Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/yJ0ySt6_LPjULc5p-5ScbU1qYEE.roa
File: yJ0ySt6_LPjULc5p-5ScbU1qYEE.roa (raw, json)
Hash identifier: N2nPDS0397ZSVtKIF2d1wAq6g6mj9ormOfuSumQmc+w=
Subject key identifier: C8:9D:32:4A:DE:BF:2C:F8:D4:2D:CE:69:FB:94:9C:6D:4D:6A:60:41
Certificate issuer: /CN=8b31967110cabeec4a66b78037e52a87b2bc8f5d
Certificate serial: 03874229
Authority key identifier: 8B:31:96:71:10:CA:BE:EC:4A:66:B7:80:37:E5:2A:87:B2:BC:8F:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izGWcRDKvuxKZreAN-Uqh7K8j10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/yJ0ySt6_LPjULc5p-5ScbU1qYEE.roa
Signing time: Sat 01 Jan 2022 13:59:56 +0000
ROA not before: Sat 01 Jan 2022 13:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12353
IP address blocks: 91.216.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59195945 (0x3874229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b31967110cabeec4a66b78037e52a87b2bc8f5d
Validity
Not Before: Jan 1 13:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c89d324adebf2cf8d42dce69fb949c6d4d6a6041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e8:f0:3d:40:22:d7:84:fe:22:d8:cb:bb:f9:
d0:0e:e6:a9:df:4d:21:42:5b:e0:01:2e:6d:7a:50:
a5:cf:2e:6e:05:f7:e7:20:1c:02:12:56:38:54:06:
59:f9:a7:58:71:95:00:15:bc:45:c8:b8:38:fd:03:
17:74:bd:f3:6f:26:2e:82:75:25:25:61:dd:a8:10:
7d:dc:ed:d6:8e:9e:cc:ec:ea:74:1a:62:70:97:63:
1c:c2:1b:ef:df:b4:87:a4:2c:b7:82:f2:fb:0b:1b:
6d:f1:fd:05:3d:44:02:39:73:f0:8f:66:45:33:7a:
2a:49:e1:c4:78:a9:12:82:54:1e:9f:fe:b6:f8:26:
11:34:ab:db:b6:26:21:e2:d0:20:be:c1:8d:de:70:
b8:dc:a9:fc:77:45:e5:9d:7e:2b:b5:13:4c:c4:4a:
16:eb:ae:77:c9:e4:c8:bb:c9:97:be:a4:57:30:0b:
3e:22:0d:9d:3d:2c:92:16:14:21:b4:80:79:d3:80:
19:d0:85:0e:fb:b7:13:e6:c7:1f:da:71:ff:ae:02:
dc:d5:a8:31:bc:82:4e:91:d4:77:de:db:08:01:1e:
79:3d:fb:f6:50:eb:df:7d:9b:56:52:2f:cc:48:a1:
11:d5:da:c6:fe:84:01:b1:d6:1b:4a:a7:3b:cd:e8:
6b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:9D:32:4A:DE:BF:2C:F8:D4:2D:CE:69:FB:94:9C:6D:4D:6A:60:41
X509v3 Authority Key Identifier:
keyid:8B:31:96:71:10:CA:BE:EC:4A:66:B7:80:37:E5:2A:87:B2:BC:8F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izGWcRDKvuxKZreAN-Uqh7K8j10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/yJ0ySt6_LPjULc5p-5ScbU1qYEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/izGWcRDKvuxKZreAN-Uqh7K8j10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.117.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:15:93:37:a3:68:a7:00:11:3f:7a:93:be:c5:dd:b9:3e:a0:
96:b6:9d:ca:66:28:aa:f9:af:6e:ba:74:af:7b:10:3a:20:7d:
8e:07:88:ba:f4:5b:2c:47:51:7f:8f:6e:1e:d4:88:85:66:6b:
c9:78:05:b8:dd:88:8a:17:34:47:b1:39:a7:13:36:35:5c:fb:
7e:6a:b2:c4:a3:db:ce:7e:44:16:8c:87:f2:5e:f4:8a:16:6d:
20:c0:19:87:ca:36:38:ff:3e:f2:1f:46:7c:f5:51:d3:e0:5d:
5a:f5:45:a4:c9:b1:44:1a:eb:7d:f4:3c:0b:07:9b:80:c8:33:
f9:b0:06:02:88:60:ce:da:e2:69:7f:ee:aa:dd:95:70:60:f0:
29:b1:d3:93:a4:9d:ac:f1:af:4e:be:75:9f:5d:a8:6b:d6:69:
73:09:41:04:a3:2f:60:19:e2:9e:eb:ec:a1:41:43:bf:a0:f5:
73:d5:d5:ab:f6:81:36:d1:b7:a1:95:77:ad:8d:71:c6:cf:c1:
dd:15:78:78:93:11:25:47:20:a2:6e:e2:3f:8a:62:bc:71:84:
60:77:00:82:bc:63:b9:28:21:20:11:4b:3b:9b:e2:07:45:50:
42:64:7c:eb:c8:48:10:df:e5:09:3f:63:f3:fc:a6:49:67:6c:
98:e9:ab:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:13 2024 by rpki-client on console-ams.rpki-client.org