Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/89afba-4fed-42ef-a751-f5ff9afc3266/1/7zBA9v1JoyFjc8p5XXzhNinlfdw.roa
File: 7zBA9v1JoyFjc8p5XXzhNinlfdw.roa (raw, json)
Hash identifier: vlaL5xwNec2SvSrkrn6jYmmM6QVsRggkVgtMmgXAGdQ=
Subject key identifier: EF:30:40:F6:FD:49:A3:21:63:73:CA:79:5D:7C:E1:36:29:E5:7D:DC
Certificate issuer: /CN=9a764d8d3ae725b45e0d4807f612ec3d1f2a3f4f
Certificate serial: 09A4A3E1
Authority key identifier: 9A:76:4D:8D:3A:E7:25:B4:5E:0D:48:07:F6:12:EC:3D:1F:2A:3F:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnZNjTrnJbReDUgH9hLsPR8qP08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/89afba-4fed-42ef-a751-f5ff9afc3266/1/7zBA9v1JoyFjc8p5XXzhNinlfdw.roa
Signing time: Sat 01 Jan 2022 07:57:21 +0000
ROA not before: Sat 01 Jan 2022 07:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41880
IP address blocks: 91.102.208.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161784801 (0x9a4a3e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a764d8d3ae725b45e0d4807f612ec3d1f2a3f4f
Validity
Not Before: Jan 1 07:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef3040f6fd49a3216373ca795d7ce13629e57ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:71:95:a5:29:0d:9f:96:80:d9:95:70:79:8e:
5f:c5:0b:27:96:c8:d4:29:02:85:75:a6:96:17:2c:
6b:8d:ac:b8:8b:38:44:44:47:ef:ff:fb:6e:56:c2:
14:4e:a8:fe:7c:50:37:45:8f:33:ef:b5:5d:bd:e5:
34:18:54:46:e1:60:cf:6f:3f:65:53:fc:de:15:c7:
76:0b:85:9f:d2:27:2f:be:5f:6d:47:6c:aa:75:e8:
27:d4:7f:a1:7f:ad:49:42:97:20:12:7b:1c:f2:90:
a3:08:2a:e2:68:3e:83:d5:7f:49:90:83:9c:97:39:
bb:48:12:11:f2:64:58:a0:bc:02:ff:49:00:df:be:
fe:8b:2f:a8:66:f3:91:5c:bf:af:49:97:9c:4c:74:
49:2c:1e:60:2f:78:bf:8e:c5:1a:4f:de:d7:d3:4a:
98:9f:8c:a9:66:fd:2e:2f:8c:31:48:ac:ea:9e:6d:
60:e0:38:45:3e:c0:3c:a5:31:41:fd:3b:c2:f8:e6:
d3:55:27:22:25:d5:49:55:80:39:0e:8f:23:52:e8:
3c:3b:54:30:1a:54:a5:41:e7:de:6c:77:41:5f:36:
7f:e2:4c:ca:02:bc:18:e1:0e:12:14:45:c3:8f:29:
29:1b:b1:9a:e3:0a:8b:ef:62:f3:b0:bf:fb:f4:0c:
f6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:30:40:F6:FD:49:A3:21:63:73:CA:79:5D:7C:E1:36:29:E5:7D:DC
X509v3 Authority Key Identifier:
keyid:9A:76:4D:8D:3A:E7:25:B4:5E:0D:48:07:F6:12:EC:3D:1F:2A:3F:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnZNjTrnJbReDUgH9hLsPR8qP08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/89afba-4fed-42ef-a751-f5ff9afc3266/1/7zBA9v1JoyFjc8p5XXzhNinlfdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/89afba-4fed-42ef-a751-f5ff9afc3266/1/mnZNjTrnJbReDUgH9hLsPR8qP08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.208.0/21
Signature Algorithm: sha256WithRSAEncryption
9b:63:ef:3e:23:19:c5:3f:2c:a7:7d:b1:56:40:b4:55:fa:5b:
94:73:2a:41:d3:b7:57:70:81:92:c9:6c:69:55:29:d1:61:6f:
ba:c4:b1:ba:f1:6a:84:d4:d3:4d:58:c8:d2:2b:7e:e3:7b:8e:
2c:2b:bd:1c:22:41:99:ca:2a:20:43:8f:6d:91:7f:d6:a2:1d:
44:61:2a:6c:ed:19:10:44:3a:e6:1f:d6:15:da:35:c6:35:24:
ea:5f:54:97:e4:b3:5c:eb:db:c0:b5:a1:bb:84:3c:83:4e:08:
c9:bc:9b:1d:61:08:a1:41:b4:16:d1:2b:b6:d4:a7:9a:ec:45:
c8:0f:21:8b:4b:0c:0c:9b:2c:bd:2a:76:52:71:d5:bb:ed:63:
67:6d:97:ff:e8:e6:3f:2e:15:89:90:a2:00:5b:80:5d:1f:c9:
60:cb:19:97:e2:9d:14:ae:91:37:38:47:8d:5b:d1:18:98:4f:
c9:94:01:4e:2d:b5:5b:3a:80:84:40:72:b1:4c:41:64:23:ce:
89:0f:ef:50:7a:86:d1:a8:b4:6e:db:fd:19:7f:e3:39:9f:78:
32:41:70:0b:30:c8:db:ad:d7:79:5a:cc:8d:2c:4f:c8:16:3d:
94:e5:5a:8f:f2:d2:55:25:95:43:8b:fb:ce:c8:39:0a:1d:aa:
5b:3d:47:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:46 2024 by rpki-client on console-ams.rpki-client.org