Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/08bfdc-8c02-42c4-9025-dcdf24414989/1/DVRqBNC7Y2S7Yy7ZMjlqLyBTgqE.roa
File: DVRqBNC7Y2S7Yy7ZMjlqLyBTgqE.roa (raw, json)
Hash identifier: VX5lTVWipq+DRUlfspr96Pfy5SADXCZ8KPggtOw8oKk=
Subject key identifier: 0D:54:6A:04:D0:BB:63:64:BB:63:2E:D9:32:39:6A:2F:20:53:82:A1
Certificate issuer: /CN=7982802ce71830590b26aba9971e12f6ae18dcee
Certificate serial: 15818EA9
Authority key identifier: 79:82:80:2C:E7:18:30:59:0B:26:AB:A9:97:1E:12:F6:AE:18:DC:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eYKALOcYMFkLJquplx4S9q4Y3O4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/08bfdc-8c02-42c4-9025-dcdf24414989/1/DVRqBNC7Y2S7Yy7ZMjlqLyBTgqE.roa
Signing time: Sat 01 Jan 2022 02:55:30 +0000
ROA not before: Sat 01 Jan 2022 02:55:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197357
IP address blocks: 91.220.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 360812201 (0x15818ea9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7982802ce71830590b26aba9971e12f6ae18dcee
Validity
Not Before: Jan 1 02:55:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d546a04d0bb6364bb632ed932396a2f205382a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2a:80:10:44:38:ed:3b:80:0c:04:8b:9e:34:
00:fa:09:86:89:b6:49:52:fa:69:ca:1e:fa:18:74:
d6:74:15:cd:a6:65:2f:51:5b:f4:91:4c:78:30:b7:
20:59:93:48:4b:07:77:69:c2:ef:01:ab:d6:d7:06:
93:12:f8:67:7f:88:fc:82:79:ca:d5:e2:af:cd:17:
6d:f1:61:4f:12:ff:c4:fe:69:cd:f3:02:e8:86:11:
a5:33:48:47:86:7c:39:6c:89:8b:55:40:40:6f:b0:
57:2c:8c:04:66:0a:5d:c1:fc:c3:e5:68:ac:13:49:
dd:83:1f:74:0f:9c:77:cc:86:5e:6d:2c:bd:95:f3:
49:a9:14:16:ef:d8:96:30:74:98:38:6e:58:d9:6e:
d5:02:9d:06:f3:65:f8:66:7e:31:9f:33:ed:ca:ad:
b2:74:7b:e3:54:82:f0:dc:dc:ba:c8:42:4a:b4:9f:
25:30:94:6f:bc:aa:2e:78:04:f3:dc:33:4a:9f:05:
8f:ce:41:41:e8:26:52:f7:26:36:46:80:37:4e:43:
94:07:e3:1f:22:e1:6a:9d:a9:42:6d:4f:87:00:be:
45:95:35:08:c8:ea:3a:92:ec:54:ff:55:6b:ef:83:
ca:70:ab:a9:98:44:a2:6c:a9:77:60:d0:eb:17:cd:
ee:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:54:6A:04:D0:BB:63:64:BB:63:2E:D9:32:39:6A:2F:20:53:82:A1
X509v3 Authority Key Identifier:
keyid:79:82:80:2C:E7:18:30:59:0B:26:AB:A9:97:1E:12:F6:AE:18:DC:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYKALOcYMFkLJquplx4S9q4Y3O4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/08bfdc-8c02-42c4-9025-dcdf24414989/1/DVRqBNC7Y2S7Yy7ZMjlqLyBTgqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/08bfdc-8c02-42c4-9025-dcdf24414989/1/eYKALOcYMFkLJquplx4S9q4Y3O4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.63.0/24
Signature Algorithm: sha256WithRSAEncryption
47:d8:64:e8:63:28:a9:6a:b6:ba:30:b2:80:49:83:d7:9f:5d:
09:3c:80:9f:14:03:42:35:19:d6:a8:71:4c:b3:d9:fc:b3:78:
fe:f3:97:33:81:ac:8e:06:90:65:eb:17:d5:48:af:2b:0b:86:
64:d5:8b:2b:29:5e:26:cc:27:18:93:3d:84:e7:21:5e:1b:81:
73:ec:d9:49:f3:ca:3a:bb:67:74:2e:ea:b4:70:d7:0a:86:a8:
c0:62:2e:36:a7:fd:ac:5a:67:5b:c3:51:b3:4b:25:30:4c:1f:
17:22:86:89:a8:c5:9b:d6:cc:07:93:ea:54:e5:13:45:0c:84:
af:ae:f5:7e:b5:f0:55:d7:c7:51:d8:7b:69:a5:42:16:78:45:
63:c7:b3:83:e3:33:bb:00:d4:76:af:26:94:f6:0c:50:cb:76:
4d:21:92:d8:a5:7a:17:f3:28:57:1b:72:2e:d3:42:ef:61:e6:
8f:4b:56:74:de:bd:e3:6a:9b:85:33:3d:28:2f:59:8e:9a:5d:
86:a0:e6:d5:34:f7:37:20:29:d7:54:16:50:92:fa:6d:40:e7:
d8:29:6d:54:35:9c:4d:07:f0:16:f2:cc:5b:f0:25:c1:a4:61:
3a:5b:a3:68:91:a4:b2:9d:46:a1:aa:61:17:db:cd:d5:88:22:
34:0d:8d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:39 2024 by rpki-client on console-ams.rpki-client.org