Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/zLbhhaR9LMziBa-qwQXjH3JfUZg.roa
File: zLbhhaR9LMziBa-qwQXjH3JfUZg.roa (raw, json)
Hash identifier: 7qoPgzy7rNLjgQMej4JXX/YNE9Qp/K2FDoLu7JIhnaA=
Subject key identifier: CC:B6:E1:85:A4:7D:2C:CC:E2:05:AF:AA:C1:05:E3:1F:72:5F:51:98
Certificate issuer: /CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Certificate serial: 03C96326
Authority key identifier: 77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/zLbhhaR9LMziBa-qwQXjH3JfUZg.roa
Signing time: Sat 01 Jan 2022 03:52:20 +0000
ROA not before: Sat 01 Jan 2022 03:52:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43180
IP address blocks: 91.230.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63529766 (0x3c96326)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=776fae43f73da35fe1a2e429662ae0b91751e3fb
Validity
Not Before: Jan 1 03:52:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ccb6e185a47d2ccce205afaac105e31f725f5198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a4:67:25:39:ed:8e:c4:61:5d:71:a2:f2:db:
f7:fd:1f:c3:00:f0:a7:e5:f5:e2:31:a7:2b:f7:98:
f0:27:e2:51:84:84:93:35:d4:2f:f4:e8:16:72:23:
44:5c:bc:18:8e:cf:b9:49:95:dc:80:59:7f:34:e0:
d7:93:d1:3b:be:6f:37:5c:fe:b5:fb:c2:27:ee:83:
36:ba:4e:f5:a7:5d:6a:8a:77:a3:2f:22:68:cb:ba:
8c:f3:ca:40:55:9d:c0:e0:31:e9:b1:0a:7a:24:64:
4c:89:08:82:58:33:41:d9:46:3e:37:f9:c3:bf:b6:
a9:1a:20:4a:19:a5:a4:f0:38:72:1b:7e:d9:6d:9b:
94:12:e6:7b:b5:a9:fc:eb:0c:5e:6a:03:5c:29:c4:
47:9f:5f:67:c8:d4:6a:44:75:53:6c:85:23:9c:9e:
ae:63:de:1e:f9:cc:6f:18:48:38:d7:50:b0:1e:4b:
54:52:0b:cd:fb:fe:4d:80:b4:75:14:26:f1:9b:2e:
d6:68:83:7c:9a:2c:32:2e:fc:a5:38:c6:7f:18:f7:
1c:ca:e6:29:fd:11:87:c9:a6:ce:81:10:74:e0:9c:
81:5e:df:61:c6:52:2b:a6:f7:0b:a9:ec:d8:6f:76:
72:94:62:2b:41:bf:68:5b:05:a5:a7:c3:b1:88:1b:
43:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B6:E1:85:A4:7D:2C:CC:E2:05:AF:AA:C1:05:E3:1F:72:5F:51:98
X509v3 Authority Key Identifier:
keyid:77:6F:AE:43:F7:3D:A3:5F:E1:A2:E4:29:66:2A:E0:B9:17:51:E3:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2-uQ_c9o1_houQpZirguRdR4_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/zLbhhaR9LMziBa-qwQXjH3JfUZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0acf2d-5d62-43f3-8d14-4e0cc58163b0/1/d2-uQ_c9o1_houQpZirguRdR4_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.121.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:d4:ea:a1:b6:0f:b5:3c:82:52:1c:7a:e6:f5:36:ee:db:91:
3f:a7:b3:f5:a1:a7:4d:0a:bd:30:a6:c3:66:60:0f:db:a2:3a:
1a:15:81:90:ed:1f:bf:a9:f5:25:96:04:68:a9:e5:f1:58:a8:
19:7d:a9:b4:4a:78:fc:f3:ff:37:a1:b7:0c:ad:6d:2f:ed:7a:
07:38:43:f8:8e:2f:5f:aa:e5:14:40:fb:12:b1:23:c0:87:d4:
c7:bf:59:79:2b:d6:9d:69:51:ec:2a:da:4b:49:3d:79:1d:9b:
95:62:51:fb:78:47:06:b6:c2:15:d6:79:29:81:80:6c:6d:44:
71:1d:26:f7:c4:87:9b:12:b7:69:ea:17:38:cd:dd:0e:75:cd:
fd:2d:c6:c8:f9:6e:60:f0:ab:7a:41:45:6c:67:72:3e:6e:6e:
fb:fe:78:72:b9:29:f7:cf:d3:23:d0:6f:3b:b5:e0:86:12:89:
2e:e6:b3:1e:f8:85:7a:31:8a:92:46:be:e3:d0:d0:5f:93:18:
fb:6a:fe:f4:3f:ac:c1:3f:7e:90:7f:78:3a:f6:03:04:6d:30:
f6:ce:98:dc:a0:dd:e6:c4:4d:0f:30:14:d4:69:6c:4a:8e:de:
e7:c7:8b:a0:c8:7e:47:33:50:97:98:85:d0:06:61:d5:8b:d1:
a7:50:ea:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:08 2023 by rpki-client on console-fra.rpki-client.org