Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f10bc7-7c9e-4d98-8d7b-7af0a15f40b5/1/17GzxbHNyYgP0x9mo-vPGZRj_80.roa
File: 17GzxbHNyYgP0x9mo-vPGZRj_80.roa (raw, json)
Hash identifier: yyCxJf9RNtAFOVSP/DHaX/NN3ESdZenjtsCGXw9EykM=
Subject key identifier: D7:B1:B3:C5:B1:CD:C9:88:0F:D3:1F:66:A3:EB:CF:19:94:63:FF:CD
Certificate issuer: /CN=407bc1dc2e11d491b9b85e08d01c222f9776c3cc
Certificate serial: 0376D78E
Authority key identifier: 40:7B:C1:DC:2E:11:D4:91:B9:B8:5E:08:D0:1C:22:2F:97:76:C3:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QHvB3C4R1JG5uF4I0BwiL5d2w8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f10bc7-7c9e-4d98-8d7b-7af0a15f40b5/1/17GzxbHNyYgP0x9mo-vPGZRj_80.roa
Signing time: Sat 01 Jan 2022 04:58:21 +0000
ROA not before: Sat 01 Jan 2022 04:58:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 91.198.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58120078 (0x376d78e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=407bc1dc2e11d491b9b85e08d01c222f9776c3cc
Validity
Not Before: Jan 1 04:58:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7b1b3c5b1cdc9880fd31f66a3ebcf199463ffcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:8f:9c:b8:6a:c0:73:0b:91:e6:82:1e:4d:29:
fa:ae:13:f1:65:03:3e:6e:b8:45:b8:9c:22:45:c2:
31:15:b2:e1:e3:4a:6a:76:be:12:2b:28:77:91:74:
1a:a6:bc:04:11:79:b5:0d:49:b8:ac:6e:d9:da:29:
c8:b6:a9:2a:1d:e7:5c:5f:76:6e:e6:14:53:c4:18:
49:9e:b7:8d:4b:fd:3f:14:4d:c9:cc:dc:6d:8d:97:
3b:3e:7b:a0:c1:04:15:44:b5:30:ca:98:bc:18:7b:
bf:44:7a:31:88:c1:80:9d:67:62:25:d8:29:62:68:
19:75:2c:81:f1:43:bd:af:09:d5:30:96:be:98:47:
06:e8:1d:2c:ab:d2:77:b0:b2:f8:f1:3a:3e:6a:d2:
16:45:66:07:20:cb:75:b9:07:63:8c:96:df:7a:c6:
81:9a:98:62:6c:ec:88:71:72:ef:cd:68:3a:17:fc:
5b:ba:b4:aa:42:b7:78:17:f9:6d:02:70:17:86:4c:
b3:dc:95:cd:7f:0f:7a:e8:2c:cf:41:0d:01:6b:92:
15:76:4f:9b:95:39:61:ee:56:0f:6f:9f:d5:7c:1e:
2a:76:69:ff:ac:29:15:5e:03:e2:c5:6b:22:21:01:
13:a7:e6:ed:0e:58:87:c0:2e:c6:09:84:8c:cd:3f:
ae:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B1:B3:C5:B1:CD:C9:88:0F:D3:1F:66:A3:EB:CF:19:94:63:FF:CD
X509v3 Authority Key Identifier:
keyid:40:7B:C1:DC:2E:11:D4:91:B9:B8:5E:08:D0:1C:22:2F:97:76:C3:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QHvB3C4R1JG5uF4I0BwiL5d2w8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f10bc7-7c9e-4d98-8d7b-7af0a15f40b5/1/17GzxbHNyYgP0x9mo-vPGZRj_80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f10bc7-7c9e-4d98-8d7b-7af0a15f40b5/1/QHvB3C4R1JG5uF4I0BwiL5d2w8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.197.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:3f:48:8f:1e:11:91:37:9b:7f:ec:ef:aa:df:ef:39:bf:8d:
6c:b4:0f:6f:f2:47:26:e7:6f:ab:4a:3e:15:04:da:1a:5a:a5:
89:b9:ec:53:22:78:d4:a0:f1:60:f3:1e:8c:43:f6:a5:53:1f:
3e:3c:e3:fc:a5:6a:45:34:c6:7c:80:f5:ee:a0:d7:af:83:2d:
b6:16:01:3d:03:bb:a7:06:0a:b8:4f:67:d3:cc:d5:62:80:67:
1c:65:b6:88:06:c8:31:26:d1:e3:a3:47:65:ea:00:41:c8:e2:
6c:c4:ab:fb:d4:28:50:d2:64:51:f6:3c:0e:d1:42:eb:1c:ee:
8a:6e:d7:25:b6:f8:6d:64:27:02:a8:94:e9:b7:ae:5b:0d:fe:
52:54:de:4c:b6:e2:2b:e0:f0:18:92:74:28:79:a5:16:df:60:
9d:66:aa:26:35:e7:ec:58:74:21:bb:01:57:9f:94:2a:63:8a:
68:7d:51:dd:4d:e1:b8:ec:a5:9d:65:df:10:aa:ca:fb:ab:59:
3a:6b:6a:8d:6a:8b:0c:e1:b2:4a:5e:e8:a6:8f:0b:8f:7d:3a:
fe:fa:10:b6:58:4b:a9:ec:86:be:c6:38:63:b8:56:9f:45:1e:
5d:2e:da:5b:9a:96:ad:86:f8:a4:0a:ee:49:b9:5b:e1:ef:84:
89:3a:ad:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:24 2024 by rpki-client on console-ams.rpki-client.org