Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/11cfb5-acb5-4052-9f83-5e2c9dab8403/1/m8Mn8OfNeQH9xvvgYls5lJ5P-Ks.roa
File: m8Mn8OfNeQH9xvvgYls5lJ5P-Ks.roa (raw, json)
Hash identifier: gNZUVHopCxUDw34eayMQHKWXYmWRpS8hv+rzJsFVS4Q=
Subject key identifier: 9B:C3:27:F0:E7:CD:79:01:FD:C6:FB:E0:62:5B:39:94:9E:4F:F8:AB
Certificate issuer: /CN=b9112c804a7f4a74ce58cc71c994f5a9d56122b1
Certificate serial: 185DB9
Authority key identifier: B9:11:2C:80:4A:7F:4A:74:CE:58:CC:71:C9:94:F5:A9:D5:61:22:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uREsgEp_SnTOWMxxyZT1qdVhIrE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/11cfb5-acb5-4052-9f83-5e2c9dab8403/1/m8Mn8OfNeQH9xvvgYls5lJ5P-Ks.roa
Signing time: Sat 01 Jan 2022 02:01:31 +0000
ROA not before: Sat 01 Jan 2022 02:01:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209467
IP address blocks: 91.217.175.0/24 maxlen: 24
2001:678:93c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1596857 (0x185db9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9112c804a7f4a74ce58cc71c994f5a9d56122b1
Validity
Not Before: Jan 1 02:01:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bc327f0e7cd7901fdc6fbe0625b39949e4ff8ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:62:40:b3:d8:b4:08:58:e4:3f:34:e6:05:d6:
1b:22:c1:a4:4f:35:dc:ea:d6:6b:92:c2:0f:03:6a:
8f:60:34:c0:66:7e:df:5e:3d:66:9d:8d:77:2e:3f:
b0:48:29:2c:73:f3:d4:5d:f1:db:5b:71:78:71:c2:
3e:02:f3:9c:82:66:97:9f:32:26:35:33:69:1e:de:
1c:3a:d1:80:f9:db:ab:e6:18:1c:8d:22:d8:ff:b3:
db:d6:c1:b4:88:6e:d2:73:3f:1a:a3:14:37:de:59:
48:45:32:1b:a1:91:8c:62:36:42:12:61:9b:c1:d1:
cf:ad:71:46:b9:40:e7:ae:24:31:c6:6f:6d:77:d1:
5b:67:32:81:4e:c6:fd:b8:92:f2:90:54:cf:79:e0:
03:6b:de:0d:be:99:6a:27:fc:b5:05:10:89:21:b6:
ab:5e:50:96:36:c1:76:46:b4:78:a1:50:1b:e5:b0:
b7:c2:81:1b:98:c5:cf:97:f8:9e:9a:d8:a9:d5:36:
40:79:05:03:9d:be:e5:1b:13:ed:e5:6c:66:b5:65:
34:d5:1d:32:96:95:cd:4c:d1:fd:ba:3e:0c:1c:b8:
4c:d6:7d:e4:64:94:0a:ff:ce:93:16:ee:6a:c9:68:
0c:b2:d8:1e:01:2c:c2:d9:1a:3a:4b:c9:90:c1:0b:
6a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C3:27:F0:E7:CD:79:01:FD:C6:FB:E0:62:5B:39:94:9E:4F:F8:AB
X509v3 Authority Key Identifier:
keyid:B9:11:2C:80:4A:7F:4A:74:CE:58:CC:71:C9:94:F5:A9:D5:61:22:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uREsgEp_SnTOWMxxyZT1qdVhIrE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/11cfb5-acb5-4052-9f83-5e2c9dab8403/1/m8Mn8OfNeQH9xvvgYls5lJ5P-Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/11cfb5-acb5-4052-9f83-5e2c9dab8403/1/uREsgEp_SnTOWMxxyZT1qdVhIrE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.175.0/24
IPv6:
2001:678:93c::/48
Signature Algorithm: sha256WithRSAEncryption
64:27:b6:9f:33:d8:81:ca:24:d5:b5:ba:26:cd:33:b7:d2:66:
18:8e:74:d6:73:a3:b2:95:f1:fe:36:61:74:a3:b8:c5:2b:33:
45:36:03:ec:e3:ed:09:9e:36:36:a9:f9:55:44:d3:bc:6d:ad:
8e:c4:ea:13:bf:d1:40:04:f0:2f:1b:61:bf:a7:e7:74:b4:04:
79:5c:59:59:41:0b:8f:78:3f:e1:f9:ab:ae:56:b8:d1:27:6f:
95:f3:3f:9d:73:f0:67:12:4d:fb:90:ec:31:22:61:5f:75:c9:
16:09:6a:4f:da:8c:aa:55:0e:53:57:e7:a5:c7:44:61:cd:f1:
57:16:bd:09:46:36:74:6e:60:c0:e9:8b:3d:bc:b4:79:48:71:
ad:b4:fd:88:df:21:cd:41:c4:7d:38:be:99:1e:d2:0f:c0:d5:
2e:21:7c:63:ba:75:21:7a:a7:04:e3:9e:e7:16:73:2a:15:06:
cb:29:70:29:51:42:25:7b:e8:92:0c:ae:ea:55:f8:2d:98:d8:
4d:5a:7f:97:ae:22:c6:c0:fe:a1:23:e0:8e:7b:2e:47:8c:2d:
96:3e:34:3e:01:3a:a3:ff:d6:d1:91:bc:a6:41:b9:35:bd:13:
d4:76:09:18:dd:76:66:9e:9f:12:c5:e9:1e:31:1b:8c:9f:92:
96:3e:f3:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:02 2023 by rpki-client on console-ams.rpki-client.org