Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/fyMsTA8F3emjNSx2ATwRnXC_KiU.roa
File: fyMsTA8F3emjNSx2ATwRnXC_KiU.roa (raw, json)
Hash identifier: AMUTB2Zoreij8dTfku5kzn1Hy7ECoZd7LMC+SmI0DFM=
Subject key identifier: 7F:23:2C:4C:0F:05:DD:E9:A3:35:2C:76:01:3C:11:9D:70:BF:2A:25
Certificate issuer: /CN=b14881fa3e75a3851cf70419135abdd529d2f682
Certificate serial: 07C6671B
Authority key identifier: B1:48:81:FA:3E:75:A3:85:1C:F7:04:19:13:5A:BD:D5:29:D2:F6:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUiB-j51o4Uc9wQZE1q91SnS9oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/fyMsTA8F3emjNSx2ATwRnXC_KiU.roa
Signing time: Sat 01 Jan 2022 12:59:08 +0000
ROA not before: Sat 01 Jan 2022 12:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50446
IP address blocks: 91.216.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130443035 (0x7c6671b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14881fa3e75a3851cf70419135abdd529d2f682
Validity
Not Before: Jan 1 12:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f232c4c0f05dde9a3352c76013c119d70bf2a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1a:4a:af:7d:29:c1:5a:cb:d3:8f:1b:2a:be:
c6:d3:f9:24:d5:16:a3:9c:32:c9:20:5f:cf:3b:95:
0f:38:ed:75:02:d0:3b:e4:d2:96:2f:32:5f:a8:44:
8c:c2:cc:bd:5e:5c:9b:ca:47:7c:4e:56:63:13:4a:
65:fd:3f:b3:ab:5e:8a:43:06:6e:b0:c3:ee:2d:d4:
c8:f8:ae:41:ec:f2:d6:13:8e:63:f3:e3:bc:99:f6:
84:12:de:6c:94:4c:7c:4d:8c:4f:02:10:45:f9:13:
b7:71:05:01:70:c9:5e:62:03:86:88:5c:31:bd:2c:
04:ba:0f:8e:70:68:c6:d8:56:11:c9:d1:1c:23:e0:
aa:f5:ef:5a:f3:59:29:0c:19:28:58:a5:fb:c9:a0:
bb:1f:26:64:16:87:4c:b8:6b:c2:d1:22:2c:48:54:
a2:ed:e3:ea:00:4c:2c:c0:1e:9b:83:5b:cf:94:a9:
60:fa:a6:a4:38:db:65:93:b5:5f:39:e9:43:a6:b1:
51:3c:fd:a1:90:24:14:54:57:59:f1:16:32:6e:bb:
66:ce:e3:49:58:e5:a2:1e:ab:3a:26:92:af:ff:db:
23:0a:cf:26:92:b2:8a:86:0a:da:4e:26:b1:92:f6:
d7:0e:b7:c1:f6:9d:22:19:df:c9:15:88:85:42:2c:
41:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:23:2C:4C:0F:05:DD:E9:A3:35:2C:76:01:3C:11:9D:70:BF:2A:25
X509v3 Authority Key Identifier:
keyid:B1:48:81:FA:3E:75:A3:85:1C:F7:04:19:13:5A:BD:D5:29:D2:F6:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUiB-j51o4Uc9wQZE1q91SnS9oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/fyMsTA8F3emjNSx2ATwRnXC_KiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/94c70a-fe1d-4420-9985-20f333c253ac/1/sUiB-j51o4Uc9wQZE1q91SnS9oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.234.0/24
Signature Algorithm: sha256WithRSAEncryption
95:25:6a:d6:e8:34:82:6e:0a:ce:72:da:e8:98:62:da:7d:ca:
35:9f:5e:16:57:15:fc:ca:64:6d:1f:38:06:80:02:3f:f6:35:
d2:5e:53:e0:52:ec:e1:6f:0d:c3:a2:2b:27:53:9a:b1:f9:b0:
6a:5e:c7:d3:ed:ae:45:6f:94:25:25:79:9f:f5:1f:df:89:62:
9e:4f:be:56:71:a2:50:7b:03:ed:ee:75:d9:32:a4:55:a1:ec:
90:a8:88:04:37:c6:09:a8:e6:4e:85:ac:99:4f:28:cd:74:ee:
d5:d2:cc:d1:f4:3e:c8:9e:8d:49:a5:8b:39:69:88:12:6b:1c:
47:c6:9e:4d:3b:26:84:96:84:22:ab:4b:df:09:36:53:6e:81:
d7:21:f4:88:df:57:bf:c5:fb:9c:18:aa:96:f8:51:5a:48:a5:
d7:48:a1:d3:61:dd:4b:58:04:de:d9:91:fd:93:ff:ca:f0:e7:
1a:82:34:06:82:06:dd:f3:09:10:4c:88:8f:d9:5e:34:3c:ce:
bb:0f:45:4d:da:8c:13:22:eb:e8:ce:0f:48:ab:6c:c5:33:9d:
05:66:5c:ab:73:e0:fc:6c:2d:fa:46:d2:63:4c:43:77:c4:9f:
d4:aa:50:6e:3b:dc:79:7c:ed:27:c0:4d:b5:69:ee:1a:4d:d0:
0b:7f:c8:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:34 2024 by rpki-client on console-ams.rpki-client.org