Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/cZ77p8YhE0EUI9bqz9xk-GEvVUA.roa
File: cZ77p8YhE0EUI9bqz9xk-GEvVUA.roa (raw, json)
Hash identifier: dxUbaVK1eLTS2nz0Rz22tRc4on4P22NY5gUbRuSoCYg=
Subject key identifier: 71:9E:FB:A7:C6:21:13:41:14:23:D6:EA:CF:DC:64:F8:61:2F:55:40
Certificate issuer: /CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Certificate serial: 018320933BEF6433F1A53A940550CFAA1B67
Authority key identifier: 61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/cZ77p8YhE0EUI9bqz9xk-GEvVUA.roa
Signing time: Fri 09 Sep 2022 04:47:43 +0000
ROA not before: Fri 09 Sep 2022 04:47:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211796
IP address blocks: 91.188.248.0/24 maxlen: 24
91.202.244.0/24 maxlen: 24
2a0c:6ec0:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:20:93:3b:ef:64:33:f1:a5:3a:94:05:50:cf:aa:1b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Validity
Not Before: Sep 9 04:47:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=719efba7c62113411423d6eacfdc64f8612f5540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b9:5a:7f:b9:14:a7:20:32:55:42:ac:90:75:
47:60:56:1e:c8:7b:8d:96:d5:3a:cb:a2:cf:15:20:
4c:96:05:2c:1a:ea:9c:4e:a5:1d:30:a6:00:7a:58:
b8:44:a0:9a:b9:fa:03:7f:c9:c7:3a:b6:0a:8d:40:
82:d3:48:8c:ab:5b:cd:b4:4d:30:fe:cf:e0:4a:89:
da:a6:78:14:dd:2b:ff:fd:72:9e:13:50:ff:04:2f:
66:eb:f3:0d:8f:d8:f7:9f:29:d3:bd:9d:6e:d0:e8:
89:6c:1d:89:8a:be:f6:4f:17:3e:23:9b:62:4a:4c:
da:df:2b:36:23:b7:fd:4e:e2:f2:ad:4f:ff:50:59:
c5:01:e6:ae:b9:e3:58:8c:be:51:c1:45:a1:a8:1d:
c5:c4:54:b7:ab:0a:3d:70:ae:57:d4:c5:08:fc:c8:
a5:69:3d:1a:e1:e2:10:6b:93:87:75:85:11:25:ef:
78:e2:e5:70:44:94:c2:b1:04:29:ce:57:fb:c8:bc:
af:9d:9e:99:0b:f1:24:f8:7c:55:47:aa:86:c8:d2:
e1:cf:02:af:21:db:53:df:ee:b4:3f:37:cc:97:4e:
93:f0:73:d3:f9:a6:f5:e3:ec:43:8b:0b:f4:f5:f7:
e2:da:89:b4:83:1a:36:18:10:9d:fa:b6:ec:49:5b:
87:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:9E:FB:A7:C6:21:13:41:14:23:D6:EA:CF:DC:64:F8:61:2F:55:40
X509v3 Authority Key Identifier:
keyid:61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/cZ77p8YhE0EUI9bqz9xk-GEvVUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.248.0/24
91.202.244.0/24
IPv6:
2a0c:6ec0:1::/48
Signature Algorithm: sha256WithRSAEncryption
8f:37:bc:89:e6:f8:c2:f2:47:0e:9b:eb:0e:a5:8c:c9:f0:24:
c9:18:53:5a:13:c0:a0:f2:d8:5e:15:18:7a:67:d1:cc:d3:44:
56:03:f3:93:f7:87:db:8c:30:2f:92:bb:bd:95:09:b1:74:77:
eb:e8:10:41:3b:6c:5d:25:2c:f0:90:7a:9d:89:b4:02:13:1a:
a4:97:55:b4:cc:91:fc:8a:7a:ed:63:0f:87:ef:1c:d8:bb:17:
1b:07:7e:3a:4a:2c:00:43:12:18:f9:1a:53:31:33:a6:84:86:
39:8c:27:02:84:99:64:f8:ec:8b:2a:93:9b:e8:83:b3:08:10:
e3:de:64:3a:a7:a5:e5:49:05:65:9e:84:be:bb:bf:90:de:52:
18:40:5b:72:c4:a9:a6:cc:05:f0:f0:7b:66:e7:5c:3d:be:89:
81:0a:e4:f2:cb:81:84:e0:f2:25:33:4f:75:78:ad:b7:9e:ab:
fd:de:53:c7:d3:e0:a4:03:2c:89:23:28:24:6b:52:c4:b2:a1:
2e:e8:d8:e0:1f:f0:78:a0:99:72:93:69:74:11:cf:b1:b5:aa:
cd:b4:ae:9e:80:33:60:00:97:55:83:45:ec:ab:ab:7e:63:f6:
24:ca:3e:8d:44:62:57:e9:24:86:ee:b2:9f:f0:21:24:79:47:
b0:68:c3:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:46 2024 by rpki-client on console-fra.rpki-client.org