Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/cd90b9-fa88-4bd9-a7d5-22118b361490/1/yR9Wy8isxnW16pX3H_nh-cUC3yo.roa
File: yR9Wy8isxnW16pX3H_nh-cUC3yo.roa (raw, json)
Hash identifier: YSWal7w3DoXE6aLwWwIM1YjeKrDLOpJC4ctM4Fvfi4A=
Subject key identifier: C9:1F:56:CB:C8:AC:C6:75:B5:EA:95:F7:1F:F9:E1:F9:C5:02:DF:2A
Certificate issuer: /CN=3ffc412721c0c6e7a4c5767ae98c4521def51501
Certificate serial: 05400EDC
Authority key identifier: 3F:FC:41:27:21:C0:C6:E7:A4:C5:76:7A:E9:8C:45:21:DE:F5:15:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P_xBJyHAxuekxXZ66YxFId71FQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/cd90b9-fa88-4bd9-a7d5-22118b361490/1/yR9Wy8isxnW16pX3H_nh-cUC3yo.roa
Signing time: Sat 01 Jan 2022 11:57:05 +0000
ROA not before: Sat 01 Jan 2022 11:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207307
IP address blocks: 91.205.159.0/24 maxlen: 24
2a05:b380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88084188 (0x5400edc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ffc412721c0c6e7a4c5767ae98c4521def51501
Validity
Not Before: Jan 1 11:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c91f56cbc8acc675b5ea95f71ff9e1f9c502df2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c1:83:19:61:db:3f:81:a0:cf:9e:c1:a9:a7:
a8:e8:1d:83:bf:39:5d:f0:70:c8:c0:5e:c6:ac:e2:
00:a3:65:0a:76:35:3f:ab:ef:95:c5:45:0e:da:77:
16:41:d3:c8:e9:7e:8d:e9:fb:b7:14:c6:ae:b5:d4:
55:e1:93:55:7e:01:47:c7:6a:dc:15:60:8a:8f:e7:
51:90:7c:ec:89:1c:f6:bb:52:9b:d2:53:5a:2a:5f:
35:79:3b:02:4c:3c:84:70:c7:1b:74:84:b3:e8:36:
d8:a6:17:92:57:70:d6:70:63:4c:80:af:b4:0b:11:
f8:60:2d:eb:3a:69:fa:e4:c9:75:47:90:c4:bb:5e:
31:d5:f7:cc:0d:ce:49:fc:36:ec:18:4e:42:1b:99:
2b:fc:c2:f6:0d:61:39:10:b1:7e:c4:43:7e:bf:94:
ea:94:9d:ea:1f:f3:35:9b:37:49:ad:aa:c1:c1:dc:
ac:bf:b8:c2:c5:26:c2:2c:e1:f6:35:ec:1d:76:de:
67:6a:48:20:dd:41:7b:60:0c:23:49:9e:b8:8b:79:
0f:2a:09:45:c7:04:77:1b:10:1d:3b:0e:43:60:52:
10:fa:29:43:6a:eb:43:86:e8:fe:f8:65:84:07:13:
fb:86:78:cd:81:d1:38:9d:2c:74:76:99:7a:9c:63:
0f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:1F:56:CB:C8:AC:C6:75:B5:EA:95:F7:1F:F9:E1:F9:C5:02:DF:2A
X509v3 Authority Key Identifier:
keyid:3F:FC:41:27:21:C0:C6:E7:A4:C5:76:7A:E9:8C:45:21:DE:F5:15:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P_xBJyHAxuekxXZ66YxFId71FQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cd90b9-fa88-4bd9-a7d5-22118b361490/1/yR9Wy8isxnW16pX3H_nh-cUC3yo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/cd90b9-fa88-4bd9-a7d5-22118b361490/1/P_xBJyHAxuekxXZ66YxFId71FQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.159.0/24
IPv6:
2a05:b380::/29
Signature Algorithm: sha256WithRSAEncryption
64:2c:53:a5:57:c9:b9:72:b6:53:87:56:41:2f:d7:84:37:ab:
91:28:ac:db:43:24:01:ba:34:60:27:84:70:17:77:0c:42:64:
4f:fc:2c:fb:14:be:26:c5:47:96:f8:7b:15:00:77:43:8a:b3:
29:07:40:bd:5c:8d:9a:b0:87:2f:ed:95:8f:35:96:f1:24:77:
7a:27:eb:27:2c:83:e4:3a:24:c4:c3:dc:cd:6b:c0:3f:45:e7:
04:d0:b9:87:61:93:6c:3d:ce:6d:7b:c3:85:7a:3e:95:3f:af:
98:32:ad:a2:c4:91:5a:23:f7:d8:b2:c2:71:2d:0e:f1:31:d9:
e6:02:07:61:74:77:05:f0:22:54:c0:6b:a8:b0:23:e6:a3:b0:
69:e3:25:5e:08:61:4a:cf:ae:3d:a9:c5:f1:25:9f:4f:6c:df:
08:db:7c:17:42:f8:f6:82:23:05:e6:40:4d:26:68:27:e2:06:
c6:37:03:57:39:70:c6:aa:98:14:9d:ff:e6:af:cc:11:42:b0:
69:07:36:f3:65:61:f8:93:6f:06:0c:94:e3:51:2f:fc:08:7e:
be:5d:62:ef:46:38:24:31:3b:cf:f5:b6:0c:cd:ee:42:63:5a:
22:05:1e:e1:57:43:bd:fe:b0:90:95:51:d3:73:f5:e7:69:d9:
dd:52:77:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:53 2023 by rpki-client on console-fra.rpki-client.org