Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/vrnaXFOT7Yq6NI4qunPfuCbtEaY.roa
File: vrnaXFOT7Yq6NI4qunPfuCbtEaY.roa (raw, json)
Hash identifier: B5FiuUMinwhri+3PMG39oTO/8O0tkXplwrW3YdmwaFo=
Subject key identifier: BE:B9:DA:5C:53:93:ED:8A:BA:34:8E:2A:BA:73:DF:B8:26:ED:11:A6
Certificate issuer: /CN=9bdffc8bdb844970b8e28b9b4be6f2c06dfd7985
Certificate serial: 04633898
Authority key identifier: 9B:DF:FC:8B:DB:84:49:70:B8:E2:8B:9B:4B:E6:F2:C0:6D:FD:79:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9_8i9uESXC44oubS-bywG39eYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/vrnaXFOT7Yq6NI4qunPfuCbtEaY.roa
Signing time: Sat 01 Jan 2022 02:57:45 +0000
ROA not before: Sat 01 Jan 2022 02:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213138
IP address blocks: 91.218.57.0/24 maxlen: 24
2a07:fec0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73611416 (0x4633898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bdffc8bdb844970b8e28b9b4be6f2c06dfd7985
Validity
Not Before: Jan 1 02:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=beb9da5c5393ed8aba348e2aba73dfb826ed11a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ce:5c:8b:45:38:19:2c:78:61:53:3b:69:99:
e6:f5:b7:3b:cf:38:d7:45:2e:ac:7f:06:64:c8:a7:
af:6e:16:bf:b6:76:9c:93:24:c7:19:c7:a0:f7:bf:
69:5d:62:08:38:53:fd:a7:f1:cc:9d:5e:12:24:71:
30:2a:55:5b:e8:bc:29:b6:8a:84:fa:9d:60:7d:cc:
4b:5e:21:42:40:e3:2b:e3:49:a8:39:22:4f:a7:13:
94:cf:51:4b:39:b9:9f:7c:ee:a2:a6:82:d9:f5:3e:
e5:b9:59:56:cc:9d:3b:2b:1c:b7:83:92:58:c5:03:
0f:bf:82:af:2b:f5:09:ee:05:81:14:f0:ea:c4:bf:
b0:9f:e5:2d:a7:bb:08:0d:59:51:cf:c2:2b:87:ce:
30:c8:ae:32:cc:e4:1a:75:5b:a9:85:61:c2:35:9c:
18:72:d0:ff:72:0b:42:35:4a:06:0b:8d:fe:35:57:
ab:16:c4:6f:08:33:23:f4:d4:91:2a:c6:08:24:51:
54:3f:c6:ff:37:33:c8:79:d0:b4:cb:6e:9a:33:da:
11:a7:f8:ec:a2:bf:66:15:24:fd:ff:9e:24:6c:2f:
e7:5a:bf:06:6b:09:d5:b1:c9:44:aa:0b:61:d8:c0:
95:3b:f7:28:a6:1c:6e:fc:7e:70:5e:dd:e5:e4:e6:
5a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:B9:DA:5C:53:93:ED:8A:BA:34:8E:2A:BA:73:DF:B8:26:ED:11:A6
X509v3 Authority Key Identifier:
keyid:9B:DF:FC:8B:DB:84:49:70:B8:E2:8B:9B:4B:E6:F2:C0:6D:FD:79:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9_8i9uESXC44oubS-bywG39eYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/vrnaXFOT7Yq6NI4qunPfuCbtEaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/m9_8i9uESXC44oubS-bywG39eYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.57.0/24
IPv6:
2a07:fec0::/29
Signature Algorithm: sha256WithRSAEncryption
a8:8f:42:41:e6:d5:f5:5f:31:e9:df:55:7b:bb:9a:71:2c:5e:
dd:04:60:6b:c6:fa:26:37:b6:92:73:96:5a:0d:15:a9:c6:69:
bd:30:cb:98:2a:18:b3:6e:ab:ea:cc:0e:75:25:87:b2:4e:e6:
9b:5e:c2:bf:d4:ad:42:9d:a3:ac:38:e3:6c:0e:be:71:ac:c6:
d2:ed:6e:59:23:35:61:2a:a3:d5:3a:15:4e:30:5b:de:9b:c4:
7e:e8:d1:80:32:d0:6e:1c:fc:52:25:22:a7:9d:aa:24:95:a7:
87:09:3d:f7:27:23:73:90:99:68:c8:32:c1:d5:a0:9d:65:1b:
ee:f1:2e:8d:e9:98:b1:39:33:c9:bb:b4:fa:16:f0:7b:7d:2f:
d0:1b:f1:b4:82:94:0e:33:6a:c5:d2:00:25:7a:f6:ca:cd:3c:
dc:ca:2f:b4:61:f3:49:42:97:5a:00:c2:40:91:95:59:f8:0c:
5f:1e:13:c7:0a:96:07:17:f1:56:9c:7d:d3:ef:a1:e7:85:dc:
86:4c:44:19:30:af:dc:f7:7b:16:37:d2:18:5c:c6:ff:f7:e7:
5d:ff:db:ff:61:10:9e:f1:43:48:81:d8:ec:66:af:e4:8c:6c:
1b:2b:34:38:fb:17:91:14:41:19:45:5e:bf:7d:5b:57:54:af:
8b:57:cf:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:15 2024 by rpki-client on console-fra.rpki-client.org