Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/6cddca-fad7-4494-bc14-00abc471f9c1/1/7tbgFapqO-NZEgcecY20Y3VgDVY.roa
File: 7tbgFapqO-NZEgcecY20Y3VgDVY.roa (raw, json)
Hash identifier: NAzLVGzCp4isPq8MCWsi/aB14EwV9yKW3g5Oc4iqRPw=
Subject key identifier: EE:D6:E0:15:AA:6A:3B:E3:59:12:07:1E:71:8D:B4:63:75:60:0D:56
Certificate issuer: /CN=1143dd85fa01ebec01ee331a13179e8a33d9022f
Certificate serial: 12A79C0A
Authority key identifier: 11:43:DD:85:FA:01:EB:EC:01:EE:33:1A:13:17:9E:8A:33:D9:02:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EUPdhfoB6-wB7jMaExeeijPZAi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/6cddca-fad7-4494-bc14-00abc471f9c1/1/7tbgFapqO-NZEgcecY20Y3VgDVY.roa
Signing time: Sat 01 Jan 2022 05:03:39 +0000
ROA not before: Sat 01 Jan 2022 05:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51914
IP address blocks: 91.221.129.0/24 maxlen: 24
91.221.128.0/24 maxlen: 24
91.221.128.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 312974346 (0x12a79c0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1143dd85fa01ebec01ee331a13179e8a33d9022f
Validity
Not Before: Jan 1 05:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eed6e015aa6a3be35912071e718db46375600d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fe:09:e2:66:5a:d9:6b:13:bf:f5:7f:ae:3b:
3c:d2:5f:25:4e:3d:7e:89:cc:63:21:fd:c0:8b:b7:
4a:33:cc:84:81:8f:a6:f1:40:b3:57:c7:c1:26:21:
54:ee:79:e2:08:74:35:fa:62:e5:8b:50:e1:4d:ae:
3c:47:58:f6:f3:43:4c:fd:f0:c8:4a:7d:40:2e:36:
d6:2b:00:19:4b:61:4c:8b:2c:0f:76:af:1b:57:27:
cd:9e:83:bd:51:16:bc:16:f1:cb:50:06:f0:ed:85:
29:e4:45:00:f3:a9:0b:7f:75:26:71:a4:3a:a9:f3:
47:f1:9e:59:71:c8:c2:0b:60:9a:24:39:52:14:de:
12:50:c8:b5:27:3e:2d:60:cc:4c:2a:e0:08:1b:0b:
12:b8:54:56:b2:c3:ed:16:86:fa:0c:4c:f4:c4:aa:
5f:56:52:82:cf:2e:49:81:fa:d9:06:1e:50:3a:7d:
94:20:ac:d8:f1:cd:b0:2b:a7:a1:0e:46:1d:7e:ee:
16:57:53:80:c9:36:93:ad:a6:bf:dd:62:f6:e4:a1:
06:0b:7e:1c:5f:15:04:19:31:d8:c6:75:bc:e2:36:
4d:64:f5:29:fd:aa:0c:98:f8:ea:ca:9f:0b:a1:6c:
83:30:ad:3c:d0:e1:ed:5f:58:7a:81:27:b5:0c:ab:
32:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:D6:E0:15:AA:6A:3B:E3:59:12:07:1E:71:8D:B4:63:75:60:0D:56
X509v3 Authority Key Identifier:
keyid:11:43:DD:85:FA:01:EB:EC:01:EE:33:1A:13:17:9E:8A:33:D9:02:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EUPdhfoB6-wB7jMaExeeijPZAi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6cddca-fad7-4494-bc14-00abc471f9c1/1/7tbgFapqO-NZEgcecY20Y3VgDVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6cddca-fad7-4494-bc14-00abc471f9c1/1/EUPdhfoB6-wB7jMaExeeijPZAi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.128.0/23
Signature Algorithm: sha256WithRSAEncryption
34:f4:6d:9e:7b:4a:32:67:3e:46:3f:f7:ce:e1:89:ec:76:3b:
57:d3:d1:86:ed:80:64:d9:1a:82:53:d9:ac:a5:b8:65:a2:53:
86:db:b7:2e:85:d2:c1:ca:df:22:08:da:67:51:16:10:27:4e:
d7:e5:8a:b2:88:a6:b4:87:08:d2:93:ab:2e:d0:d8:58:34:43:
fe:3d:28:30:45:df:d7:86:1e:c8:8e:9b:49:4f:e0:80:43:19:
82:d6:9d:ac:97:2b:e8:bb:6b:3f:36:eb:bb:85:a9:7f:ce:53:
b3:38:7b:f5:a2:5f:8c:a3:9c:0d:ce:15:fa:0b:19:ff:e1:71:
5e:77:01:a1:ac:06:29:f7:ae:46:c7:51:2b:18:cf:b3:51:74:
fe:50:68:e5:6e:84:95:b6:1c:47:ee:2f:d0:c3:5b:69:bd:55:
bb:2d:fa:ac:31:2a:f9:69:44:d9:67:19:5e:f8:42:b4:0d:c7:
55:ac:17:f5:99:d3:4a:4b:78:9b:a8:86:3e:49:94:bd:9e:b0:
ec:e1:f0:79:e1:6d:84:a6:d8:43:b5:af:94:6b:ac:33:fc:27:
d2:89:58:3b:6d:28:d1:e0:99:a7:28:a8:1c:b8:4c:a5:c6:fb:
73:e8:37:16:16:d2:74:c1:4a:0e:e6:47:1f:f4:85:e4:b9:bc:
70:6d:cf:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:34 2023 by rpki-client on console-fra.rpki-client.org