Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/oY7IaIWOxC2RgIvS2lBuUI4_VvI.roa
File: oY7IaIWOxC2RgIvS2lBuUI4_VvI.roa (raw, json)
Hash identifier: 3mIzIDAh/YMGtZjUa5iXGLmOEirPo8Mn5doa/bGmlI0=
Subject key identifier: A1:8E:C8:68:85:8E:C4:2D:91:80:8B:D2:DA:50:6E:50:8E:3F:56:F2
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 38513B12
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/oY7IaIWOxC2RgIvS2lBuUI4_VvI.roa
Signing time: Sat 01 Jan 2022 10:00:49 +0000
ROA not before: Sat 01 Jan 2022 10:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 91.224.109.0/24 maxlen: 24
91.224.108.0/23 maxlen: 23
91.224.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 944847634 (0x38513b12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Jan 1 10:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a18ec868858ec42d91808bd2da506e508e3f56f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8d:fb:11:7e:08:82:55:b0:26:35:d8:a9:a8:
e7:c0:26:8c:cf:c1:69:42:16:b1:31:58:b0:60:cd:
ae:f9:c5:cf:64:ff:f2:9b:72:d5:e6:e6:9f:af:8f:
f8:f8:3b:ad:b0:7a:be:bb:2a:20:d5:e7:39:f4:54:
37:97:b4:ef:6f:8d:cd:41:66:c3:43:0a:21:b7:46:
87:3f:2d:c9:97:f8:4c:16:a0:73:a1:05:4f:35:e7:
75:f7:46:2a:5d:a3:81:d2:5d:9c:91:c0:3b:1b:ab:
4f:7e:53:65:bf:05:3b:9e:17:25:0c:22:7a:89:c3:
6e:6b:e5:06:6d:26:59:64:37:2d:d7:7d:d4:01:80:
8e:b0:af:54:27:f0:5a:c2:c3:33:9e:16:ff:a8:e2:
00:92:dc:92:a9:f4:b9:8b:a2:df:38:26:fd:aa:55:
aa:fa:bd:c4:6e:98:d5:78:76:27:bb:82:39:2e:46:
b9:ee:67:17:36:8b:88:29:81:a6:69:7e:ad:26:97:
f2:73:10:84:0d:e4:a3:87:ad:b2:83:8c:14:13:d2:
a0:48:96:de:e4:4d:d0:ea:c7:66:c6:af:ba:f6:3b:
bc:4b:05:bf:b0:1b:9d:ad:fe:88:a8:d2:03:34:5e:
3a:54:9d:9a:8e:ba:b4:fc:a8:fb:24:44:a9:3e:3a:
65:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:8E:C8:68:85:8E:C4:2D:91:80:8B:D2:DA:50:6E:50:8E:3F:56:F2
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/oY7IaIWOxC2RgIvS2lBuUI4_VvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.108.0/23
Signature Algorithm: sha256WithRSAEncryption
59:66:b9:ab:d8:0c:e2:da:da:aa:4e:cd:d1:d9:59:ac:fb:ad:
56:bc:7f:5e:f3:25:00:99:f9:54:f6:d9:36:6f:45:ab:77:c9:
d8:19:a9:f2:b8:45:7f:51:1d:de:94:fb:f5:bd:96:a3:e0:ca:
5e:34:53:7c:e2:ea:bb:04:da:0c:a1:f2:e5:9d:68:45:f6:03:
6a:3d:b4:10:d3:a8:c3:84:6e:c2:a7:5e:72:ed:01:32:64:49:
11:00:10:81:d8:de:2c:88:f8:79:47:23:6e:69:ab:16:87:17:
4d:0b:84:73:a6:e9:b4:95:28:6e:ed:d9:59:a3:71:95:b5:09:
9b:1f:f0:00:1b:e7:cb:b0:7e:02:48:33:fa:fc:26:55:2b:f7:
bc:50:0a:a6:4a:7f:31:76:ea:fb:74:09:a7:cf:21:cb:55:70:
e4:41:51:ad:46:e9:d3:8b:88:5c:d1:df:a0:a0:74:b1:6a:c2:
e2:e9:bc:c3:bf:3a:2a:7b:d4:ea:81:16:0b:7a:0f:8e:a5:3a:
71:7d:63:b1:fd:1f:4c:bd:67:eb:58:48:c4:a6:66:a3:c9:03:
b0:7b:c9:76:fd:37:9d:4d:81:ec:cd:4f:12:95:99:37:90:85:
14:f3:48:b3:f3:ed:b5:62:d8:da:6c:96:8d:a1:a9:99:84:9c:
28:66:f5:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:19 2024 by rpki-client on console-fra.rpki-client.org