Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2430fb-412e-44c4-8fd3-5166b39a3e18/1/IGdPezi_TRw0Qbgci77btMD22r8.roa
File: IGdPezi_TRw0Qbgci77btMD22r8.roa (raw, json)
Hash identifier: 0XO4wU9KLS/d7ilPBm2tGQacklrIbiEU0GX8QCpKGRg=
Subject key identifier: 20:67:4F:7B:38:BF:4D:1C:34:41:B8:1C:8B:BE:DB:B4:C0:F6:DA:BF
Certificate issuer: /CN=ced30c251141ddb648d05a2c284b33c87c517525
Certificate serial: 03B9BCCF
Authority key identifier: CE:D3:0C:25:11:41:DD:B6:48:D0:5A:2C:28:4B:33:C8:7C:51:75:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ztMMJRFB3bZI0FosKEszyHxRdSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2430fb-412e-44c4-8fd3-5166b39a3e18/1/IGdPezi_TRw0Qbgci77btMD22r8.roa
Signing time: Sat 01 Jan 2022 06:05:21 +0000
ROA not before: Sat 01 Jan 2022 06:05:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51193
IP address blocks: 91.216.198.0/25 maxlen: 25
91.216.198.0/24 maxlen: 24
91.216.198.128/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62504143 (0x3b9bccf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ced30c251141ddb648d05a2c284b33c87c517525
Validity
Not Before: Jan 1 06:05:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20674f7b38bf4d1c3441b81c8bbedbb4c0f6dabf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:45:85:44:80:11:8b:27:64:9e:5a:d6:c1:8e:
ec:0c:8e:1d:04:73:15:65:c6:7a:6b:67:35:9a:1b:
00:73:0b:1b:12:aa:96:b0:ba:14:d0:d8:1b:1f:fa:
87:a2:46:e8:6f:05:e4:db:c4:6d:36:4a:e2:3d:50:
aa:29:c5:60:e7:57:a1:93:90:73:e2:af:60:d3:18:
d4:53:b6:77:bb:8d:c8:64:08:62:c9:2e:a0:82:a4:
98:b6:b1:40:c7:1c:81:83:ee:2a:1b:c1:5a:6c:80:
64:45:a3:37:cf:8f:30:eb:eb:2a:e9:31:bf:52:5b:
e2:e8:13:76:f1:18:1e:37:4e:eb:99:2b:5a:44:dd:
b4:f8:7d:c7:9a:1b:6a:72:6d:20:cd:08:a1:97:0b:
be:e3:33:5c:56:c0:ed:bd:c7:aa:42:28:d3:01:00:
ab:12:f6:97:f3:f8:25:b9:bf:ab:b2:37:64:31:b6:
34:db:ae:a4:69:da:a6:ea:7e:be:42:66:79:b2:ae:
31:f6:62:48:a5:62:93:46:a8:3d:5c:e9:b9:6c:b7:
69:81:86:fb:04:c4:8f:cc:93:c7:21:60:d9:b5:93:
a2:12:17:c0:54:71:a0:46:6b:32:a1:d0:d6:46:3d:
7d:27:12:83:7b:de:5d:24:dd:85:72:75:ac:12:b5:
70:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:67:4F:7B:38:BF:4D:1C:34:41:B8:1C:8B:BE:DB:B4:C0:F6:DA:BF
X509v3 Authority Key Identifier:
keyid:CE:D3:0C:25:11:41:DD:B6:48:D0:5A:2C:28:4B:33:C8:7C:51:75:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztMMJRFB3bZI0FosKEszyHxRdSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2430fb-412e-44c4-8fd3-5166b39a3e18/1/IGdPezi_TRw0Qbgci77btMD22r8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2430fb-412e-44c4-8fd3-5166b39a3e18/1/ztMMJRFB3bZI0FosKEszyHxRdSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.198.0/24
Signature Algorithm: sha256WithRSAEncryption
38:9a:aa:68:d7:dd:b0:1e:42:79:6d:bf:45:69:64:fe:37:8a:
9a:09:34:0c:f2:06:83:c2:d3:98:fb:90:87:a0:f6:a7:ed:95:
c8:bd:ea:31:3d:f7:55:16:a4:21:40:d4:36:db:05:39:bd:7a:
25:4e:7b:d7:96:d7:70:3e:98:49:95:32:18:b1:f4:8d:d2:27:
89:e6:65:81:82:57:3d:9c:87:6c:0b:d7:51:39:33:5a:92:6d:
38:0e:b0:c4:d1:90:36:03:71:0e:4a:8c:a3:e8:49:08:ae:bb:
9a:0b:bd:d1:ee:7c:6e:80:86:e7:e8:a4:e2:63:e4:90:5f:09:
72:d7:9f:53:e2:33:97:9e:d3:ce:7b:ae:54:ff:1a:a3:02:b6:
5a:7b:3d:21:5d:e2:41:ef:1d:42:ae:ae:2c:c1:1c:f7:66:cc:
b6:7b:60:c4:2b:ea:7d:3f:37:b5:19:cc:65:b1:d3:a5:ca:5f:
33:04:64:a6:e2:2d:e6:0a:a2:c8:9a:75:76:dc:d4:c8:08:97:
42:dd:8d:8c:98:19:b1:ac:f3:27:5a:9c:4f:2a:12:34:36:46:
c5:9d:f4:a9:72:76:72:de:95:3a:e0:5e:a2:7e:9b:da:af:41:
91:c2:17:f3:e8:5b:02:59:0b:81:33:1c:ca:c6:07:ad:ad:03:
50:67:67:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:59 2024 by rpki-client on console-fra.rpki-client.org