Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/DFw7xT3JuMsdmC0Igqj5IWuNc3U.roa
File: DFw7xT3JuMsdmC0Igqj5IWuNc3U.roa (raw, json)
Hash identifier: l8DZ3L+P/KM64y9XwX3FBE2UbyJy4Wd9q433QXlkXYw=
Subject key identifier: 0C:5C:3B:C5:3D:C9:B8:CB:1D:98:2D:08:82:A8:F9:21:6B:8D:73:75
Certificate issuer: /CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Certificate serial: 03A90A7A
Authority key identifier: 6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/DFw7xT3JuMsdmC0Igqj5IWuNc3U.roa
Signing time: Sat 01 Jan 2022 08:03:12 +0000
ROA not before: Sat 01 Jan 2022 08:03:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31633
IP address blocks: 91.192.130.0/24 maxlen: 24
91.192.131.0/24 maxlen: 24
91.192.128.0/22 maxlen: 22
91.192.128.0/24 maxlen: 24
91.192.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61409914 (0x3a90a7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Validity
Not Before: Jan 1 08:03:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c5c3bc53dc9b8cb1d982d0882a8f9216b8d7375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2a:d3:6d:41:ed:7c:c6:62:36:00:56:08:7d:
97:6c:a2:af:77:a7:f3:c4:3d:62:f0:95:36:1a:17:
1f:64:07:e9:25:42:89:aa:96:71:16:fa:23:0e:71:
8d:c7:13:7c:0b:5f:31:6d:d7:e1:83:b4:06:09:ee:
39:d8:75:ed:be:f3:3b:1b:b8:aa:61:02:7c:9a:2e:
b8:f0:49:12:a4:b6:c2:ba:d2:aa:d2:70:06:45:a3:
bb:a9:08:7a:90:b6:20:b7:12:b8:f0:ab:cf:e2:8e:
6e:0e:47:e5:41:1d:cd:bb:0f:64:38:71:da:10:7f:
2c:0c:2a:17:c1:0d:c7:0c:e9:4c:09:0c:69:08:56:
bb:fc:de:dc:23:c2:cd:69:9e:80:eb:0f:7e:dc:1f:
20:cc:ce:f1:6d:e7:6a:95:86:c1:d1:60:6d:14:23:
c5:37:ca:eb:59:bf:51:4e:92:6f:59:eb:fd:36:ef:
2a:d2:11:6d:6b:fd:0a:f7:d7:86:5f:8e:cd:fa:01:
44:31:a2:11:45:a4:10:cf:c6:b8:39:22:2d:1f:00:
6d:da:48:27:1c:00:5e:73:5e:cd:b7:dd:44:08:fe:
09:6b:fc:cf:1a:98:46:03:48:f5:f7:46:c7:a5:e9:
5e:cc:1c:ff:c5:4d:3a:40:a1:3a:5f:aa:2f:35:8d:
2c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:5C:3B:C5:3D:C9:B8:CB:1D:98:2D:08:82:A8:F9:21:6B:8D:73:75
X509v3 Authority Key Identifier:
keyid:6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/DFw7xT3JuMsdmC0Igqj5IWuNc3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.128.0/22
Signature Algorithm: sha256WithRSAEncryption
93:d1:ae:87:8a:20:36:75:b7:3c:ed:44:f4:ab:b9:d2:90:29:
cc:a6:55:a3:c8:08:9c:05:5a:40:a5:bf:f3:29:2a:d9:f3:2c:
d3:37:32:e5:8e:63:71:ca:98:d4:a7:5e:96:f7:f8:1f:23:00:
f8:62:e8:b8:32:3f:dc:e8:dd:e4:45:29:a3:62:d0:30:27:c2:
af:38:06:51:e5:ac:73:45:17:26:04:ff:45:d3:59:f7:e5:f0:
fe:95:46:5d:ba:df:99:fb:57:fe:ad:35:0d:a5:d8:95:f1:54:
73:9c:92:b4:fb:92:3d:dc:40:37:e2:b7:db:fa:90:f8:01:ee:
32:12:8d:78:e3:24:34:00:fc:5f:19:c0:6d:17:de:9d:e3:f7:
f0:79:a5:07:4c:97:25:0e:41:73:86:6b:54:35:d6:35:1e:10:
7f:6c:9d:b9:bc:ef:18:18:83:7b:a1:5d:46:3a:64:a7:f9:69:
b8:4d:3c:e8:9e:81:24:db:13:f6:98:08:2c:9e:fb:f1:fb:d0:
e3:7d:c4:31:a7:0e:9a:90:25:65:b8:68:17:44:1b:f9:f8:57:
13:ab:be:d4:a7:29:f9:1d:e8:c5:0d:e1:e0:d2:35:03:ea:d2:
2c:55:7d:bb:b9:c6:f9:5a:c4:56:d6:53:35:4c:d6:f2:2b:c7:
d3:a5:10:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:10 2024 by rpki-client on console-ams.rpki-client.org