Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/21b500-34a6-420a-aa44-749905c327b1/1/dFBVajwtzqmFPc178y7EU5hXUAI.roa
File: dFBVajwtzqmFPc178y7EU5hXUAI.roa (raw, json)
Hash identifier: ck4j6QlN1TtjGQeaLQo/PAZkF+Z+BnSGTB6QSucOqeE=
Subject key identifier: 74:50:55:6A:3C:2D:CE:A9:85:3D:CD:7B:F3:2E:C4:53:98:57:50:02
Certificate issuer: /CN=1cae1a26967dfe287eb602749ec2c6f05afbb57c
Certificate serial: 0CDF414E
Authority key identifier: 1C:AE:1A:26:96:7D:FE:28:7E:B6:02:74:9E:C2:C6:F0:5A:FB:B5:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK4aJpZ9_ih-tgJ0nsLG8Fr7tXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/21b500-34a6-420a-aa44-749905c327b1/1/dFBVajwtzqmFPc178y7EU5hXUAI.roa
Signing time: Sat 01 Jan 2022 12:55:42 +0000
ROA not before: Sat 01 Jan 2022 12:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56953
IP address blocks: 91.229.152.0/23 maxlen: 23
31.132.200.0/21 maxlen: 22
2001:67c:2340::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215957838 (0xcdf414e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cae1a26967dfe287eb602749ec2c6f05afbb57c
Validity
Not Before: Jan 1 12:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7450556a3c2dcea9853dcd7bf32ec45398575002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:63:ea:59:b3:b6:05:3b:09:b1:2a:2e:d3:86:
da:49:3e:a7:d5:42:89:77:e3:43:46:1f:de:45:05:
bb:f9:0f:bd:2d:63:74:9d:b2:c1:bb:6e:ff:6c:47:
f8:18:88:77:3e:08:dc:2e:3d:7b:66:b1:66:97:38:
d1:2d:a6:1b:88:97:a4:6e:42:e0:b0:41:41:90:82:
0c:cc:d4:14:d8:78:7d:1a:ef:f3:b9:d1:55:06:b4:
d3:f0:a8:bc:97:74:80:da:db:ec:8d:28:d5:ef:54:
65:f7:a8:0a:27:19:64:7b:bf:f8:96:0e:aa:ce:14:
de:e7:8f:c3:28:f2:25:07:98:b4:da:6a:fe:ec:06:
aa:66:f7:db:81:d1:b6:61:ca:1f:3f:38:c9:a1:96:
00:8f:00:66:c7:7e:dd:ba:83:58:54:00:a5:e5:4d:
1d:d7:3c:b2:08:4b:20:9e:a2:bc:f6:05:83:09:5f:
d3:ac:07:76:32:69:8e:c6:3c:65:3a:87:a4:5c:b4:
22:c6:aa:01:33:c5:15:42:0b:f1:4d:0a:68:36:21:
86:af:2f:9b:94:59:4e:16:6d:7c:6a:3e:05:79:2f:
cc:d4:cd:ce:dd:02:38:6e:58:8c:7d:a9:1d:0a:46:
1a:32:1a:b7:e0:90:7a:20:9b:0e:af:ee:fd:7a:f4:
2b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:50:55:6A:3C:2D:CE:A9:85:3D:CD:7B:F3:2E:C4:53:98:57:50:02
X509v3 Authority Key Identifier:
keyid:1C:AE:1A:26:96:7D:FE:28:7E:B6:02:74:9E:C2:C6:F0:5A:FB:B5:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK4aJpZ9_ih-tgJ0nsLG8Fr7tXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/21b500-34a6-420a-aa44-749905c327b1/1/dFBVajwtzqmFPc178y7EU5hXUAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/21b500-34a6-420a-aa44-749905c327b1/1/HK4aJpZ9_ih-tgJ0nsLG8Fr7tXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.132.200.0/21
91.229.152.0/23
IPv6:
2001:67c:2340::/48
Signature Algorithm: sha256WithRSAEncryption
0f:ff:67:77:79:42:c1:2f:a3:b5:6f:c3:ba:39:1e:1b:64:1e:
ef:ff:4e:5c:cc:e0:30:b4:8e:61:72:5d:2a:bf:e5:0a:9b:b7:
44:85:c3:03:2f:53:0a:63:23:7d:37:f1:f1:2a:34:cc:b7:ad:
64:ce:ef:9b:e4:5d:3b:ff:9a:8c:7e:a6:2e:dd:48:4c:4d:e7:
99:69:a6:14:d8:2f:f6:5f:9a:fa:af:28:75:ba:8e:ba:0b:1a:
80:3f:af:e6:0a:91:b6:ee:54:1b:ac:53:fb:74:1f:49:8c:55:
23:ab:4d:13:a3:af:da:b1:cd:c1:ac:b6:cb:eb:e4:b6:31:75:
2e:de:f7:b5:dd:06:69:f1:69:db:1d:27:90:db:ed:24:fa:6c:
02:80:15:b1:22:7f:90:c7:09:12:51:fd:ce:71:9b:b0:39:41:
84:4a:a1:64:fc:1f:c9:d3:03:48:9b:f5:27:06:72:ae:d4:03:
3f:29:69:e0:fa:5a:ec:6e:46:7b:04:11:03:38:50:3e:95:a1:
b4:66:b0:90:c2:80:b1:5f:57:bd:31:89:aa:de:2f:71:e0:38:
e3:96:43:ed:fe:93:f3:1e:0a:93:32:cd:8c:33:cf:56:39:77:
a1:aa:86:5f:2b:34:79:32:a9:29:3c:56:9a:95:d8:57:71:3a:
9a:0f:90:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:33 2024 by rpki-client on console-fra.rpki-client.org