Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/xp_T--S6V7y6FirKPF3NEdWSPYs.roa
File: xp_T--S6V7y6FirKPF3NEdWSPYs.roa (raw, json)
Hash identifier: NRicyPEhvUPmfAkbXZbDyYAeorrTXVzgKiv+Qk2R8w0=
Subject key identifier: C6:9F:D3:FB:E4:BA:57:BC:BA:16:2A:CA:3C:5D:CD:11:D5:92:3D:8B
Certificate issuer: /CN=29109da662f9d302fff2c5c4b4afb8f947fec1c0
Certificate serial: 15D28F66
Authority key identifier: 29:10:9D:A6:62:F9:D3:02:FF:F2:C5:C4:B4:AF:B8:F9:47:FE:C1:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRCdpmL50wL_8sXEtK-4-Uf-wcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/xp_T--S6V7y6FirKPF3NEdWSPYs.roa
Signing time: Fri 04 Mar 2022 12:22:37 +0000
ROA not before: Fri 04 Mar 2022 12:22:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59747
IP address blocks: 91.207.230.0/24 maxlen: 24
2a02:38:1111::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 366120806 (0x15d28f66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29109da662f9d302fff2c5c4b4afb8f947fec1c0
Validity
Not Before: Mar 4 12:22:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c69fd3fbe4ba57bcba162aca3c5dcd11d5923d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a7:da:70:ed:16:2f:8f:82:6d:19:57:6e:5a:
a7:d8:74:90:b9:0e:c7:01:42:ea:1d:51:f2:19:c8:
c6:2f:ac:f7:6b:7f:88:78:42:90:d3:3d:a3:f8:0e:
7a:ad:d5:34:1b:42:10:2b:2a:97:2b:32:a0:32:93:
51:91:59:fc:12:98:9d:80:e6:b3:3e:ec:b1:f9:06:
cc:27:be:da:46:49:ec:9d:79:f8:38:ee:03:0a:99:
e4:fc:97:eb:e2:e8:cb:c0:6d:25:a7:f9:89:0a:3d:
4c:90:40:aa:52:4d:53:6d:15:bd:4c:11:9f:5b:f9:
1e:e3:90:80:aa:44:27:f0:ed:aa:71:a0:6a:c8:4b:
ee:0f:e9:0a:b1:f9:dc:08:36:07:97:92:2a:82:ba:
ac:f8:56:f5:51:4d:c7:a5:38:63:38:0f:a0:9a:b3:
05:dc:ff:07:05:83:7a:c1:0d:5f:f2:ec:a7:52:fa:
79:41:ee:15:4d:07:1f:e0:9d:c7:ea:9f:e3:76:47:
0a:7a:da:1b:af:c1:6d:e9:f5:3a:a1:c9:85:ca:03:
80:44:ce:2f:67:4d:53:bc:f1:66:eb:a3:67:c1:59:
c0:bf:ed:24:38:8d:73:46:78:c6:2a:66:16:e1:37:
23:5b:17:3a:e8:cc:81:a4:17:be:cc:32:66:ba:7b:
ac:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:9F:D3:FB:E4:BA:57:BC:BA:16:2A:CA:3C:5D:CD:11:D5:92:3D:8B
X509v3 Authority Key Identifier:
keyid:29:10:9D:A6:62:F9:D3:02:FF:F2:C5:C4:B4:AF:B8:F9:47:FE:C1:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRCdpmL50wL_8sXEtK-4-Uf-wcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/xp_T--S6V7y6FirKPF3NEdWSPYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/KRCdpmL50wL_8sXEtK-4-Uf-wcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.230.0/24
IPv6:
2a02:38:1111::/48
Signature Algorithm: sha256WithRSAEncryption
68:ff:c3:5e:f5:a8:6a:3d:16:b7:f5:2a:b6:4c:0e:66:cb:e3:
eb:14:d7:02:d8:69:a9:36:6a:a4:95:a6:a2:43:d1:4d:68:9b:
b8:21:d7:79:36:ca:2e:e7:8a:8f:5f:23:7b:12:8e:0c:8c:62:
86:af:6e:d4:44:51:e0:7d:ac:08:bd:d7:51:1a:f2:cd:28:e6:
4a:75:1e:72:c7:0b:a6:61:2f:9e:dc:31:47:fc:fe:73:42:7b:
fd:9d:d7:d4:89:ce:19:fe:4f:11:bb:1a:95:63:f1:d9:e3:33:
28:69:06:d6:e2:d7:52:4e:16:de:19:d9:88:1b:4f:98:8b:4b:
6d:b4:0b:eb:ca:4e:7c:f3:93:db:3b:18:51:05:2e:84:c9:ed:
19:e5:0e:c9:35:7b:82:92:85:95:e7:ad:1c:24:41:70:ea:90:
e3:ff:53:e9:61:79:a6:00:d7:99:68:87:8f:4e:02:37:43:5c:
46:df:a4:e8:43:51:cc:5e:fe:e8:37:36:7f:32:ba:5a:5b:e3:
8b:97:0e:a9:03:e0:c6:66:17:36:86:a5:ae:8f:24:e3:28:74:
4f:f0:b1:36:0a:11:fa:6d:1d:1b:88:87:25:3a:98:8b:44:f1:
bc:aa:e0:40:04:f4:51:d7:b1:1e:d6:d7:81:d7:ca:f8:7f:19:
8b:53:95:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:06 2024 by rpki-client on console-ams.rpki-client.org