Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/N3n87sj7mxVYfpQjTJTy4vHaqNk.roa
File: N3n87sj7mxVYfpQjTJTy4vHaqNk.roa (raw, json)
Hash identifier: gqCIu+f2Bdk/H2DcDY2F97jLtP7U3jCyqS6OhSqH2DE=
Subject key identifier: 37:79:FC:EE:C8:FB:9B:15:58:7E:94:23:4C:94:F2:E2:F1:DA:A8:D9
Certificate issuer: /CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Certificate serial: 09C2C192
Authority key identifier: 90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/N3n87sj7mxVYfpQjTJTy4vHaqNk.roa
Signing time: Sat 01 Jan 2022 04:57:30 +0000
ROA not before: Sat 01 Jan 2022 04:57:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48480
IP address blocks: 91.211.48.0/22 maxlen: 32
193.107.96.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163758482 (0x9c2c192)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Validity
Not Before: Jan 1 04:57:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3779fceec8fb9b15587e94234c94f2e2f1daa8d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:da:79:42:12:37:24:9c:b7:d3:9f:cb:b5:e5:
db:de:e6:a8:69:c7:b1:40:3d:5c:17:6e:3e:0a:da:
21:26:df:8f:1d:f3:af:55:d0:76:8c:8f:7c:87:4f:
53:f0:57:9a:04:03:17:67:dc:d9:42:8c:72:97:77:
e9:c0:23:29:26:8d:d4:85:4c:cb:ba:29:f3:28:bd:
2e:65:7c:a1:56:24:1a:d5:72:75:a5:7b:e4:4b:4a:
12:ca:7d:6d:ac:6c:11:fc:b2:9e:a2:11:c3:6c:e6:
18:b8:23:71:06:75:2e:41:6a:f3:ef:78:2e:e2:31:
28:41:37:72:db:c9:99:0f:82:a6:95:ee:10:99:ab:
f6:12:63:4d:28:8f:e2:b8:72:e1:85:2b:68:49:a1:
f4:0c:ad:ba:98:5c:b1:55:75:3e:4c:0f:ff:ba:40:
59:d5:f0:fd:6d:c3:06:41:76:6a:7e:69:84:66:45:
e5:a0:da:af:f6:06:50:49:97:fb:41:a2:bb:ea:a9:
30:18:de:d8:78:35:d5:09:63:b4:a3:3b:11:64:4c:
bf:44:f5:b9:c0:2e:6d:db:ba:5f:2c:43:8f:4b:88:
fd:2a:a2:b5:a8:42:a9:26:24:3b:19:79:81:31:bf:
8b:bb:01:6a:0c:11:5d:27:5f:a4:ce:51:5b:07:31:
a8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:79:FC:EE:C8:FB:9B:15:58:7E:94:23:4C:94:F2:E2:F1:DA:A8:D9
X509v3 Authority Key Identifier:
keyid:90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/N3n87sj7mxVYfpQjTJTy4vHaqNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.48.0/22
193.107.96.0/22
Signature Algorithm: sha256WithRSAEncryption
40:d8:fb:b4:31:63:35:63:d9:bb:1f:b7:5c:3a:61:6a:b6:f7:
0c:05:6c:9d:1a:5a:65:24:2d:ac:46:24:b9:cf:55:b9:b6:b2:
9f:59:07:cb:8b:c9:4d:14:da:2d:1b:8b:50:25:c8:0c:5c:6f:
57:66:f2:98:ea:6a:79:5b:a4:72:83:21:80:40:fc:5f:6e:e9:
3d:06:88:1a:b8:34:12:65:fc:9b:9f:87:d4:96:e1:05:02:2a:
d4:0f:bc:88:ed:57:de:6a:db:74:52:8c:c0:61:67:43:af:4f:
69:99:61:2b:a6:70:61:69:da:a2:53:6e:ab:bf:9c:63:f7:57:
ff:a7:f7:92:02:b9:09:c1:06:97:0f:01:51:9d:82:af:46:8f:
bc:61:8a:e4:a4:2d:73:2e:1a:78:47:bb:c4:2e:ab:f0:6a:64:
e9:e5:e5:0d:27:2c:30:1c:ba:e2:25:6b:0f:1c:88:f0:6d:ff:
de:e5:34:e3:31:20:df:af:25:f9:3d:b1:dc:7a:de:75:fb:3c:
6d:5f:c9:84:fb:dd:07:a6:91:93:51:2e:67:45:e5:a6:65:92:
69:29:d5:55:00:e5:a5:72:44:d7:35:b4:f3:a4:c6:90:51:78:
27:12:1a:a8:e2:4a:81:2c:51:3a:3c:dc:5a:d4:eb:72:8e:c1:
d6:53:72:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:02 2024 by rpki-client on console-fra.rpki-client.org