Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/XWKcjZCoPEcwPlg-t2r1YdMimHQ.roa
File: XWKcjZCoPEcwPlg-t2r1YdMimHQ.roa (raw, json)
Hash identifier: wiH3rrwRJ17rmYT1CA6a0tJjy6NMDtXZHxwy7QRufLE=
Subject key identifier: 5D:62:9C:8D:90:A8:3C:47:30:3E:58:3E:B7:6A:F5:61:D3:22:98:74
Certificate issuer: /CN=bd175e878d33b47d806f2cf3e04628220935123d
Certificate serial: 07B665DA
Authority key identifier: BD:17:5E:87:8D:33:B4:7D:80:6F:2C:F3:E0:46:28:22:09:35:12:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRdeh40ztH2Abyzz4EYoIgk1Ej0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/XWKcjZCoPEcwPlg-t2r1YdMimHQ.roa
Signing time: Sat 01 Jan 2022 09:54:58 +0000
ROA not before: Sat 01 Jan 2022 09:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44496
IP address blocks: 91.199.8.0/24 maxlen: 32
2001:67c:2f84::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129394138 (0x7b665da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd175e878d33b47d806f2cf3e04628220935123d
Validity
Not Before: Jan 1 09:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d629c8d90a83c47303e583eb76af561d3229874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:26:01:03:78:cd:4a:c3:3d:26:3a:e8:b7:54:
48:d2:33:a9:73:cb:e6:7e:53:d4:67:e3:d9:47:87:
98:6f:09:c2:d7:17:14:29:a9:af:74:57:31:42:94:
4d:de:29:80:9b:6e:5f:5c:d1:e3:ae:82:59:bc:94:
09:38:56:ba:05:f4:6c:4d:17:0b:7b:72:88:52:b9:
e8:3d:2a:28:7a:e4:b2:8b:69:ab:ec:9e:44:ea:72:
4b:8f:9b:2b:9b:5a:bd:09:c8:c7:cb:b5:57:11:5d:
c5:b2:f6:ae:21:c1:cd:7b:41:c6:a9:8a:c6:53:53:
13:ea:39:4b:97:94:1f:3f:3f:16:85:8b:22:14:83:
1b:df:6c:15:ad:0b:5e:a4:a4:6b:50:85:50:3c:c2:
55:2c:93:55:a9:55:d6:b4:30:10:85:aa:52:d3:70:
86:92:c1:00:35:6a:01:db:5b:cb:80:ed:69:52:78:
91:5d:26:3a:71:b6:d1:77:00:a7:0f:a7:e6:8a:b9:
1b:8b:99:ae:93:0a:c9:94:03:b4:13:2a:e5:58:6b:
4a:7b:20:c1:27:b8:72:59:5b:6c:e8:db:d8:c0:36:
3c:84:e0:5a:28:56:d0:51:5e:e4:8b:97:da:52:54:
1f:40:db:ba:e0:78:19:1d:85:5e:29:9f:3b:5f:ad:
e2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:62:9C:8D:90:A8:3C:47:30:3E:58:3E:B7:6A:F5:61:D3:22:98:74
X509v3 Authority Key Identifier:
keyid:BD:17:5E:87:8D:33:B4:7D:80:6F:2C:F3:E0:46:28:22:09:35:12:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRdeh40ztH2Abyzz4EYoIgk1Ej0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/XWKcjZCoPEcwPlg-t2r1YdMimHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/vRdeh40ztH2Abyzz4EYoIgk1Ej0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.8.0/24
IPv6:
2001:67c:2f84::/48
Signature Algorithm: sha256WithRSAEncryption
12:ca:04:aa:cd:cb:f7:67:c6:fb:47:24:4f:d7:53:ec:ef:56:
c0:94:d4:35:39:a2:ed:1e:0b:a7:13:79:0f:15:41:bf:46:8a:
b6:12:bd:3a:4f:84:22:7f:fd:f5:d4:d6:9d:2b:e0:bd:a9:bf:
45:ca:7d:b0:92:3e:db:83:db:15:62:0f:72:67:e1:f3:39:72:
2d:5b:8d:0d:35:a9:b2:ed:2b:cb:fb:d3:1f:3f:70:d9:82:c3:
91:c1:34:fb:6a:7e:dc:41:79:06:39:3b:e9:c5:72:1c:0d:1e:
79:22:e5:02:0b:8e:23:91:a2:26:df:13:43:f2:5c:7a:b2:be:
fb:70:cc:aa:57:dc:52:34:f8:0c:0c:6e:38:1f:a9:67:0e:6a:
7c:76:bc:90:23:1b:38:bb:6f:d0:d7:c1:71:13:6f:ee:9d:a3:
25:c2:41:01:b3:e5:b9:86:1f:c3:85:6f:c0:30:f4:42:a1:6b:
9e:5f:ab:c3:3d:7c:08:fa:53:e4:f6:a0:48:5d:34:e4:a2:c1:
26:70:d0:3a:2b:e0:e6:d4:44:88:47:fe:2c:e9:de:89:bb:7d:
02:86:56:18:bb:1c:55:c3:b5:8e:bd:aa:f1:f7:5c:57:6a:4c:
5a:14:ec:b7:5b:9c:f4:4e:e6:37:f0:56:19:54:6b:fb:42:e2:
2b:9f:b2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:23 2023 by rpki-client on console-ams.rpki-client.org