Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/lzdKdyL4tkZiuYXjAfGfEHqJ3Vo.roa
File: lzdKdyL4tkZiuYXjAfGfEHqJ3Vo.roa (raw, json)
Hash identifier: kD5eYRlW9Jn7p2DIB+hgvWZeAI+u6hH0x+1OGiGrXa4=
Subject key identifier: 97:37:4A:77:22:F8:B6:46:62:B9:85:E3:01:F1:9F:10:7A:89:DD:5A
Certificate issuer: /CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Certificate serial: 01821A62DEAB25023BC1999A0164F2D052AF
Authority key identifier: CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/lzdKdyL4tkZiuYXjAfGfEHqJ3Vo.roa
Signing time: Wed 20 Jul 2022 06:54:23 +0000
ROA not before: Wed 20 Jul 2022 06:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15664
IP address blocks: 91.213.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:62:de:ab:25:02:3b:c1:99:9a:01:64:f2:d0:52:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Validity
Not Before: Jul 20 06:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97374a7722f8b64662b985e301f19f107a89dd5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:76:0b:be:3e:be:4e:48:62:c1:64:73:50:ee:
ab:77:0b:e8:fe:ca:75:f2:e2:d3:8d:d0:fb:9f:37:
b3:58:5c:69:df:d8:62:9b:13:1d:f0:b1:7f:d9:22:
cf:06:4d:34:5b:b3:da:61:74:90:58:55:37:8c:8f:
df:33:e6:f0:00:65:3b:d4:7b:a5:cc:26:f0:a1:0a:
0a:8c:a9:38:ab:b9:e9:55:df:b7:08:97:22:35:2a:
b2:19:d2:d2:72:29:a9:c0:7a:22:da:1b:47:73:3a:
e5:fc:d3:d3:ac:c3:4b:2e:56:f6:56:be:6e:f8:f8:
a0:4d:e6:7d:25:ef:e6:5c:6e:ec:65:49:ed:e2:35:
14:75:45:a3:ba:10:df:c4:d4:44:4b:44:5c:58:35:
4a:ae:b7:f3:63:82:29:c3:8e:4a:4f:a5:a4:85:b0:
1d:60:79:71:29:f9:15:89:65:41:54:1c:7b:fc:94:
0f:14:c1:79:a7:c8:45:ee:5c:23:c7:f4:d2:8a:0b:
b9:04:43:8e:17:48:d8:df:8b:43:63:93:35:50:45:
b0:41:40:3e:f2:87:a5:7f:5a:95:e6:0f:3e:bd:50:
4c:bf:9a:a1:25:5e:1d:4f:01:0d:83:68:3e:db:d9:
4c:98:75:78:21:8f:b7:1f:7d:51:ae:51:f8:84:a9:
57:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:37:4A:77:22:F8:B6:46:62:B9:85:E3:01:F1:9F:10:7A:89:DD:5A
X509v3 Authority Key Identifier:
keyid:CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/lzdKdyL4tkZiuYXjAfGfEHqJ3Vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.89.0/24
Signature Algorithm: sha256WithRSAEncryption
45:51:b5:b0:6e:7a:b3:19:a6:c9:57:a6:b9:9b:a3:7d:65:d8:
06:55:b4:e7:a4:70:96:20:9b:b8:f6:61:79:7d:97:c8:cb:4f:
2c:61:a2:96:5b:af:c4:18:e6:6a:80:41:e7:2c:02:f2:ef:d7:
ec:f8:bd:b1:82:74:38:e0:23:99:54:df:13:7c:6d:ee:81:13:
28:c2:e2:f7:de:2e:5a:0f:5c:07:1e:1d:c1:36:86:0a:b6:5a:
d7:41:0a:1b:ee:8a:46:fb:9b:fb:b8:60:d4:6a:cc:d8:7f:fc:
d0:f3:d2:2d:fc:f0:f1:74:22:d2:68:d8:3e:08:9a:e2:6e:88:
7f:78:7a:a2:01:e3:7b:4a:8f:51:31:e9:92:ea:51:59:01:53:
41:13:81:e3:30:c0:50:1b:2a:13:63:53:99:c8:2e:bf:32:40:
03:89:f1:79:9a:4c:36:24:25:0d:6b:d8:fb:ba:51:da:bd:84:
2f:bb:cd:4f:60:cd:1d:a5:23:ac:54:eb:a6:7e:c2:88:5e:0d:
c7:73:a6:97:ee:e0:3e:5c:e5:79:51:8f:7c:8b:ce:17:2c:7a:
21:86:d8:df:43:60:9d:53:df:9b:89:5a:2c:49:e2:f9:99:49:
9a:aa:bb:8b:6b:65:2c:73:84:de:46:b7:30:71:b5:4d:27:15:
fb:28:f0:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:44 2024 by rpki-client on console-ams.rpki-client.org