Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/9HaNv89fl2Y-Jw6urMK5iTKJ8IE.roa
File: 9HaNv89fl2Y-Jw6urMK5iTKJ8IE.roa (raw, json)
Hash identifier: A3zby+0QbilRfH+DC1vIUk3Lm+GMZQXTSc0biN7p9Po=
Subject key identifier: F4:76:8D:BF:CF:5F:97:66:3E:27:0E:AE:AC:C2:B9:89:32:89:F0:81
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 022601D6
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/9HaNv89fl2Y-Jw6urMK5iTKJ8IE.roa
Signing time: Thu 09 Jun 2022 03:12:05 +0000
ROA not before: Thu 09 Jun 2022 03:12:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 91.221.117.0/24 maxlen: 24
91.221.233.0/24 maxlen: 24
109.107.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36045270 (0x22601d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jun 9 03:12:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4768dbfcf5f97663e270eaeacc2b9893289f081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:30:a1:1e:e8:16:32:81:29:e2:ec:88:1f:e6:
9c:1a:ff:b8:8a:70:ed:38:6f:75:3c:e3:dd:55:93:
0b:11:e7:c0:07:83:0f:25:48:2c:ec:09:34:d3:c6:
35:3c:bd:ab:10:53:d1:96:36:a6:fc:d2:c9:05:6c:
30:71:7c:e5:a9:29:ec:a5:b3:ca:b0:b7:78:42:55:
04:f6:8f:8e:1c:30:0b:af:8c:2a:40:87:f3:a8:7c:
33:56:73:8b:c5:c9:56:32:d9:c9:94:ab:2e:11:41:
02:cd:c6:16:9b:c1:e6:41:49:22:f4:91:c0:f9:41:
df:28:4e:5d:28:b9:6d:a2:ea:17:c1:ca:e1:30:d7:
d0:54:b0:e6:52:a5:29:a7:98:e2:63:6c:80:78:f8:
07:b1:6b:13:b7:04:ea:a3:8a:d4:5a:6f:32:4a:c5:
5f:b6:70:83:6a:60:84:f0:f5:26:bd:07:b6:6a:da:
68:2e:56:40:50:df:69:20:4f:31:8b:eb:65:5f:65:
27:95:27:fe:b5:d4:aa:8a:ba:9e:a4:bb:78:cf:a3:
55:b1:b9:f3:ef:8b:f4:d2:65:cd:77:92:e8:ae:c9:
d4:2b:68:35:4b:bf:74:05:c8:ec:f3:35:84:eb:06:
80:90:d1:7d:f7:0a:1f:07:18:01:d5:88:c2:c2:10:
ec:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:76:8D:BF:CF:5F:97:66:3E:27:0E:AE:AC:C2:B9:89:32:89:F0:81
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/9HaNv89fl2Y-Jw6urMK5iTKJ8IE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.117.0/24
91.221.233.0/24
109.107.132.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ab:f2:be:89:1c:1c:84:3d:a3:71:67:4e:df:8e:25:a6:f2:
0a:ad:05:20:9c:a6:5c:97:7e:e5:41:6a:31:65:94:51:2a:b1:
9d:57:78:18:71:54:ab:54:40:15:e1:82:94:07:65:a2:0e:70:
af:4a:a2:a2:3d:a8:3b:30:3a:6a:d6:d5:75:76:9c:0d:d6:50:
5e:c4:70:67:56:25:4e:59:eb:b7:a9:91:6f:85:71:8a:11:d1:
22:6e:4b:64:9a:fc:43:13:88:27:b5:f7:6b:65:56:bd:52:ae:
06:5e:2d:c5:b7:33:3c:a3:74:c6:d4:b0:77:5c:4c:0b:22:67:
73:b2:f9:35:38:b7:ed:fa:4c:2f:2e:eb:7c:2a:03:7f:08:e9:
53:c3:08:44:86:d6:2b:f4:31:06:9e:21:bc:7c:cf:6e:f0:8d:
18:b1:6d:e6:a8:7e:32:c4:cb:b2:d4:40:fe:f1:dc:f5:a3:c2:
13:7b:90:2e:09:0a:1d:b4:87:ce:9e:df:68:60:42:d0:3d:e9:
4c:0a:70:5b:e3:63:a9:10:fa:fd:ae:ed:9a:f3:40:e8:50:e4:
3d:46:d3:75:7b:64:90:31:4e:06:e8:48:fc:44:61:53:d8:63:
14:65:58:a0:ea:16:dc:31:9d:43:f0:19:93:74:cb:e5:ee:9c:
e8:c0:0b:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org