Route Origin Authorization
$ rpki-client -vvf 0.sb/repo/sb/24/39312e3231332e31372e302f32342d3234203d3e203630373231.roa
File: 39312e3231332e31372e302f32342d3234203d3e203630373231.roa (raw, json)
Hash identifier: i5sUC3pFZ8P2e6ISry+dgtyYcuIvvOz400MBHByBp7E=
Subject key identifier: B9:06:44:EF:97:AF:91:69:9F:71:ED:D4:53:85:D2:F3:C3:41:4C:A2
Certificate issuer: /CN=680f28bc2b39c5cbc7083bebf6425a7e904b16e7
Certificate serial: 50EE225172EEC8912D716A95165B73D911490678
Authority key identifier: 68:0F:28:BC:2B:39:C5:CB:C7:08:3B:EB:F6:42:5A:7E:90:4B:16:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aA8ovCs5xcvHCDvr9kJafpBLFuc.cer
Subject info access: rsync://0.sb/repo/sb/24/39312e3231332e31372e302f32342d3234203d3e203630373231.roa
Signing time: Wed 23 Feb 2022 02:36:32 +0000
ROA not before: Wed 23 Feb 2022 02:31:32 +0000
ROA not after: Wed 22 Feb 2023 02:36:32 +0000
asID: 60721
IP address blocks: 91.213.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:ee:22:51:72:ee:c8:91:2d:71:6a:95:16:5b:73:d9:11:49:06:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=680f28bc2b39c5cbc7083bebf6425a7e904b16e7
Validity
Not Before: Feb 23 02:31:32 2022 GMT
Not After : Feb 22 02:36:32 2023 GMT
Subject: CN=B90644EF97AF91699F71EDD45385D2F3C3414CA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3f:5e:17:0d:2d:fe:2f:2d:a3:2d:e4:8f:60:
9c:0b:39:54:90:37:a9:12:7c:08:da:25:ab:4d:28:
e8:42:f8:09:44:7e:aa:db:9e:e9:8f:d7:cd:e2:d3:
a9:08:bc:04:90:6e:dc:49:7c:35:a8:02:45:e7:a8:
ce:55:5e:7c:d5:47:46:5b:5a:16:09:88:a3:01:88:
7a:39:fe:0c:d0:84:64:ec:a7:3c:c0:61:56:2f:50:
63:f1:32:0d:1f:2a:77:d0:24:9b:0a:a6:ef:de:32:
5b:f2:0f:3e:0f:88:a6:c2:8c:06:ca:da:f2:96:ba:
69:9d:30:05:6a:bd:16:e6:3f:36:1f:c7:b3:c6:16:
10:f1:e3:6d:d2:3d:27:37:ac:23:cd:69:52:89:93:
04:ea:42:e5:5c:c1:57:43:06:ba:45:9d:fb:85:87:
66:1e:13:5b:7c:8d:a0:40:96:9b:92:8b:e8:3f:b1:
c7:7b:71:95:24:c6:8c:c5:08:6a:4f:27:af:95:8a:
89:b8:ba:1a:2b:50:64:29:f5:ac:24:10:e9:21:7c:
5e:4d:55:e2:d4:d9:b7:6d:31:41:a2:3e:b4:6d:4d:
f5:4d:17:0c:21:b9:a0:03:41:8d:09:ab:42:fa:a3:
bf:fe:03:b2:34:ae:7c:b0:dc:aa:32:cf:80:11:86:
2b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:06:44:EF:97:AF:91:69:9F:71:ED:D4:53:85:D2:F3:C3:41:4C:A2
X509v3 Authority Key Identifier:
keyid:68:0F:28:BC:2B:39:C5:CB:C7:08:3B:EB:F6:42:5A:7E:90:4B:16:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://0.sb/repo/sb/24/680F28BC2B39C5CBC7083BEBF6425A7E904B16E7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aA8ovCs5xcvHCDvr9kJafpBLFuc.cer
Subject Information Access:
Signed Object - URI:rsync://0.sb/repo/sb/24/39312e3231332e31372e302f32342d3234203d3e203630373231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.17.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:58:5e:e3:57:33:cf:d0:a7:ea:cb:b2:6c:b2:40:af:85:0f:
b7:2b:61:a5:b0:74:9b:34:39:4e:39:27:b0:cd:bb:f8:9f:03:
34:10:cf:c3:d8:60:c7:66:25:41:ff:76:12:e6:56:61:5b:30:
8d:5f:11:5e:14:37:55:3c:40:65:d2:0a:e1:06:f6:6e:61:97:
57:0a:ef:7c:12:ba:db:82:e1:ff:37:03:12:39:30:71:da:f7:
a1:07:50:74:40:c6:e9:25:96:36:13:8f:09:70:64:f1:72:dd:
81:61:a1:53:06:ff:81:ea:2d:94:6c:3b:34:4f:97:70:0e:46:
58:c1:9b:2c:e0:31:d6:11:38:ee:8d:3d:5d:5a:64:18:17:01:
cb:c1:56:dc:4a:1c:42:50:5b:7d:c8:36:be:dd:9b:2e:73:0c:
9f:1a:68:cc:3c:b6:01:54:e7:e5:a5:91:03:4a:11:3c:e1:26:
51:08:77:e0:ab:53:06:e0:42:86:90:be:f8:c2:0d:ab:45:27:
f2:cb:4d:b2:26:45:e4:44:79:d4:73:c2:ed:ef:90:10:86:6d:
03:d5:a2:d6:f1:46:a2:bd:5e:f8:c7:d7:09:f8:75:fd:60:22:
33:e6:e6:c5:2f:51:6c:f2:8b:3c:d1:25:c2:13:98:8c:64:87:
b5:d9:47:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:49 2023 by rpki-client on console-ams.rpki-client.org