Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/77f4f0-b833-47b7-a3c7-ef710ec7b2fe/1/u5-XquC4OfYzcVJa4fBzE1h_DrY.roa
File: u5-XquC4OfYzcVJa4fBzE1h_DrY.roa (raw, json)
Hash identifier: hGArNtNQHfv9rvBoAgzAEtBkOnDCRanmMA+s/UkYM80=
Subject key identifier: BB:9F:97:AA:E0:B8:39:F6:33:71:52:5A:E1:F0:73:13:58:7F:0E:B6
Certificate issuer: /CN=f4f7ab4587e69022e5e2bc24107b501d031c3720
Certificate serial: 08E322E0
Authority key identifier: F4:F7:AB:45:87:E6:90:22:E5:E2:BC:24:10:7B:50:1D:03:1C:37:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9PerRYfmkCLl4rwkEHtQHQMcNyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/77f4f0-b833-47b7-a3c7-ef710ec7b2fe/1/u5-XquC4OfYzcVJa4fBzE1h_DrY.roa
Signing time: Mon 28 Mar 2022 12:54:11 +0000
ROA not before: Mon 28 Mar 2022 12:54:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209738
IP address blocks: 91.226.86.0/23 maxlen: 23
91.226.86.0/24 maxlen: 24
91.226.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149103328 (0x8e322e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4f7ab4587e69022e5e2bc24107b501d031c3720
Validity
Not Before: Mar 28 12:54:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb9f97aae0b839f63371525ae1f07313587f0eb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e3:6b:be:47:a2:14:aa:f7:dc:88:95:dc:19:
35:ee:bb:0e:40:74:13:34:fb:1f:db:d8:64:75:f0:
b5:7d:7d:3f:5b:39:ed:31:b4:9c:7a:3c:58:79:63:
b1:4e:79:6b:40:bc:e7:3b:e7:f3:f7:dc:2f:20:7c:
f2:8c:90:79:a7:6e:f1:c1:0e:ad:51:44:6c:88:49:
0b:cb:b9:8e:45:79:07:ab:68:41:29:36:ab:95:91:
d1:b4:8f:b9:9c:76:b3:ef:0d:cc:8d:61:bb:09:91:
b9:bb:df:87:c9:c3:7f:c3:f6:ce:9f:25:51:93:e5:
2d:7a:1f:5f:45:14:0e:98:88:27:2c:7a:1e:c8:8d:
34:57:63:47:d7:30:45:65:2b:7b:a7:83:16:03:66:
4c:d8:34:96:f6:c3:1e:4a:dc:d8:30:2b:4b:4a:e6:
28:74:02:7c:38:00:6b:8d:8f:cb:de:3f:5b:1a:43:
e5:01:70:8f:8d:a7:aa:1e:32:36:96:bb:69:83:ae:
dd:63:d9:81:ea:e1:59:5f:62:ea:25:82:21:b8:2f:
da:95:16:71:6d:25:ea:76:07:29:07:2a:ba:f5:57:
3a:f3:39:79:95:03:b6:07:e6:07:f3:96:f3:26:f3:
c7:99:37:06:9a:dc:49:74:c1:d5:73:01:46:ef:26:
97:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:9F:97:AA:E0:B8:39:F6:33:71:52:5A:E1:F0:73:13:58:7F:0E:B6
X509v3 Authority Key Identifier:
keyid:F4:F7:AB:45:87:E6:90:22:E5:E2:BC:24:10:7B:50:1D:03:1C:37:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9PerRYfmkCLl4rwkEHtQHQMcNyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/77f4f0-b833-47b7-a3c7-ef710ec7b2fe/1/u5-XquC4OfYzcVJa4fBzE1h_DrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/77f4f0-b833-47b7-a3c7-ef710ec7b2fe/1/9PerRYfmkCLl4rwkEHtQHQMcNyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.86.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:29:47:fb:ec:c8:df:4e:1f:a1:4b:39:55:50:8a:34:e4:9d:
07:9c:89:13:84:02:f4:89:0a:d4:68:a3:bd:dc:43:68:ec:10:
60:38:4d:d7:21:85:6e:68:71:7d:1f:b7:9a:5c:20:77:95:cb:
b5:c8:17:92:41:39:3b:e3:fc:8a:47:0e:67:c7:35:c9:8e:4b:
34:3b:27:d2:17:29:d3:40:e0:45:cc:aa:ec:8f:d2:fb:43:c5:
ce:8f:3f:89:85:a5:f2:fa:3d:f1:aa:81:c8:c5:dd:ce:9c:4b:
39:1a:78:b1:45:18:9c:1b:97:39:75:0e:8c:c1:48:37:dc:00:
f9:bd:f7:fd:82:49:87:53:cf:4f:49:40:c0:d1:b0:fe:38:8a:
75:d8:2a:7d:12:7e:ba:a7:83:f7:bb:2e:d3:52:70:47:6c:73:
e1:ab:99:3f:04:e7:be:1e:95:bd:0c:75:9c:d0:3a:1a:7a:f2:
ce:93:7c:8c:15:4e:30:84:70:6b:3c:95:19:36:af:3c:5b:19:
bd:7a:78:2f:57:2f:11:85:7c:18:31:aa:06:59:ca:79:fc:a3:
0b:ab:27:c2:e0:c7:41:fb:8f:f5:84:1e:d2:2d:7e:7e:2d:77:
7a:ef:d8:45:c1:30:a5:70:c1:66:70:47:8a:67:09:00:d9:75:
82:fb:6d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:47 2023 by rpki-client on console-fra.rpki-client.org