Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/dQwhof5xv_ebMN6bCajCpmyWyZQ.roa
File: dQwhof5xv_ebMN6bCajCpmyWyZQ.roa (raw, json)
Hash identifier: SfMjXLf3fJQwqJQhbfF616V3KnwqfEz6yFYRcrxGy6E=
Subject key identifier: 75:0C:21:A1:FE:71:BF:F7:9B:30:DE:9B:09:A8:C2:A6:6C:96:C9:94
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 1388A845
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/dQwhof5xv_ebMN6bCajCpmyWyZQ.roa
Signing time: Sat 01 Jan 2022 05:56:18 +0000
ROA not before: Sat 01 Jan 2022 05:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202722
IP address blocks: 91.242.80.0/24 maxlen: 24
91.242.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327723077 (0x1388a845)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=750c21a1fe71bff79b30de9b09a8c2a66c96c994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8f:29:4c:6e:4f:fe:c1:5e:4e:f5:ed:32:b8:
cd:7f:db:b7:0f:8e:17:3c:c5:4f:ad:b2:27:08:49:
2a:76:61:9b:b4:d5:72:bc:49:e0:21:85:1e:b0:6e:
6d:f6:ff:73:f4:e4:d0:78:74:fb:00:a2:40:29:ea:
22:e0:b5:57:5c:58:ec:e1:74:81:9e:a5:b4:b6:bf:
86:3f:5c:62:ef:38:c0:de:3b:a8:c5:88:2b:ed:f1:
ff:ba:b3:0e:28:59:a5:3f:08:21:9f:ba:af:09:78:
34:b2:25:28:94:b8:2a:1e:8d:06:f0:7a:f3:67:7f:
ef:34:5d:f8:dd:dc:8a:78:2b:fa:da:f3:7a:c1:a6:
60:e6:00:76:f7:68:eb:05:b4:b1:19:16:62:d8:10:
91:35:d4:16:85:85:19:4f:17:41:8f:d6:f0:46:fb:
54:e6:53:5a:34:32:b2:20:9e:2e:40:d9:de:3b:86:
55:9a:2c:11:6c:56:0d:9c:68:be:c5:41:71:eb:01:
0e:00:2f:5b:29:ff:2b:eb:59:af:5d:12:4c:cd:55:
a7:c0:e2:8e:2d:36:8f:04:f2:e1:9e:12:31:54:e9:
df:69:0e:9d:4f:92:55:e9:b1:6e:4b:b1:f7:5a:b4:
f9:66:43:fc:c3:fb:8e:95:ad:60:81:c6:a3:0f:e0:
8c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0C:21:A1:FE:71:BF:F7:9B:30:DE:9B:09:A8:C2:A6:6C:96:C9:94
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/dQwhof5xv_ebMN6bCajCpmyWyZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.80.0/24
91.242.99.0/24
Signature Algorithm: sha256WithRSAEncryption
35:62:dc:df:aa:ee:d4:98:1d:96:a7:47:fb:32:f6:c7:cd:64:
11:cb:bd:3b:8f:0b:c6:3f:a5:45:42:b1:42:fc:96:aa:fb:d6:
1a:da:d1:b4:a4:74:64:55:79:ff:56:f6:c1:57:97:7a:07:ae:
cf:d1:f9:63:c9:a1:bd:e4:f2:16:c1:9e:1d:34:bd:c8:89:d0:
c0:9c:6b:fc:98:d3:89:37:62:9b:8d:28:7e:88:c1:ff:fe:de:
e5:35:c8:3d:cc:1b:16:07:6c:ce:98:09:de:c1:97:3d:f3:27:
55:24:2f:7e:c1:3e:f1:2e:b8:7f:0a:01:77:82:3b:dc:8d:a8:
e4:b9:fd:e3:3e:82:60:7c:98:b0:7f:06:a0:6f:48:9b:49:ef:
e6:c0:95:75:c3:a1:91:c4:2c:25:d4:6a:04:52:f0:18:83:49:
de:20:5e:35:09:0a:4e:03:56:32:13:f1:31:b6:86:8b:e9:f2:
0c:ea:1e:25:ff:4d:29:b4:0e:76:a9:8c:fb:8c:b1:36:f8:fe:
46:92:24:3a:6c:93:3b:46:e0:ab:63:5f:e6:6d:0c:fe:94:9f:
68:47:38:e1:da:dc:30:94:d4:e2:f9:80:cc:cc:f6:42:7d:43:
92:d2:d9:83:42:43:cd:8d:f6:2c:66:a9:8f:64:be:8f:cb:e4:
30:22:9f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-fra.rpki-client.org