Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/YbNVHnEzKIQDpdXdURpx1sSySbs.roa
File: YbNVHnEzKIQDpdXdURpx1sSySbs.roa (raw, json)
Hash identifier: OYcOdS8xBUAL21EG/ygaKmIgt1P3DQcrJFIK6cp1je0=
Subject key identifier: 61:B3:55:1E:71:33:28:84:03:A5:D5:DD:51:1A:71:D6:C4:B2:49:BB
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 01847AD6BD0B482778403254FDDF8ADAAF68
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/YbNVHnEzKIQDpdXdURpx1sSySbs.roa
Signing time: Tue 15 Nov 2022 10:30:04 +0000
ROA not before: Tue 15 Nov 2022 10:30:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211440
IP address blocks: 91.217.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:d6:bd:0b:48:27:78:40:32:54:fd:df:8a:da:af:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Nov 15 10:30:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=61b3551e7133288403a5d5dd511a71d6c4b249bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4f:4c:55:bd:f2:77:6c:88:8a:0a:5b:d1:11:
55:f2:e4:57:4a:a3:aa:fc:08:d7:b5:dd:f5:0a:c0:
9d:4e:c1:a0:0f:a0:bb:e6:b6:e4:f6:34:ab:53:d6:
ff:0d:c1:5d:b2:43:11:da:2b:df:03:c7:6e:77:cc:
aa:63:64:fe:aa:3d:8e:cf:31:71:61:4c:a1:c2:01:
4b:83:1e:04:31:21:98:13:f5:77:f6:58:eb:8c:ad:
6b:7d:1f:96:26:f1:23:08:e4:33:f8:67:90:b5:41:
6e:71:a2:c2:f7:06:2a:43:d3:3b:a0:c3:03:c5:47:
a6:11:78:1a:93:44:ff:30:00:67:2f:84:4a:dd:00:
26:10:dd:85:f0:ae:5a:0a:ce:d8:f7:45:f1:4a:06:
b5:bb:ac:cb:cc:1a:b5:34:1f:75:2e:a8:18:6d:bc:
0e:48:85:5c:cb:c2:4a:78:92:1d:71:32:e7:08:6c:
a7:b8:bb:53:f2:12:67:00:11:8e:53:8c:f5:be:93:
35:51:0e:f4:29:e1:24:00:e5:e8:5c:7e:6f:cc:97:
bb:a3:f0:c3:74:84:c0:86:22:4f:ac:6d:64:be:18:
c8:39:37:67:79:0e:31:0c:a1:f9:76:b0:e1:46:48:
7b:9a:c8:e1:45:cc:ac:d5:c2:04:9e:3a:71:85:02:
01:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B3:55:1E:71:33:28:84:03:A5:D5:DD:51:1A:71:D6:C4:B2:49:BB
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/YbNVHnEzKIQDpdXdURpx1sSySbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.167.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:18:6f:9f:04:39:9f:87:ca:68:5b:0d:8a:ad:b5:4c:0f:d3:
91:09:44:36:6c:7d:44:ac:61:ff:10:01:b5:89:cf:6e:f1:3a:
44:9c:cb:91:71:73:b9:6c:69:de:ed:01:1e:52:02:6f:cd:84:
10:40:79:9f:25:60:22:44:bc:cf:51:b7:d4:64:45:f2:c5:9f:
99:8a:a9:d9:23:46:63:f5:87:1a:29:5f:d6:04:26:0a:4c:32:
a9:4b:0e:78:32:f9:06:4f:25:42:f9:bb:8b:db:8f:09:72:80:
e9:c1:93:17:81:2b:b6:2b:de:a0:1a:c5:86:02:25:cd:8d:67:
33:96:39:44:de:48:79:7f:43:e6:b8:7c:88:d3:b4:f7:dd:52:
1f:6d:8b:be:f7:29:23:11:f5:6f:48:2b:82:36:d6:d8:0d:ec:
4e:60:60:dc:85:23:13:c2:87:b9:c7:5b:7f:45:3e:b1:0c:6d:
06:6c:4f:91:f9:33:23:4f:a1:f8:77:6e:ea:b0:eb:d1:b4:2b:
2b:c1:79:fc:1f:bc:cd:93:60:25:8b:28:29:b4:2b:1c:de:00:
7b:67:0f:85:a1:9f:d9:be:9d:66:52:1f:1c:0a:a4:f3:01:62:
4f:e5:ae:8f:e3:67:fd:61:89:4d:61:57:8a:ee:7a:29:25:57:
56:c4:8c:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org