Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/XyQukQ_DROMO1CO_Un3WhGdkETI.roa
File: XyQukQ_DROMO1CO_Un3WhGdkETI.roa (raw, json)
Hash identifier: 0w9Bp+ixQh7LLfH9NiA7zILzK/qOTtxKD+ncf47kKl4=
Subject key identifier: 5F:24:2E:91:0F:C3:44:E3:0E:D4:23:BF:52:7D:D6:84:67:64:11:32
Certificate issuer: /CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Certificate serial: 035F09C0
Authority key identifier: DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/XyQukQ_DROMO1CO_Un3WhGdkETI.roa
Signing time: Sat 01 Jan 2022 10:55:11 +0000
ROA not before: Sat 01 Jan 2022 10:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57630
IP address blocks: 91.237.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56560064 (0x35f09c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Validity
Not Before: Jan 1 10:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f242e910fc344e30ed423bf527dd68467641132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c5:a0:90:48:4c:e3:ce:fd:53:1a:5a:5f:b8:
6f:12:8f:bf:eb:bd:c4:df:c3:0b:5f:cb:82:14:eb:
d7:c5:84:74:72:51:c1:96:aa:2a:4e:9a:23:17:3b:
19:f2:21:e2:05:77:66:87:11:a7:dd:4f:83:4c:9f:
f7:3c:06:d1:27:3c:90:c8:0e:d4:2f:9b:3c:10:eb:
2f:a4:21:f5:ef:2c:9d:12:a9:3e:32:50:c7:2a:aa:
ef:ea:13:01:1d:17:27:a0:9b:2b:c0:c2:bd:9a:08:
ab:d5:d3:14:d2:ea:b5:20:34:d4:7d:17:65:02:ff:
6a:f9:75:77:4a:54:b1:f0:f5:47:c2:23:12:0c:2d:
88:69:2d:4a:ca:49:47:c3:2e:e1:3a:47:fe:cf:f3:
65:b6:fe:a3:bd:98:b8:22:72:d5:f4:ad:ab:dc:dc:
a8:cb:de:b5:8f:f5:43:29:04:ef:ab:e2:96:4e:e6:
51:49:40:71:78:02:8c:21:51:0e:e4:0d:33:0e:45:
0b:d4:91:8f:5f:76:c0:88:5f:99:86:dc:74:dd:18:
98:3a:91:cf:1d:03:ed:cd:c4:1e:3f:cc:a5:2e:f4:
a4:cb:18:a8:c0:46:62:cd:8c:6e:fb:0e:92:3d:1e:
88:99:a2:65:dc:7f:4f:fa:d9:b9:c0:c4:85:48:1b:
1e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:24:2E:91:0F:C3:44:E3:0E:D4:23:BF:52:7D:D6:84:67:64:11:32
X509v3 Authority Key Identifier:
keyid:DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/XyQukQ_DROMO1CO_Un3WhGdkETI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.106.0/24
Signature Algorithm: sha256WithRSAEncryption
85:f6:c9:2d:c3:f4:f0:9c:c1:f6:64:9b:5b:77:d8:19:81:ad:
c1:21:2c:4a:e6:5a:b7:f6:32:53:ea:72:5e:b7:00:b6:8b:4b:
19:75:1e:29:ed:e8:e2:24:f0:ce:2f:b2:d1:4a:aa:d5:9f:f7:
99:09:33:92:c4:03:b2:51:ca:bc:f4:d0:7a:bf:70:69:9c:9f:
51:d0:6f:18:5a:10:47:a2:0b:9c:2f:ef:21:ee:40:0f:54:74:
80:2b:31:6b:01:a2:35:b7:90:f0:88:b3:14:02:bf:84:61:89:
5c:c3:cf:72:f1:2a:21:ec:c0:d5:26:07:7d:9f:35:10:02:0f:
22:a2:81:89:00:52:b8:f0:a0:bc:f2:69:1f:f1:6c:6a:d1:f6:
64:77:6d:0c:38:d7:bc:b3:a0:b3:2b:ec:ac:f0:10:4b:09:75:
ed:ff:53:08:72:b5:14:7f:a4:4d:bf:30:ef:eb:e6:3a:4d:f4:
6b:18:39:09:63:42:60:86:cc:b5:65:e0:59:53:d7:20:da:d4:
46:90:7b:42:3f:5e:b6:84:ee:01:b7:a3:68:ea:1a:88:4e:38:
6c:58:6b:fc:02:3c:41:c8:a6:74:ec:08:2c:d2:b4:9b:b4:a2:
ab:ff:ab:0a:b1:4f:53:99:38:22:5c:11:27:1b:db:86:c9:06:
52:93:3c:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:39 2023 by rpki-client on console-ams.rpki-client.org