Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/808471-7daa-4cd2-a860-069da9c84785/1/w7A0P_zGhqSnG269N6oA8zBYbB4.roa
File: w7A0P_zGhqSnG269N6oA8zBYbB4.roa (raw, json)
Hash identifier: WKIAFar+C5NHmkZAFBEPzNh4VOvpU0aipCbXErsLyuA=
Subject key identifier: C3:B0:34:3F:FC:C6:86:A4:A7:1B:6E:BD:37:AA:00:F3:30:58:6C:1E
Certificate issuer: /CN=20d617bdb5d768e395e49b41cd81217bd3163ab3
Certificate serial: 0D586C91
Authority key identifier: 20:D6:17:BD:B5:D7:68:E3:95:E4:9B:41:CD:81:21:7B:D3:16:3A:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INYXvbXXaOOV5JtBzYEhe9MWOrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/808471-7daa-4cd2-a860-069da9c84785/1/w7A0P_zGhqSnG269N6oA8zBYbB4.roa
Signing time: Sat 01 Jan 2022 11:01:36 +0000
ROA not before: Sat 01 Jan 2022 11:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57685
IP address blocks: 91.199.219.0/24 maxlen: 24
171.25.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223898769 (0xd586c91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20d617bdb5d768e395e49b41cd81217bd3163ab3
Validity
Not Before: Jan 1 11:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3b0343ffcc686a4a71b6ebd37aa00f330586c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:89:f9:72:59:5d:c8:2d:c4:04:ca:bf:c4:f6:
6a:f7:04:84:c3:74:14:47:13:68:a6:2e:52:47:2b:
ec:1a:82:06:06:df:ce:33:d0:ae:ce:d5:92:72:00:
0a:a3:42:14:6f:71:07:b7:82:aa:bb:1d:b2:24:b2:
1a:e2:b2:62:d1:dd:8f:58:b2:c4:c8:86:45:47:46:
64:dc:8a:4e:43:4c:b6:10:d5:31:29:92:17:9d:f3:
82:d7:c4:35:c1:30:a9:50:24:b6:e2:2f:09:95:48:
86:4a:62:b7:7f:84:40:12:87:44:7a:0e:51:d9:d9:
58:36:42:88:d9:46:9e:a8:a0:03:c4:38:e2:4f:72:
0a:49:52:0c:a4:fd:43:9f:3e:b0:13:59:ec:dc:74:
58:0d:9b:88:48:a7:22:db:05:8f:a8:27:2f:53:2b:
d0:63:3e:5d:d1:07:72:3e:0b:7a:20:57:e2:cd:52:
80:cc:ea:1c:d4:61:6f:4c:e8:f6:2b:90:c7:cb:62:
b4:91:de:ce:51:51:a6:33:6c:7d:90:62:a6:5a:20:
91:8a:37:9b:cc:09:9e:a2:87:f4:ce:76:86:11:5e:
d5:25:d5:8c:88:2e:da:2d:e9:5a:22:e1:45:21:a5:
3a:a6:1a:df:20:8b:b9:70:b5:32:4b:d1:c4:d7:61:
80:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B0:34:3F:FC:C6:86:A4:A7:1B:6E:BD:37:AA:00:F3:30:58:6C:1E
X509v3 Authority Key Identifier:
keyid:20:D6:17:BD:B5:D7:68:E3:95:E4:9B:41:CD:81:21:7B:D3:16:3A:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INYXvbXXaOOV5JtBzYEhe9MWOrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/808471-7daa-4cd2-a860-069da9c84785/1/w7A0P_zGhqSnG269N6oA8zBYbB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/808471-7daa-4cd2-a860-069da9c84785/1/INYXvbXXaOOV5JtBzYEhe9MWOrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.219.0/24
171.25.179.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:27:ec:d7:c6:f3:54:5e:5d:13:49:72:48:b5:2d:8d:38:57:
0c:73:e8:23:28:2a:12:26:fd:66:90:7e:61:57:05:3d:b8:a2:
3a:e4:8d:75:d9:b1:30:6d:2a:b1:13:08:9c:da:71:62:b8:c3:
c5:c0:33:09:84:46:66:a2:7e:3d:8c:73:3e:49:33:49:61:92:
d4:a9:b1:3c:c1:21:9f:37:75:7f:43:23:69:d6:b2:91:50:42:
27:5f:24:38:f2:0e:a9:4f:28:87:fd:ec:20:14:cb:6d:0f:95:
9b:7c:64:e0:1d:69:c7:c3:e9:29:81:da:a6:e8:f8:4c:38:6d:
06:09:7e:8f:8b:35:08:91:b7:a0:09:9a:6b:51:8c:07:24:87:
cc:e0:27:1a:33:92:29:73:f8:7a:8b:11:95:f4:b5:9a:00:af:
e3:0f:cb:0d:3c:28:96:d3:24:7b:c7:85:d4:5c:b9:a6:42:b4:
b4:6e:de:89:f9:23:8d:f0:e3:2d:32:03:1f:9f:79:ce:2a:96:
02:7d:2e:91:fa:c6:bf:bb:e0:ce:c4:be:61:89:35:15:90:72:
95:73:f9:bc:8a:0a:1b:04:70:1f:07:4a:49:cf:a6:10:d1:74:
68:91:60:e4:61:08:41:79:45:44:92:eb:5e:94:4a:7f:b4:c2:
c1:87:93:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:15 2024 by rpki-client on console-fra.rpki-client.org