Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/wchvYx6sM4geppw-vHgQBqsDJfU.roa
File: wchvYx6sM4geppw-vHgQBqsDJfU.roa (raw, json)
Hash identifier: ecCqeEUo/gEaz4mBm8apBB9IjdCRgHUfkRVj1rjXULQ=
Subject key identifier: C1:C8:6F:63:1E:AC:33:88:1E:A6:9C:3E:BC:78:10:06:AB:03:25:F5
Certificate issuer: /CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Certificate serial: 018201806D0431C7FA6C30B9C2418A1B3D37
Authority key identifier: 7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/wchvYx6sM4geppw-vHgQBqsDJfU.roa
Signing time: Fri 15 Jul 2022 10:56:09 +0000
ROA not before: Fri 15 Jul 2022 10:56:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 91.209.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:80:6d:04:31:c7:fa:6c:30:b9:c2:41:8a:1b:3d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Validity
Not Before: Jul 15 10:56:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1c86f631eac33881ea69c3ebc781006ab0325f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:de:e5:77:ac:f5:3c:a3:31:7c:80:f0:e0:95:
6b:8f:59:e9:5f:99:fb:4b:49:bf:39:7c:b6:ee:a2:
ca:e3:5a:31:a8:18:3b:84:24:d7:78:76:40:f1:ed:
2b:50:bf:dc:4a:82:17:b3:5d:58:6a:16:aa:ad:00:
5c:1d:33:80:19:c9:93:18:56:29:55:da:7c:a2:b7:
68:e4:5c:5a:23:75:2b:18:b0:35:5a:e1:24:74:a6:
1d:35:f8:0d:1c:c1:77:34:dd:a0:55:1a:6b:26:dd:
04:47:bf:db:78:25:b0:75:d2:80:b8:1b:61:ae:a5:
ec:1a:01:71:0e:97:ed:a4:c3:3a:17:37:2b:73:81:
55:a3:38:11:c6:dd:1e:83:b5:a5:87:12:0c:e7:ca:
05:28:14:7b:fa:b4:0d:6a:59:6d:5f:9f:de:3a:aa:
f3:3e:f2:da:d0:e9:d5:cc:fe:88:bb:25:a3:85:fb:
88:ed:6e:b2:e3:e2:13:8c:c9:e1:9b:a3:87:72:c8:
af:8b:ef:b0:e7:7d:d3:45:61:18:37:8b:b1:3f:6b:
80:05:68:1b:33:fa:d1:a8:7c:ae:fa:b2:e2:09:8e:
99:ea:96:6d:a7:bd:9e:f6:fd:df:16:50:95:ed:7e:
24:81:48:56:9c:0f:44:03:05:1a:2a:22:cf:a3:a1:
b0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:C8:6F:63:1E:AC:33:88:1E:A6:9C:3E:BC:78:10:06:AB:03:25:F5
X509v3 Authority Key Identifier:
keyid:7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/wchvYx6sM4geppw-vHgQBqsDJfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.228.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:c7:31:b2:3a:64:c0:71:72:c0:6a:53:9b:41:16:10:89:58:
bb:c2:03:bb:fb:8c:ac:10:40:5e:d3:9b:2e:04:75:2a:43:d7:
88:49:be:3c:27:e2:2f:75:36:12:5c:f4:3b:68:b8:b7:a4:cd:
b0:d1:e0:10:bc:f9:84:01:25:84:4c:fb:ae:97:07:05:b3:2c:
17:8b:56:29:72:9e:66:69:85:9a:d2:10:79:82:f9:b1:56:56:
7a:20:4d:19:a3:e4:d9:83:63:14:1c:3d:79:4f:64:0b:25:fe:
67:bf:00:91:2c:9e:ea:ae:09:02:85:03:05:eb:fd:fd:0b:24:
44:82:99:fa:96:22:a0:e4:a4:4d:57:63:33:3b:8e:99:6c:10:
80:90:e8:56:02:b0:8c:de:c2:df:b6:8c:d1:5a:cb:5b:a0:7e:
61:27:c1:2b:2a:a3:de:11:bb:0c:5b:3d:1c:75:bd:a9:60:e1:
7c:60:92:3b:0c:05:a6:b7:4f:bd:78:ed:c2:25:2f:46:d5:68:
bb:06:50:cd:e0:a2:bb:97:07:06:a0:7e:f6:8e:75:18:de:ff:
ac:01:a1:2d:57:9e:ee:f5:78:a8:2f:30:21:1b:48:4b:f8:45:
76:f3:54:0a:f8:be:94:6e:a1:3d:97:41:17:bf:ac:bc:37:b9:
72:de:fb:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org