Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/vL303GhIEpUZR1-Vw3a471MqWJo.roa
File: vL303GhIEpUZR1-Vw3a471MqWJo.roa (raw, json)
Hash identifier: /VnZCAHKyY+YMtQQfa2HQDTFMG4AHYwYMcCcv8XyZnM=
Subject key identifier: BC:BD:F4:DC:68:48:12:95:19:47:5F:95:C3:76:B8:EF:53:2A:58:9A
Certificate issuer: /CN=d275d7a8bac0477f5509dff11b9195ca60df87da
Certificate serial: 0814A080
Authority key identifier: D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/vL303GhIEpUZR1-Vw3a471MqWJo.roa
Signing time: Sat 01 Jan 2022 14:08:32 +0000
ROA not before: Sat 01 Jan 2022 14:08:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43342
IP address blocks: 91.135.179.0/24 maxlen: 24
91.135.178.0/23 maxlen: 23
91.135.178.0/24 maxlen: 24
91.135.181.0/24 maxlen: 24
91.135.180.0/24 maxlen: 24
91.135.180.0/22 maxlen: 23
91.135.186.0/24 maxlen: 24
91.135.185.0/24 maxlen: 24
91.135.184.0/22 maxlen: 23
91.135.184.0/24 maxlen: 24
91.135.183.0/24 maxlen: 24
91.135.182.0/24 maxlen: 24
91.135.187.0/24 maxlen: 24
91.135.191.0/24 maxlen: 24
91.135.190.0/24 maxlen: 24
91.135.190.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135569536 (0x814a080)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d275d7a8bac0477f5509dff11b9195ca60df87da
Validity
Not Before: Jan 1 14:08:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcbdf4dc6848129519475f95c376b8ef532a589a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7d:bc:42:c6:32:64:7c:b6:91:7e:e0:88:22:
47:9d:3f:cf:53:32:36:1e:3a:4a:06:ad:bb:2a:6f:
4e:95:1f:65:7a:63:0b:d2:48:90:7a:24:51:2f:67:
97:5b:02:58:55:d3:95:b4:d1:a1:fe:e7:8a:97:c7:
4c:9e:b2:6c:b9:0e:f7:c3:84:6a:2c:4f:f9:ea:cc:
ad:6c:40:35:f8:cc:a7:0a:08:f5:86:f2:85:c2:61:
1f:bd:cb:f7:20:2d:a8:5d:69:61:a2:da:36:fe:4e:
b2:93:29:54:b9:ad:65:b7:62:f7:f3:a1:65:ea:5b:
93:d2:9d:aa:2c:77:e6:72:fd:50:69:68:4b:cb:70:
f1:4e:79:9b:3a:6e:2c:74:be:cd:d9:fc:8a:3d:aa:
03:ca:be:17:8d:0b:8e:a8:9f:23:45:59:5e:9e:4c:
e1:57:5e:54:35:a0:91:e0:28:a7:df:7e:92:b3:55:
08:08:dd:69:98:70:5e:b0:ce:f7:22:95:0f:83:aa:
1a:6c:c1:27:e3:f6:9d:a4:5a:10:61:cc:c2:c8:22:
1e:53:4b:dc:58:44:35:17:79:52:cc:5c:1d:2c:74:
ec:04:71:e1:b3:c1:5b:e6:99:cb:17:72:1c:83:fe:
40:bc:38:27:fa:a4:fb:a3:4d:e0:2b:3c:d6:24:30:
81:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:BD:F4:DC:68:48:12:95:19:47:5F:95:C3:76:B8:EF:53:2A:58:9A
X509v3 Authority Key Identifier:
keyid:D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/vL303GhIEpUZR1-Vw3a471MqWJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.135.178.0-91.135.187.255
91.135.190.0/23
Signature Algorithm: sha256WithRSAEncryption
10:3d:ae:f9:6d:63:93:84:6c:83:60:f7:09:b5:3f:cc:c6:a8:
72:b3:b8:65:ac:fc:a9:4c:91:00:85:5b:6d:d2:df:f6:ed:ca:
12:db:ce:09:b3:d6:2f:50:7b:6f:ec:e5:f7:39:d5:6a:0b:c4:
e3:bf:ad:f7:4c:b3:75:a5:f1:87:a0:77:69:95:29:7e:25:87:
da:87:db:61:d3:62:4b:fc:ea:ff:ae:b3:36:db:d2:1d:4f:59:
62:ab:be:9e:25:bb:98:f5:ce:df:59:70:2e:57:57:17:7e:d8:
aa:ff:3d:2b:c8:e9:dd:8f:a1:9e:72:fe:2a:cc:7a:30:a0:4a:
9e:75:80:45:4b:e2:16:ba:f4:d2:09:6f:26:7e:da:0c:15:a6:
12:ec:9a:62:7c:72:db:1f:0d:49:a5:18:d0:8c:09:2b:e0:e8:
d5:9e:74:9f:03:fd:9e:67:4e:c0:10:a5:71:aa:a9:e0:88:f1:
4c:94:91:e9:57:44:3b:b2:45:38:c9:8c:82:4f:20:dc:cf:58:
3a:4d:2f:7d:a3:0a:83:b7:fc:4a:cd:bc:34:af:96:64:e1:44:
cf:0b:e5:4c:6c:fc:b1:dc:7d:fc:e3:fd:cb:dd:a8:bd:13:a3:
9d:5b:3b:c3:f3:08:ce:68:15:e0:1d:b4:96:7d:31:a4:5d:36:
b1:c2:c7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org