Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/cY06UnTRbbedpajZy19A8PW3LWI.roa
File: cY06UnTRbbedpajZy19A8PW3LWI.roa (raw, json)
Hash identifier: ywP5dGwTsjIKVdXcDwbHBxES3bBuROpbuM5TzX2/gZM=
Subject key identifier: 71:8D:3A:52:74:D1:6D:B7:9D:A5:A8:D9:CB:5F:40:F0:F5:B7:2D:62
Certificate issuer: /CN=c7983b3a9758fcbe78733d9155aed266c882a23c
Certificate serial: 018455CA936C15BDA0DFF7A8F51893838EEA
Authority key identifier: C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/cY06UnTRbbedpajZy19A8PW3LWI.roa
Signing time: Tue 08 Nov 2022 05:50:50 +0000
ROA not before: Tue 08 Nov 2022 05:50:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42084
IP address blocks: 176.107.40.0/21 maxlen: 21
91.189.0.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:55:ca:93:6c:15:bd:a0:df:f7:a8:f5:18:93:83:8e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7983b3a9758fcbe78733d9155aed266c882a23c
Validity
Not Before: Nov 8 05:50:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=718d3a5274d16db79da5a8d9cb5f40f0f5b72d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:62:a9:ca:fb:d2:36:16:d1:d5:cc:49:15:be:
0a:27:5e:44:84:eb:0c:b7:c3:8f:58:ea:6e:bc:af:
1a:b3:36:3f:ac:9d:48:62:90:1d:8f:7a:f1:0d:90:
86:08:26:24:a9:66:30:b5:b4:47:24:1c:08:71:f1:
78:01:a7:dc:28:02:25:d5:b8:7a:bb:b7:05:32:cc:
47:41:f9:05:ce:6a:ba:e0:1c:44:a4:c3:ea:b6:10:
71:7a:9b:31:69:ef:bf:47:40:4a:7b:5a:ca:ba:f4:
fd:a4:f8:86:f0:6d:e2:9c:f1:5c:ed:71:fb:60:2a:
1a:0f:37:9a:00:4f:10:57:d6:a1:bc:3b:18:bb:1d:
bc:79:50:d2:27:4a:e5:36:5d:b2:57:30:41:cc:43:
11:d2:44:fc:28:99:15:12:08:37:4a:aa:c5:37:91:
2a:be:f4:0b:8c:ac:10:99:a5:9e:be:6f:a7:bc:47:
fd:d9:2e:ff:99:f3:2a:13:49:49:ad:84:ce:72:82:
d9:75:b9:33:ab:1e:44:0d:de:c0:07:3f:c2:1f:07:
ab:c8:55:72:f7:e1:e6:45:02:8f:73:e0:9a:9d:51:
8a:47:cc:ef:8f:77:df:ee:3c:a8:3e:06:a4:83:d7:
80:1b:e8:af:65:51:09:6a:ca:a7:9a:76:96:ea:54:
29:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8D:3A:52:74:D1:6D:B7:9D:A5:A8:D9:CB:5F:40:F0:F5:B7:2D:62
X509v3 Authority Key Identifier:
keyid:C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/cY06UnTRbbedpajZy19A8PW3LWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/x5g7OpdY_L54cz2RVa7SZsiCojw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.189.0.0/21
176.107.40.0/21
Signature Algorithm: sha256WithRSAEncryption
5b:aa:c1:a2:e5:87:e4:d8:b9:1e:c5:47:d9:6f:07:20:e7:30:
0b:d0:79:96:7a:52:c9:bf:cd:49:35:80:39:f2:fe:02:65:a2:
01:e9:8b:e3:cb:3f:00:62:65:2f:10:0e:3b:57:1d:f3:7c:98:
bb:b9:c4:93:03:73:5a:a5:23:64:9b:1c:3b:82:be:5f:a2:ab:
9e:01:48:17:52:8f:9d:55:5d:8d:8c:a7:3e:88:97:0e:29:ce:
14:5c:43:12:17:a8:4e:29:80:24:ce:dc:fb:e7:4a:66:f7:39:
09:37:b7:26:34:87:f6:bd:f3:ee:56:fb:cc:4f:65:5c:1b:75:
10:73:42:57:cc:54:25:be:3d:50:17:1a:b4:1a:0d:d6:76:25:
0d:f8:ff:3a:72:98:ab:34:c4:0a:8e:94:a3:39:6e:00:fc:e4:
db:3b:33:d9:a6:5a:b5:17:45:ea:31:af:0e:67:19:81:37:9a:
7a:4f:e2:ad:89:d8:b9:0f:be:33:61:e4:00:9f:a0:e8:4b:25:
12:00:d8:73:f1:b6:21:73:80:13:fc:0e:f3:4d:c7:5f:4b:9b:
37:c4:ea:6c:84:94:48:3f:f4:9b:78:bc:93:53:f8:f5:de:1d:
30:31:45:17:0f:ce:6d:cc:14:19:38:d3:a9:48:8f:f1:10:42:
5a:ed:f4:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:38 2023 by rpki-client on console-ams.rpki-client.org