Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/6mPQGfW1uXy_-lj7wTfRhEyY9F8.roa
File: 6mPQGfW1uXy_-lj7wTfRhEyY9F8.roa (raw, json)
Hash identifier: VPuTwWyyxHmUmASL47Z5QKB5wW5aB2z5GcMArxKuyU8=
Subject key identifier: EA:63:D0:19:F5:B5:B9:7C:BF:FA:58:FB:C1:37:D1:84:4C:98:F4:5F
Certificate issuer: /CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Certificate serial: 0207EE
Authority key identifier: 67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/6mPQGfW1uXy_-lj7wTfRhEyY9F8.roa
Signing time: Fri 22 Apr 2022 11:09:18 +0000
ROA not before: Fri 22 Apr 2022 11:09:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43007
IP address blocks: 91.194.28.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133102 (0x207ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c
Validity
Not Before: Apr 22 11:09:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea63d019f5b5b97cbffa58fbc137d1844c98f45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f0:06:35:ee:29:ae:36:d3:b3:5c:c4:34:71:
b0:85:7b:e5:b0:67:c3:2b:24:27:c7:61:db:62:84:
d4:2c:49:1b:7b:0a:3a:8f:e2:1f:a3:97:2a:89:f4:
0b:a9:da:15:82:9a:d1:32:63:50:54:98:fd:8c:79:
fc:07:6c:13:b2:db:63:a2:ae:de:58:e7:d6:d3:1a:
46:43:95:10:54:4d:67:0e:1c:0a:5a:2c:da:70:6d:
ce:0e:0d:4b:9c:57:49:b9:fc:04:08:12:0c:28:80:
37:89:36:31:fd:94:fa:54:ce:80:ee:47:c0:4e:6e:
eb:7d:f1:52:bd:48:28:0f:4f:07:1e:4d:15:8c:74:
15:ea:fa:dc:3c:10:ce:54:44:e3:2e:b3:4a:ed:7e:
95:8a:64:eb:b0:f3:d4:47:9d:1d:c4:05:0b:04:a9:
bb:c7:25:73:4e:79:f2:65:9a:61:d2:7c:31:6f:69:
9f:fd:a7:ce:b8:a9:0e:5f:a0:a2:4b:af:63:37:59:
94:ef:e9:ce:19:0c:d9:f5:92:28:67:20:eb:47:38:
03:76:53:8f:e2:c9:d9:23:33:ad:dc:cb:9a:87:72:
76:b7:6f:57:32:41:0b:e3:21:a2:32:88:50:21:f0:
16:5d:8c:03:14:b1:fa:1d:74:b9:50:7b:a8:06:a5:
b4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:63:D0:19:F5:B5:B9:7C:BF:FA:58:FB:C1:37:D1:84:4C:98:F4:5F
X509v3 Authority Key Identifier:
keyid:67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/6mPQGfW1uXy_-lj7wTfRhEyY9F8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.28.0/23
Signature Algorithm: sha256WithRSAEncryption
92:93:df:e9:df:95:3c:2b:e5:cf:8d:8a:c4:ba:47:a9:d6:f3:
35:52:89:93:a8:09:23:a9:f8:09:cb:ed:f8:8d:9f:ac:f7:f5:
61:48:1e:a3:2b:8b:19:fc:3b:8a:45:2e:e1:af:c5:a1:a0:63:
ba:a1:e2:27:b1:a4:fe:25:b6:36:09:25:9e:97:98:94:c1:14:
a3:2e:51:b5:44:e3:1c:81:a1:bb:88:c2:24:40:21:ee:81:d2:
92:3a:84:71:d4:67:d1:20:31:0f:82:de:71:ae:93:6c:9e:01:
7c:7a:56:a9:e8:4c:eb:ae:46:0c:86:e4:eb:46:67:a9:c9:13:
a5:07:cd:00:c9:96:df:37:5d:73:c2:af:20:f4:41:74:0d:7e:
f4:4d:b1:c5:08:f6:76:e6:44:91:42:93:60:73:ca:7a:ae:7e:
dd:fb:50:63:97:97:b5:ca:98:03:1d:6c:93:f4:98:92:ea:95:
f1:ca:31:4f:96:d1:d8:89:88:43:a7:a2:47:35:2d:f0:d7:f3:
a0:29:de:2d:e3:32:a7:13:6a:00:91:10:05:c7:22:75:16:ef:
6c:a9:cd:6d:10:73:11:f7:8e:86:38:44:9f:af:a6:be:9d:fe:
50:47:bb:03:46:85:e6:6f:8a:d4:d3:eb:8f:f7:c3:28:ee:2c:
a4:70:f9:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org