Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/a_jlbK0ocUXfz_7YpzJ45Hr_O3g.roa
File: a_jlbK0ocUXfz_7YpzJ45Hr_O3g.roa (raw, json)
Hash identifier: be8sQPIU+nJGvWObl8SeaEWAO+9mTYQjUW9pPWhKMpA=
Subject key identifier: 6B:F8:E5:6C:AD:28:71:45:DF:CF:FE:D8:A7:32:78:E4:7A:FF:3B:78
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 01833C5D15FBCE1D4AF56844C7792BA96519
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/a_jlbK0ocUXfz_7YpzJ45Hr_O3g.roa
Signing time: Wed 14 Sep 2022 14:17:56 +0000
ROA not before: Wed 14 Sep 2022 14:17:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 91.217.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:3c:5d:15:fb:ce:1d:4a:f5:68:44:c7:79:2b:a9:65:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Sep 14 14:17:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bf8e56cad287145dfcffed8a73278e47aff3b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7b:eb:67:90:86:9b:99:73:ad:1e:95:25:6b:
da:cb:4e:df:5c:e2:93:78:d0:14:a4:b4:87:9a:8c:
89:1d:89:92:71:5b:c2:a8:7d:1d:6f:c9:57:83:b9:
71:a7:60:18:1c:1f:54:7f:8b:29:c2:b7:85:61:09:
e4:7a:83:62:94:ac:9b:e0:56:f5:42:ea:d0:9a:4e:
0e:59:63:4a:0b:5c:c5:58:1a:49:a2:43:3e:20:22:
d7:9d:90:e3:45:68:a5:9f:0a:1c:78:55:3c:10:1d:
10:01:e7:c5:ee:6e:98:49:08:1b:a6:45:9d:e8:84:
ab:2b:a7:f6:43:2a:af:1d:4c:ff:50:fb:22:b2:60:
47:4f:aa:e7:ba:75:4f:f4:a8:32:30:f9:81:6a:2f:
08:ac:7c:58:27:b8:4e:76:7f:e6:8a:4a:41:28:f1:
2a:9b:23:aa:83:0d:62:3a:b3:e0:3f:ed:aa:cf:65:
53:36:b8:e9:6e:0d:e1:34:2a:7b:8d:a4:c6:87:90:
11:86:e0:54:89:03:87:07:d5:78:74:b3:3c:20:e4:
9d:d7:1b:6e:47:d1:61:2b:fa:06:b5:9e:a4:55:44:
de:40:e7:1d:79:2b:89:f6:3e:83:b5:41:53:3e:a5:
1e:20:72:f6:5b:d8:16:55:34:95:3c:c6:2a:32:e0:
5a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F8:E5:6C:AD:28:71:45:DF:CF:FE:D8:A7:32:78:E4:7A:FF:3B:78
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/a_jlbK0ocUXfz_7YpzJ45Hr_O3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.167.0/24
Signature Algorithm: sha256WithRSAEncryption
93:6a:d2:f8:ac:f9:7d:0c:28:95:33:bc:92:2a:aa:fc:35:4f:
58:89:49:02:a1:ba:b7:61:c1:68:a7:a1:d4:9b:1f:ad:e5:23:
c1:6b:ca:f7:d2:92:a6:cd:69:8e:93:72:9f:ce:af:f9:86:a3:
c7:73:ca:cd:55:9a:5b:69:b3:04:e0:08:41:f3:51:f2:77:a3:
5a:cb:22:a2:46:9c:a6:24:d5:64:86:eb:c5:d4:d0:2a:2e:1b:
78:7e:19:a4:19:be:83:8f:b4:3b:a2:2f:41:21:c7:a3:0d:5f:
cd:d1:2b:68:2d:d3:35:af:a3:9f:ec:b5:a5:aa:76:69:1b:64:
f7:f9:78:c2:76:45:9b:5f:fa:53:e0:01:45:9d:ea:3d:f7:14:
ce:c2:bc:22:ae:ca:9f:60:1e:cf:45:64:be:8c:23:4d:aa:7b:
41:c3:78:bb:8b:72:fa:88:0b:14:18:44:0a:66:6c:91:44:5d:
d0:f0:e7:e7:e5:fe:8f:67:64:ee:a1:05:74:44:23:8c:08:79:
8e:38:e7:4e:4b:76:5a:35:8e:ad:15:d2:8f:50:a2:41:c4:92:
46:ee:7e:c0:4e:6b:e7:b3:4f:3c:19:ef:81:4e:a7:18:29:39:
5b:a1:5b:e7:62:d4:e5:00:49:14:36:8e:ff:84:ed:87:a8:13:
95:4c:54:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:20 2023 by rpki-client on console-ams.rpki-client.org