Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/ab3caa-313e-4683-84db-9ee5a78ec57b/1/d1C8mbZau3YHtT1nI_fNkiX2Pu4.roa
File: d1C8mbZau3YHtT1nI_fNkiX2Pu4.roa (raw, json)
Hash identifier: 4mqCsr8cXRx6THiBIHFoGZYkVFjuRAlmySWKdqQ8TZw=
Subject key identifier: 77:50:BC:99:B6:5A:BB:76:07:B5:3D:67:23:F7:CD:92:25:F6:3E:EE
Certificate issuer: /CN=406f014a2bc76ae04e6d304d06aacbfc8e85d514
Certificate serial: 048722F8
Authority key identifier: 40:6F:01:4A:2B:C7:6A:E0:4E:6D:30:4D:06:AA:CB:FC:8E:85:D5:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QG8BSivHauBObTBNBqrL_I6F1RQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/ab3caa-313e-4683-84db-9ee5a78ec57b/1/d1C8mbZau3YHtT1nI_fNkiX2Pu4.roa
Signing time: Sat 01 Jan 2022 12:55:39 +0000
ROA not before: Sat 01 Jan 2022 12:55:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31077
IP address blocks: 91.192.184.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75965176 (0x48722f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=406f014a2bc76ae04e6d304d06aacbfc8e85d514
Validity
Not Before: Jan 1 12:55:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7750bc99b65abb7607b53d6723f7cd9225f63eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b1:a8:24:39:5d:07:0c:5e:9a:a8:75:ca:f6:
99:e1:11:ea:a8:78:f9:25:8a:ae:cb:01:b8:30:44:
ff:f5:97:10:ea:d1:99:e5:56:d8:28:f0:77:87:11:
f5:e3:ed:bf:65:56:40:a4:d5:52:64:0f:99:89:8a:
2b:1e:b8:61:0f:06:2c:1e:c5:3d:4c:4b:b6:58:99:
ac:a8:3f:a7:1f:7e:d8:a2:14:e3:35:ae:02:ea:6a:
f8:56:aa:25:54:e7:68:b4:4e:02:f4:d7:b0:f5:6d:
cb:2b:c4:30:f8:f4:51:b8:09:16:f4:8f:04:df:00:
49:42:62:18:39:55:24:06:49:4c:3e:9f:50:a6:b9:
9c:c0:2b:4a:a8:c8:60:5f:08:7c:69:79:77:ce:c9:
be:7a:3d:5a:87:18:b1:ce:d5:c3:8c:f8:36:dc:ef:
39:6d:5c:c8:cd:2e:46:5b:e3:f1:87:2e:8e:36:84:
6e:82:f5:74:9c:34:51:22:f9:5b:40:7e:52:08:66:
57:6c:6a:9a:81:f8:4e:45:c7:d6:6c:73:69:a6:24:
90:5c:c1:41:d1:17:97:1d:8e:b0:aa:10:0c:f7:89:
d0:94:d4:36:1e:c2:91:d8:45:23:27:57:76:73:b9:
b7:f2:2d:b4:3a:98:e9:1d:2e:10:a8:13:d4:c0:4f:
43:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:50:BC:99:B6:5A:BB:76:07:B5:3D:67:23:F7:CD:92:25:F6:3E:EE
X509v3 Authority Key Identifier:
keyid:40:6F:01:4A:2B:C7:6A:E0:4E:6D:30:4D:06:AA:CB:FC:8E:85:D5:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QG8BSivHauBObTBNBqrL_I6F1RQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ab3caa-313e-4683-84db-9ee5a78ec57b/1/d1C8mbZau3YHtT1nI_fNkiX2Pu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/ab3caa-313e-4683-84db-9ee5a78ec57b/1/QG8BSivHauBObTBNBqrL_I6F1RQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.184.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:16:2e:72:b4:d1:7b:30:31:af:4c:6d:19:bc:37:bc:bf:4e:
2c:6a:9a:56:bb:4a:e4:6f:6a:c5:f3:7b:93:b0:d7:fa:22:98:
87:55:60:57:a9:24:b4:f1:37:74:ae:61:4c:38:23:f4:6f:90:
23:b6:89:e4:d4:cd:1f:32:3b:eb:2e:aa:6a:5b:b3:37:63:80:
28:24:3a:f0:ad:b6:65:0a:31:77:5e:98:99:e2:d6:b6:fa:96:
2a:ff:ff:3a:1b:16:93:99:81:37:17:c8:a9:4c:49:e4:90:49:
30:27:92:d8:a1:12:32:99:01:65:66:4b:e8:d2:0c:0e:50:43:
a0:5d:41:7a:b8:cf:f1:0b:d1:38:2d:e4:4b:25:7f:54:3e:11:
47:73:93:c3:37:58:d1:e1:5e:e9:b4:81:fb:ed:d1:af:11:4f:
90:5f:e5:dc:7c:a2:0c:89:51:94:1c:cc:46:22:b4:25:12:cf:
a0:44:81:3e:09:6b:67:96:3f:24:c8:9e:da:28:d1:4b:02:b3:
bf:0e:72:e3:29:c6:f2:59:a8:e9:ed:2c:3e:af:4c:19:f7:52:
b8:4a:95:59:e1:eb:a5:80:99:f8:63:52:17:89:a5:5f:15:36:
9f:61:cf:84:0e:9d:c7:52:b0:c7:f8:e1:fa:f7:dc:1e:3e:6c:
7a:3c:01:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:51 2024 by rpki-client on console-ams.rpki-client.org