Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/9GRCG8n9UQbcYolwW7KF678G610.roa
File: 9GRCG8n9UQbcYolwW7KF678G610.roa (raw, json)
Hash identifier: umzH6ZzOn/zW+dDPbZbkCfxtb0JAcA06NxapDW8qxUc=
Subject key identifier: F4:64:42:1B:C9:FD:51:06:DC:62:89:70:5B:B2:85:EB:BF:06:EB:5D
Certificate issuer: /CN=de9461c211bf3551c5507c930b4204c6ec43b322
Certificate serial: 027476A4
Authority key identifier: DE:94:61:C2:11:BF:35:51:C5:50:7C:93:0B:42:04:C6:EC:43:B3:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pRhwhG_NVHFUHyTC0IExuxDsyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/9GRCG8n9UQbcYolwW7KF678G610.roa
Signing time: Fri 18 Mar 2022 03:11:36 +0000
ROA not before: Fri 18 Mar 2022 03:11:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 91.192.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41186980 (0x27476a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de9461c211bf3551c5507c930b4204c6ec43b322
Validity
Not Before: Mar 18 03:11:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f464421bc9fd5106dc6289705bb285ebbf06eb5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7e:c2:6b:f2:2f:ee:5c:59:22:e4:04:5a:a7:
15:91:ed:f9:35:ff:86:3a:55:fb:c8:c6:3c:5a:53:
29:32:18:4b:8e:14:ff:64:0a:ba:54:c2:a2:43:3c:
36:4b:ba:1f:a0:59:35:c3:43:b9:d3:00:39:32:a0:
d6:22:21:f9:39:5f:1b:3f:46:ef:90:bf:55:c7:3e:
bf:85:31:67:cb:8b:46:06:06:d1:02:22:4b:23:77:
c4:b7:78:44:1e:bd:15:55:12:dd:ee:3d:e0:c9:28:
78:f2:1d:e6:34:5b:e1:bb:1f:cd:c6:a3:00:a2:01:
0a:a4:60:ed:b9:8b:cf:e5:e1:a5:02:ae:9f:4f:c2:
8c:7c:42:7f:4f:cf:9e:7a:f2:41:9a:88:74:01:9c:
30:8c:49:fd:cb:48:53:31:35:70:78:8e:57:b4:1f:
42:91:cf:d0:54:7c:55:78:56:95:19:de:95:bf:02:
79:e6:08:b8:97:77:fa:b5:a9:70:89:61:0d:e1:28:
7c:98:c3:d9:8d:e3:e8:0f:26:4c:cc:5d:98:3d:af:
f2:69:22:6c:ae:61:4b:34:70:9d:4d:00:68:03:0d:
1f:e7:c0:c7:0d:19:19:f8:a2:52:06:61:3c:18:c5:
1f:8a:50:31:e8:80:f8:0c:d9:c8:3f:39:0d:44:a9:
99:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:64:42:1B:C9:FD:51:06:DC:62:89:70:5B:B2:85:EB:BF:06:EB:5D
X509v3 Authority Key Identifier:
keyid:DE:94:61:C2:11:BF:35:51:C5:50:7C:93:0B:42:04:C6:EC:43:B3:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pRhwhG_NVHFUHyTC0IExuxDsyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/9GRCG8n9UQbcYolwW7KF678G610.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/3pRhwhG_NVHFUHyTC0IExuxDsyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.107.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:bd:87:a4:80:5e:11:60:1f:0d:bf:83:19:95:50:86:43:08:
6c:ac:5d:1e:1a:a0:ff:7a:34:da:fe:31:61:7d:78:9b:79:b7:
be:5c:3d:4b:b9:36:ce:70:64:c8:fb:8f:83:8a:38:a5:c2:c9:
a7:8f:f2:7f:23:17:3e:e4:28:17:db:09:83:4b:0a:5f:2c:f7:
c6:02:b2:eb:50:32:b8:aa:c5:80:20:84:db:48:ad:10:f2:05:
7c:e6:5b:64:ef:09:53:93:53:5d:9f:dd:0a:b5:a6:29:c8:ab:
d2:2b:7e:39:29:b7:73:45:c2:85:1e:2e:7d:a4:ad:0d:2c:36:
4b:3a:91:bf:3d:d8:fa:25:46:96:29:34:f4:9e:89:51:c9:91:
00:03:db:52:af:dd:d4:24:47:7f:09:d0:da:50:d4:ac:f9:ec:
3c:a8:d2:a9:73:c4:d4:3b:e9:54:59:13:b7:53:7b:8d:d7:31:
6d:46:f0:80:79:08:73:76:2d:17:62:f1:bf:5d:1c:28:50:44:
4f:6f:36:cc:09:9b:02:9a:dc:80:f0:6e:b8:6d:9e:f6:86:8e:
e1:fd:63:64:8b:c4:4c:a8:14:bf:82:ca:a1:9b:6c:5e:8f:9c:
29:fc:ae:dc:eb:87:a3:77:b1:b3:21:4a:5c:51:4e:d3:ef:12:
14:95:fd:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:53 2023 by rpki-client on console-fra.rpki-client.org