Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/_LnhoO2S1XeeivSzQC_fMBZK18s.roa
File: _LnhoO2S1XeeivSzQC_fMBZK18s.roa (raw, json)
Hash identifier: VHDdxQu9x9UM+EfV2ttzHCCPePdAavbb/M7rNG6Oidg=
Subject key identifier: FC:B9:E1:A0:ED:92:D5:77:9E:8A:F4:B3:40:2F:DF:30:16:4A:D7:CB
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 06A1E80D
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/_LnhoO2S1XeeivSzQC_fMBZK18s.roa
Signing time: Sat 01 Jan 2022 13:01:07 +0000
ROA not before: Sat 01 Jan 2022 13:01:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56513
IP address blocks: 91.224.172.0/23 maxlen: 23
2001:67c:548::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111273997 (0x6a1e80d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Jan 1 13:01:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcb9e1a0ed92d5779e8af4b3402fdf30164ad7cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cb:a5:0c:59:88:95:f3:78:4b:93:95:1e:50:
25:73:f4:9f:9f:c3:f2:5f:db:53:fc:cb:0c:5c:11:
16:cf:6f:fa:a7:99:5e:0e:a2:14:81:c4:e2:e9:68:
8f:05:b6:91:17:37:6c:ce:0e:93:4d:ce:08:66:2c:
1a:2a:b1:02:10:07:73:d7:14:81:4c:7d:46:8e:cf:
07:8c:41:32:b6:39:14:2e:95:07:56:05:1f:4a:27:
00:92:e4:3f:8c:80:67:1b:0a:c7:13:59:f0:b3:ff:
9e:d0:36:c9:59:92:4b:18:8e:ad:4b:5a:f1:50:c6:
58:08:fe:cf:40:4e:1d:53:39:af:08:f0:60:c8:a5:
71:be:a8:18:0c:ab:d1:49:7d:e8:70:9d:9f:1d:b9:
70:17:db:85:79:c5:bb:7b:5b:b0:99:a2:fc:1a:7f:
a4:6e:6f:98:e7:5e:f9:66:cd:cc:c5:83:c4:aa:95:
a6:44:fe:ed:8c:ec:36:8b:1a:cf:4d:37:2c:b1:d9:
70:e0:b6:19:bf:50:1e:1d:b1:c1:c1:3f:ca:62:71:
c1:df:44:6a:ee:44:f6:a7:ed:8d:7b:58:45:40:68:
3e:7f:ff:8c:59:24:ed:f0:6f:8f:92:e9:07:18:81:
0a:23:0d:85:f1:aa:58:42:b7:e1:b8:37:cd:0b:1d:
40:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B9:E1:A0:ED:92:D5:77:9E:8A:F4:B3:40:2F:DF:30:16:4A:D7:CB
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/_LnhoO2S1XeeivSzQC_fMBZK18s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.172.0/23
IPv6:
2001:67c:548::/48
Signature Algorithm: sha256WithRSAEncryption
1a:e6:6a:e5:8b:fc:6e:22:ce:a2:bc:00:d9:33:6e:0d:f3:c1:
96:ed:38:96:51:19:29:53:b7:f6:ae:9d:52:d3:ff:a4:c4:a2:
42:1c:15:0d:62:ff:79:5e:0b:f1:d3:bc:bc:15:f0:7d:d5:7d:
da:5d:a6:6d:92:9d:83:f2:b1:78:a0:9f:9f:66:da:72:e3:a7:
72:d0:4b:50:4d:e0:7c:60:78:40:da:6a:f6:0f:29:9f:51:0e:
d8:82:f9:bf:d5:bc:71:1c:9e:0b:8b:8f:75:39:79:6f:17:d1:
98:a6:09:bc:ac:e2:fc:31:4c:60:f6:d7:2c:52:48:c3:92:c4:
8a:6b:5e:e7:5d:e9:73:c3:91:1a:5b:77:f8:0b:ab:c8:aa:e1:
96:8d:4e:99:bc:08:f1:52:e1:f4:a1:5f:b5:c5:97:28:4b:81:
49:82:cb:f1:62:d8:19:6f:49:49:76:39:db:ee:de:68:d0:ab:
2b:ea:90:1a:e3:04:88:b7:c0:2e:94:05:af:60:9c:72:c1:f7:
86:af:a8:81:07:2b:a9:a3:b1:83:96:61:30:57:69:d5:24:16:
2c:e5:ff:a0:c7:18:39:cd:b2:88:8c:ca:42:eb:e6:2c:54:11:
eb:c3:1b:84:89:98:ef:b4:f9:78:29:8e:31:f7:f2:4d:2a:ac:
5c:89:04:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:01 2024 by rpki-client on console-fra.rpki-client.org