Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/5a8e04-dd07-435a-b1bf-adedcaa3d26e/1/gZ-6fuBg1n5fU117eqBOFyugAuA.roa
File: gZ-6fuBg1n5fU117eqBOFyugAuA.roa (raw, json)
Hash identifier: in7WyG8PpI52dWDz/eI+oDcQeZAkG7iS6qj5RG247rE=
Subject key identifier: 81:9F:BA:7E:E0:60:D6:7E:5F:53:5D:7B:7A:A0:4E:17:2B:A0:02:E0
Certificate issuer: /CN=9a7edeac0c6c20ea49d492990e4858541d190ff1
Certificate serial: 01840DD9524A6DF9D694F7EE334DA4719B4E
Authority key identifier: 9A:7E:DE:AC:0C:6C:20:EA:49:D4:92:99:0E:48:58:54:1D:19:0F:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mn7erAxsIOpJ1JKZDkhYVB0ZD_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/5a8e04-dd07-435a-b1bf-adedcaa3d26e/1/gZ-6fuBg1n5fU117eqBOFyugAuA.roa
Signing time: Tue 25 Oct 2022 06:34:16 +0000
ROA not before: Tue 25 Oct 2022 06:34:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56623
IP address blocks: 91.231.55.0/24 maxlen: 24
91.231.54.0/24 maxlen: 24
193.111.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0d:d9:52:4a:6d:f9:d6:94:f7:ee:33:4d:a4:71:9b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a7edeac0c6c20ea49d492990e4858541d190ff1
Validity
Not Before: Oct 25 06:34:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=819fba7ee060d67e5f535d7b7aa04e172ba002e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:42:51:f1:fe:8e:32:c6:6e:32:a1:be:6f:f4:
5b:87:98:89:b1:18:22:35:44:67:be:66:c4:0f:7c:
c9:34:73:bd:c9:48:f9:56:f2:94:e9:b8:6b:da:1f:
67:4a:e3:ee:4a:ff:93:9e:3a:47:0c:21:e8:9f:49:
f4:2c:fe:58:8b:9d:4d:ae:7c:98:c4:0d:c2:60:90:
66:d5:5a:6b:1d:a9:48:1a:9c:53:da:99:c9:4b:1d:
ef:31:c5:6a:ea:93:74:6f:ae:07:11:a3:e5:b3:02:
55:e1:30:82:70:69:29:08:87:fe:ab:26:15:85:82:
5e:04:c7:5f:4e:e2:b7:51:40:2e:56:a1:15:83:57:
79:81:d8:02:30:92:39:07:e2:37:64:31:cd:bd:0b:
87:f3:d8:a5:9a:93:d8:70:1f:16:9a:f9:a5:63:95:
a1:7d:7a:00:2b:8d:be:54:8e:55:06:3a:d7:22:e3:
73:63:90:c3:fd:59:89:4b:0b:e6:b5:2e:2e:1c:e5:
51:47:5f:e8:2d:c2:80:b1:cd:5a:0d:53:e3:27:76:
ce:8c:28:24:36:76:81:03:bb:4f:fd:f7:16:37:27:
c9:f7:a4:5f:75:a0:65:d9:55:73:50:2f:fb:82:b0:
f5:72:42:28:88:31:c9:e8:e4:5a:95:61:b4:b2:a0:
ca:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:9F:BA:7E:E0:60:D6:7E:5F:53:5D:7B:7A:A0:4E:17:2B:A0:02:E0
X509v3 Authority Key Identifier:
keyid:9A:7E:DE:AC:0C:6C:20:EA:49:D4:92:99:0E:48:58:54:1D:19:0F:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mn7erAxsIOpJ1JKZDkhYVB0ZD_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5a8e04-dd07-435a-b1bf-adedcaa3d26e/1/gZ-6fuBg1n5fU117eqBOFyugAuA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/5a8e04-dd07-435a-b1bf-adedcaa3d26e/1/mn7erAxsIOpJ1JKZDkhYVB0ZD_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.54.0/23
193.111.83.0/24
Signature Algorithm: sha256WithRSAEncryption
53:e8:7f:c7:e4:84:4e:51:8f:a9:f8:f3:32:42:d2:af:61:d3:
99:a9:88:68:89:6b:b6:89:a8:16:33:23:22:75:2d:d9:bd:68:
a0:1c:48:7f:a8:70:1b:d1:ae:54:6b:9f:de:ec:b2:28:fd:33:
e5:cd:61:68:36:ec:55:db:ec:c8:41:bc:6d:bd:ff:87:74:40:
70:90:31:cf:5a:25:4e:0e:08:a1:b5:0f:b0:0a:8d:56:57:c5:
80:6c:dc:15:5f:cd:81:9d:2c:5f:5b:00:80:c4:45:30:ad:88:
45:c4:77:ec:2e:63:e1:55:8f:d4:ab:ad:9d:26:8e:5e:6e:fa:
21:e2:6c:38:b5:a6:95:31:27:4b:3d:95:33:fc:e5:d4:8b:c7:
de:c6:79:87:e0:85:22:d3:26:9d:2c:68:c4:6c:e6:8e:e3:f2:
3e:20:b3:a6:75:73:c6:69:4f:ac:6a:f9:e4:cb:eb:50:78:38:
ff:5c:a1:46:e0:8e:c3:71:1c:ed:57:07:90:6d:80:a5:00:9b:
45:ac:a0:d5:59:1f:fb:04:2b:ea:79:30:83:91:48:bc:c2:ed:
46:a7:05:f7:ad:2b:6e:a7:4b:e9:4e:83:2a:c5:f6:53:e9:11:
fd:cd:23:48:b5:16:52:38:eb:2b:9c:b6:94:64:1a:c2:53:19:
d6:ce:4c:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:55 2024 by rpki-client on console-fra.rpki-client.org