Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/c7N3Z73RdDGtERpMdq6b6pO1-p4.roa
File: c7N3Z73RdDGtERpMdq6b6pO1-p4.roa (raw, json)
Hash identifier: 2SqJxLtB+izHrwKMurDFshXzntgEalAz4HtYus8wX9w=
Subject key identifier: 73:B3:77:67:BD:D1:74:31:AD:11:1A:4C:76:AE:9B:EA:93:B5:FA:9E
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 018405137B84BCC4264AD931339D1E735AD0
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/c7N3Z73RdDGtERpMdq6b6pO1-p4.roa
Signing time: Sun 23 Oct 2022 13:41:13 +0000
ROA not before: Sun 23 Oct 2022 13:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 91.217.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:05:13:7b:84:bc:c4:26:4a:d9:31:33:9d:1e:73:5a:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Oct 23 13:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73b37767bdd17431ad111a4c76ae9bea93b5fa9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e2:62:3a:0c:9a:e4:0c:7d:50:a1:92:c6:a1:
10:d5:4c:18:0d:7f:9e:4d:60:b8:d5:73:f4:43:4c:
26:bf:c4:e7:66:fb:cc:cd:9e:ab:54:b6:4c:1c:dc:
00:1c:9d:b3:0d:d0:97:be:df:16:00:e8:91:e4:9b:
ac:0f:bd:4b:4f:20:8b:f3:63:82:40:bc:74:4f:43:
f5:88:2f:23:d2:92:5f:bb:0d:cf:13:92:9f:16:a3:
37:a6:b1:1d:5e:61:24:80:1e:10:4a:71:9e:dd:7c:
c2:81:ac:46:11:2c:5e:22:5d:05:9b:25:4f:01:75:
e4:92:6c:c6:2f:b9:a6:55:8a:37:46:34:16:b7:62:
66:3e:8c:d2:6b:46:6b:a0:e1:bb:ed:22:9f:15:31:
c8:56:02:89:13:ea:0b:40:76:67:35:84:7d:7c:91:
eb:bb:9a:94:7e:c8:66:53:dc:c8:dd:8b:47:98:02:
d9:8b:d8:60:47:aa:69:41:d9:6b:af:9b:07:b7:5d:
03:85:c5:1c:ad:93:af:3b:d6:e5:6d:63:36:7d:dd:
02:7d:d8:df:8f:7e:89:ad:a6:31:57:20:2c:4c:3d:
8b:2f:94:ba:31:b7:34:db:69:e5:c1:51:ec:19:bb:
6b:00:07:2f:f6:39:f2:27:08:62:d0:ce:ba:2a:8c:
5b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B3:77:67:BD:D1:74:31:AD:11:1A:4C:76:AE:9B:EA:93:B5:FA:9E
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/c7N3Z73RdDGtERpMdq6b6pO1-p4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.162.0/24
Signature Algorithm: sha256WithRSAEncryption
54:48:fe:82:e8:70:5b:ad:d4:b1:8e:59:fd:1d:2b:cf:65:bd:
41:96:2b:c7:90:47:38:36:9a:aa:cd:0f:59:09:cd:02:6a:92:
3e:c2:7c:c6:64:d5:d3:c6:e6:d1:1a:a6:5a:51:27:a6:27:37:
ee:08:ea:9a:85:ac:96:95:3c:9b:ce:58:41:b3:83:40:b9:f3:
f6:d1:76:99:ac:5e:57:c2:d0:0c:da:87:11:c4:11:0c:5f:ac:
98:0e:9c:bf:4c:42:ed:95:aa:2c:9f:8a:ae:ed:e7:10:bb:e9:
5b:c6:92:f8:9a:7b:18:f7:04:65:46:c0:be:38:92:36:fb:a0:
3c:98:b5:dc:13:6b:7f:97:65:7e:3f:79:0c:b8:60:85:0e:da:
e9:02:64:5b:2c:82:17:24:4a:b1:47:d3:cd:87:ae:94:b9:75:
fe:8f:23:21:b9:fd:e4:d9:5c:4a:4d:8f:9c:0a:b9:05:8f:72:
c3:f1:83:3c:78:1d:c7:63:3e:25:36:95:89:db:a6:c9:b8:9e:
1b:7f:21:22:ae:f9:3d:ca:f3:39:e7:86:e1:2b:c8:20:9a:b7:
78:ae:40:82:97:a6:34:81:11:dd:ad:32:c1:ed:e0:75:da:3b:
ad:3c:c1:36:9e:a8:64:45:86:f2:14:d0:5d:38:6d:92:31:1a:
12:17:6f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org