: May 18 14:30:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a8a023b49d3cb83376f31979e149c38e2a192c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fb:f3:ec:8d:7b:ed:e7:9c:8a:89:17:18:3e:
f8:22:b1:ab:95:ce:98:9e:fa:1d:f2:47:51:bb:f0:
3a:25:10:66:c1:48:91:68:55:08:83:96:66:0b:ad:
0c:b3:69:16:91:8f:6b:b0:c5:5e:c9:03:0c:b0:a4:
6b:b6:26:a7:58:54:b3:fe:59:56:7a:c9:04:09:37:
f0:c4:79:ce:93:66:a0:74:9b:cf:73:a7:1f:c8:ec:
02:cd:93:ff:42:da:8b:38:95:a4:99:f1:96:24:65:
20:2b:fe:f7:4c:45:de:17:a4:6c:70:c9:b2:e6:d0:
16:3f:df:52:50:2a:21:c9:bc:38:d5:d2:50:be:c3:
85:4d:69:ee:fd:e6:0c:6c:72:e6:e6:ba:8a:15:54:
13:ca:2d:a6:65:c7:e8:08:09:ee:49:4d:31:2e:4f:
ba:30:a2:30:7e:4a:1d:5c:e3:49:e6:10:bd:38:20:
0d:26:5b:04:6e:44:97:5e:ea:68:49:7d:d3:6e:07:
65:3c:15:e5:7f:34:15:cc:85:fc:4b:e3:b2:e2:b2:
db:22:7c:58:d8:b5:3e:ba:07:2e:7e:1e:3d:22:fe:
76:e1:5e:fe:b0:c9:39:76:bb:f2:f1:cd:ca:aa:0a:
d6:87:7f:83:57:97:30:0d:ee:f6:9d:b2:f2:7d:46:
bd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8A:02:3B:49:D3:CB:83:37:6F:31:97:9E:14:9C:38:E2:A1:92:C3
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/eooCO0nTy4M3bzGXnhScOOKhksM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.117.0/24
91.221.233.0/24
Signature Algorithm: sha256WithRSAEncryption
63:a5:ad:55:d7:95:4a:31:da:7e:b9:c6:ac:bd:78:16:f5:47:
9b:80:07:ac:e2:bf:7f:fc:3d:27:76:aa:53:7f:ce:f1:7b:b4:
00:50:a9:eb:33:ae:8a:d4:5e:04:67:c3:8a:9f:21:0d:65:1a:
28:12:9d:47:93:f4:50:63:41:56:d3:2d:e8:36:3d:d3:98:08:
29:70:ce:e1:16:6a:4b:ae:56:25:41:45:57:38:12:96:12:0e:
ca:76:f5:2c:9a:5f:2e:2d:18:b0:1f:1f:fc:be:8e:4c:aa:59:
76:34:54:5c:e2:07:35:9b:09:d3:7f:98:fb:fb:4d:79:12:ff:
20:a8:df:5c:49:ee:9f:7b:0b:4e:93:1a:81:cc:21:e3:75:27:
16:82:73:7b:e6:b9:3b:24:73:ef:90:ee:3e:6d:4a:d9:ed:24:
a2:ae:0e:f4:ef:17:5b:b7:dc:a8:25:6f:d0:4d:d5:c9:83:e6:
4e:cc:d5:5f:de:32:53:a6:45:96:40:ac:71:7b:74:0b:8c:45:
4e:64:0b:a5:63:63:ae:f5:78:2f:94:5c:46:15:90:f9:29:84:
8b:09:33:4b:52:30:25:52:5f:98:f8:ba:65:74:15:8d:56:ba:
70:ce:bb:58:71:7c:3e:73:65:b8:8e:b8:e4:7d:6c:24:2c:3a:
18:5c:2f:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org