Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/DLZstsqCdIEWMS7iAG6kcaDaZjs.roa
File: DLZstsqCdIEWMS7iAG6kcaDaZjs.roa (raw, json)
Hash identifier: /I4rtvycHiy+dxxJDAn6vtMgiLSC4iXHVqXRm6O9Ug0=
Subject key identifier: 0C:B6:6C:B6:CA:82:74:81:16:31:2E:E2:00:6E:A4:71:A0:DA:66:3B
Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Certificate serial: 1A0F45B1
Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/DLZstsqCdIEWMS7iAG6kcaDaZjs.roa
Signing time: Sat 01 Jan 2022 16:02:43 +0000
ROA not before: Sat 01 Jan 2022 16:02:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56641
IP address blocks: 91.226.74.0/23 maxlen: 24
2a00:9520::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437208497 (0x1a0f45b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Validity
Not Before: Jan 1 16:02:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cb66cb6ca82748116312ee2006ea471a0da663b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1a:e8:6c:34:9c:b5:a5:14:f5:c4:bf:70:45:
47:08:e2:bc:dc:98:aa:ee:1f:b9:16:24:02:91:df:
43:36:01:71:ff:21:d0:d5:d6:c8:86:93:cf:8e:b2:
10:0a:0b:db:37:60:24:2d:c8:6e:5c:61:e5:b6:87:
5a:65:c9:25:e1:63:23:f7:46:bd:b3:c2:cc:2f:76:
aa:d8:50:fb:d4:55:af:ca:26:aa:0b:b6:26:1d:6f:
c9:96:55:89:4f:ee:cf:09:70:98:8b:7e:bc:ad:ce:
c9:a8:3c:c5:dd:f2:68:fe:85:47:9f:fb:23:87:29:
13:d8:f5:2a:69:9f:d2:8c:47:89:c7:b0:0e:d1:27:
5d:a2:af:a3:5c:eb:42:65:a1:ed:f1:4a:66:41:df:
6f:26:27:30:8b:96:77:de:0c:f9:3d:f2:b0:92:79:
22:ec:cb:5c:f0:76:9d:94:17:94:cd:2c:6f:10:2b:
50:99:3c:a0:f4:54:b6:d5:17:b3:63:a6:7f:9f:bf:
89:6d:46:48:60:af:d1:40:2c:51:b2:25:18:58:94:
d2:c8:1b:ea:c1:f7:d6:63:3c:18:a8:f4:77:67:27:
38:a6:53:0e:cd:86:3d:14:cd:0a:41:6d:ef:24:02:
20:c8:94:46:54:e4:e2:0d:30:1a:52:f1:24:72:a9:
eb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B6:6C:B6:CA:82:74:81:16:31:2E:E2:00:6E:A4:71:A0:DA:66:3B
X509v3 Authority Key Identifier:
keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/DLZstsqCdIEWMS7iAG6kcaDaZjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.74.0/23
IPv6:
2a00:9520::/32
Signature Algorithm: sha256WithRSAEncryption
1f:23:82:2c:48:7e:40:a5:0c:3f:70:55:a9:3c:46:56:29:a8:
24:20:9e:91:68:f5:fb:b0:05:bd:a8:21:02:d4:ce:c4:b0:54:
c1:bd:b8:90:b0:f3:04:34:3a:db:23:de:24:b0:50:64:fa:19:
0e:2a:65:a0:30:69:9b:f5:1d:a8:8e:0d:fa:9c:ba:77:06:db:
7d:83:fb:99:f1:7d:6d:50:90:69:94:fd:ee:ee:0f:b6:b3:6f:
b1:75:aa:cd:18:4b:7f:45:77:bb:ff:1a:14:53:e1:74:f6:03:
6d:f4:f6:c4:ae:d8:7c:83:3c:48:22:2f:e6:d6:38:a9:40:7d:
16:34:4e:cc:62:7c:ef:ad:74:0f:df:ef:fd:68:2e:76:1f:5f:
c9:2c:5d:73:b0:85:6f:d1:e9:76:48:53:30:5c:91:69:bd:e6:
ad:82:cb:6a:5e:5f:2d:26:d4:a7:9e:a3:cf:cb:70:fd:d0:c3:
e4:ab:ab:59:73:28:20:0f:70:72:33:1d:16:76:e4:2a:0a:df:
44:e3:20:76:19:25:f9:f3:d5:a4:49:0a:dc:a7:67:1c:f6:41:
59:f1:9c:ec:05:19:a7:d9:5f:0c:bb:44:29:17:6f:80:c0:3f:
72:30:63:76:c1:4d:44:b4:45:4d:ce:e4:14:a6:00:e3:5a:7a:
b2:44:7c:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:09 2023 by rpki-client on console-ams.rpki-client.org