Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/d1f8e9-d166-41bf-b96d-f17b0fddd0e0/1/7AH-yNOJsCke-Zbxsr9ckVlUBBM.roa
File: 7AH-yNOJsCke-Zbxsr9ckVlUBBM.roa (raw, json)
Hash identifier: 9GknRWYhzpondjwucZ64lIQKIdNG971P7G6QiJ/mhug=
Subject key identifier: EC:01:FE:C8:D3:89:B0:29:1E:F9:96:F1:B2:BF:5C:91:59:54:04:13
Certificate issuer: /CN=a4cafcb4612d1d6571920f4e486056981036a620
Certificate serial: 102E0471
Authority key identifier: A4:CA:FC:B4:61:2D:1D:65:71:92:0F:4E:48:60:56:98:10:36:A6:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pMr8tGEtHWVxkg9OSGBWmBA2piA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/d1f8e9-d166-41bf-b96d-f17b0fddd0e0/1/7AH-yNOJsCke-Zbxsr9ckVlUBBM.roa
Signing time: Sat 01 Jan 2022 14:04:09 +0000
ROA not before: Sat 01 Jan 2022 14:04:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39002
IP address blocks: 91.208.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271451249 (0x102e0471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4cafcb4612d1d6571920f4e486056981036a620
Validity
Not Before: Jan 1 14:04:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec01fec8d389b0291ef996f1b2bf5c9159540413
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:70:18:8f:0e:e7:3a:84:ac:ff:03:35:62:9f:
33:ba:2a:f3:85:08:c3:8b:41:9a:26:93:4d:52:69:
b8:d5:6f:de:4e:4c:5a:05:32:38:23:d9:12:d7:ca:
db:19:9d:81:04:34:3c:b8:c1:43:88:c3:70:a1:fb:
e4:00:61:1c:34:d1:ec:25:cf:d9:ea:75:39:38:7d:
40:96:1a:ee:be:05:74:17:a8:85:6f:3d:23:5a:e0:
4b:b1:8c:52:5b:6a:1f:ed:73:85:92:ac:1b:92:8f:
86:54:b6:c2:8d:a1:e8:5f:fe:b4:1d:14:57:6c:a9:
65:22:0d:dc:c5:c6:31:b7:31:68:ad:4a:53:4a:30:
84:b0:f1:3b:58:17:5e:c5:64:70:c0:93:de:28:ac:
a4:3c:89:ff:e3:bb:84:f2:17:28:cd:0b:9b:36:e6:
dd:a7:b5:7e:fe:7d:c3:86:c0:68:92:27:bf:a0:55:
9c:83:5b:3b:b8:25:34:29:3d:5e:7a:42:e6:89:a1:
58:64:75:b8:cd:25:17:e4:09:55:14:9c:25:ea:0a:
30:53:46:f2:7f:20:29:29:11:db:3b:36:13:0b:39:
c3:f8:5d:38:b1:41:da:d0:c9:e0:06:a2:73:99:8b:
b6:4c:8c:26:c6:8a:af:33:3c:1e:23:b6:13:fe:aa:
3f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:01:FE:C8:D3:89:B0:29:1E:F9:96:F1:B2:BF:5C:91:59:54:04:13
X509v3 Authority Key Identifier:
keyid:A4:CA:FC:B4:61:2D:1D:65:71:92:0F:4E:48:60:56:98:10:36:A6:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pMr8tGEtHWVxkg9OSGBWmBA2piA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d1f8e9-d166-41bf-b96d-f17b0fddd0e0/1/7AH-yNOJsCke-Zbxsr9ckVlUBBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d1f8e9-d166-41bf-b96d-f17b0fddd0e0/1/pMr8tGEtHWVxkg9OSGBWmBA2piA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.179.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:19:e8:fd:b1:0a:d5:95:8d:4c:64:8c:78:84:a4:a4:19:0f:
4c:7e:3f:9f:22:17:c6:8b:4b:2a:6d:85:8b:ea:08:ba:0f:24:
84:d0:0d:3d:a6:6e:25:f8:12:e2:fd:6f:4b:e9:b8:a5:99:43:
fc:2c:80:7e:b0:c1:c5:3c:e2:8d:5a:73:92:46:f5:0c:85:08:
4b:47:8a:2f:50:30:e2:07:39:17:0f:bf:f4:53:aa:61:ed:7a:
8f:b3:65:f9:c8:a3:a9:e4:4f:09:ae:cd:55:cb:fe:71:68:dd:
5b:7e:06:31:9b:4d:cf:1e:28:42:24:2a:69:58:22:38:31:ef:
42:d0:7a:ac:a1:2c:6c:77:6d:27:4b:1d:6f:3a:0d:ca:21:d4:
b6:8c:50:b7:40:5c:c2:ba:2e:4e:08:bc:02:f4:7c:af:eb:50:
99:5f:74:cd:3a:8f:0d:90:d7:b0:89:86:6a:da:f2:fe:91:79:
aa:4e:6e:e7:47:2c:b7:aa:9d:35:0d:bf:47:c4:0c:6d:4a:45:
f5:57:1f:41:b1:06:07:93:23:40:c3:fe:42:47:cb:6c:4e:63:
6b:94:5b:d5:9e:a2:0b:c6:d5:25:22:32:ce:5e:cb:35:08:f4:
0f:9a:d2:2d:90:e2:f7:05:c2:5d:e9:24:9e:41:43:6e:a1:a4:
cf:c2:7b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-fra.rpki-client.org