Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/_0WLgQVYqlOvQkUT2GaCRkE7jm4.roa
File: _0WLgQVYqlOvQkUT2GaCRkE7jm4.roa (raw, json)
Hash identifier: K6/TDvW1TthxMAAJRFw60CMs++5udk2K3wGQff6golI=
Subject key identifier: FF:45:8B:81:05:58:AA:53:AF:42:45:13:D8:66:82:46:41:3B:8E:6E
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 03F49370
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/_0WLgQVYqlOvQkUT2GaCRkE7jm4.roa
Signing time: Thu 14 Apr 2022 06:12:56 +0000
ROA not before: Thu 14 Apr 2022 06:12:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.238.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66360176 (0x3f49370)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Apr 14 06:12:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff458b810558aa53af424513d8668246413b8e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:83:c9:f7:cb:2f:4f:67:ca:42:ce:ba:a4:48:
5b:38:13:a0:a1:59:9f:ad:48:14:21:df:30:cb:2a:
37:90:02:70:1e:fb:cc:13:d8:d7:b7:47:5c:43:cd:
c8:bc:94:f3:25:a8:af:29:82:7b:21:e4:2f:aa:e0:
77:bc:3b:3a:ef:08:3f:cf:4f:be:ae:00:f6:f3:54:
96:50:ae:06:ad:1d:f7:81:30:5b:62:4c:13:30:df:
23:87:3a:6b:9a:8a:b0:63:56:e2:98:74:13:13:f2:
59:e4:c0:b4:84:aa:f0:a7:05:8b:1a:8e:54:29:37:
b0:ad:b0:d0:c6:fb:e4:19:0e:9f:b7:fd:c7:49:2b:
65:cb:b1:05:10:66:a7:76:65:6d:25:0d:8e:e1:c2:
26:45:b2:c0:d2:10:49:2b:80:0a:4a:60:8e:89:30:
34:e1:fd:dd:60:10:64:09:c7:09:db:fc:29:c2:be:
49:68:36:63:63:68:91:06:fc:a4:7b:a1:58:87:a2:
a3:5c:2a:fc:d7:e6:f6:a8:79:65:42:9f:cf:a0:6d:
8f:10:7c:f9:c0:70:09:c4:0c:9b:90:e1:2d:f3:b6:
05:47:21:c3:08:64:33:f7:cb:96:74:a9:be:d8:58:
8e:59:1a:c1:85:c5:c0:23:85:eb:fa:50:bc:a0:79:
37:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:45:8B:81:05:58:AA:53:AF:42:45:13:D8:66:82:46:41:3B:8E:6E
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/_0WLgQVYqlOvQkUT2GaCRkE7jm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.213.0/24
Signature Algorithm: sha256WithRSAEncryption
78:62:93:46:cc:66:e1:af:c7:b0:10:79:ef:ae:97:ad:a6:ca:
6d:58:0d:14:58:df:a3:ba:89:26:03:e9:0c:b4:7b:41:28:fd:
bd:fc:02:4e:ae:56:e3:0c:59:95:e0:67:4b:21:a9:bb:49:86:
36:92:c8:4d:c8:be:20:53:1c:91:20:71:47:76:62:9d:72:75:
90:5b:fe:36:5b:63:94:1f:7a:cd:8a:16:8d:f3:2d:de:e9:0c:
bb:20:cf:78:87:cf:4a:26:7b:36:d2:45:82:33:85:be:7a:82:
08:ad:92:17:00:09:f6:19:c4:f6:20:5e:cb:b9:e2:80:3f:ed:
ed:4b:fb:28:3f:2f:8f:4b:53:30:52:e2:5c:89:49:ba:f2:3d:
d9:05:a3:0d:91:30:0e:fc:ec:d3:db:72:aa:fe:55:16:96:2a:
f1:2d:7c:ec:fd:6f:42:ec:33:8a:e6:33:89:f2:19:0a:6a:07:
60:cb:41:24:9e:b9:84:45:63:df:26:46:19:c5:54:3d:9c:31:
66:25:60:a6:a0:1a:ae:c4:4f:01:3a:02:21:61:52:04:68:35:
1f:25:c3:1e:f7:6a:e4:28:54:d7:e8:a7:a4:30:36:32:f6:28:
ac:27:04:4f:4b:68:52:c8:c9:c6:48:14:e2:37:a9:e3:9b:ad:
dc:5f:fb:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org