Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/mVdD08QQwKBVNGo6KbYZAxPpj2U.roa
File: mVdD08QQwKBVNGo6KbYZAxPpj2U.roa (raw, json)
Hash identifier: 0fwvhI36WrHN2VgUCDo3Tv1cv5ef57i0zc0WQjBgHWU=
Subject key identifier: 99:57:43:D3:C4:10:C0:A0:55:34:6A:3A:29:B6:19:03:13:E9:8F:65
Certificate issuer: /CN=bd175e878d33b47d806f2cf3e04628220935123d
Certificate serial: 07B6F046
Authority key identifier: BD:17:5E:87:8D:33:B4:7D:80:6F:2C:F3:E0:46:28:22:09:35:12:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRdeh40ztH2Abyzz4EYoIgk1Ej0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/mVdD08QQwKBVNGo6KbYZAxPpj2U.roa
Signing time: Sat 01 Jan 2022 09:54:59 +0000
ROA not before: Sat 01 Jan 2022 09:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206423
IP address blocks: 91.199.8.0/24 maxlen: 32
2001:67c:2f84::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129429574 (0x7b6f046)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd175e878d33b47d806f2cf3e04628220935123d
Validity
Not Before: Jan 1 09:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=995743d3c410c0a055346a3a29b6190313e98f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6a:47:43:67:fc:1a:92:48:ba:66:6a:0c:c7:
1c:96:fd:9a:ad:07:1b:a2:cd:0a:59:9e:c1:e7:b9:
aa:22:71:ce:ce:c3:67:ff:e7:1b:77:79:4c:96:cf:
8e:78:da:69:b3:04:4c:f2:6d:30:d0:7e:2f:eb:89:
5f:8e:cd:38:80:5d:47:78:3e:d3:d5:d9:73:56:d7:
9c:63:f9:89:80:5e:76:b5:41:7c:a9:ff:f8:30:d7:
70:a9:27:fe:e5:e3:56:83:a1:2b:6b:a3:0f:f6:0c:
f5:1c:54:11:4f:01:63:e0:0d:9b:b5:ab:02:83:d2:
8c:a0:f2:0a:4a:61:c5:8c:e5:d0:af:4c:f3:a2:2c:
f6:c5:f3:16:63:56:7e:91:b9:d0:1f:1b:ab:f4:07:
37:54:07:fc:e2:ed:d4:10:10:db:44:7f:cb:fe:5c:
e7:3b:23:f2:51:61:55:34:9a:1a:80:69:8f:e7:e3:
00:92:3e:16:60:40:94:93:a0:97:1a:b2:17:15:cb:
74:bc:6e:f8:97:0c:d2:8b:2b:3f:38:55:3a:39:31:
ef:cf:67:e0:3f:02:e5:ef:f3:92:08:66:87:9a:4b:
14:a4:a0:8d:20:fc:da:c3:0a:6b:f4:a7:43:9c:3f:
47:d3:c5:a9:18:bb:2c:05:8f:80:01:1b:e0:19:36:
fe:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:57:43:D3:C4:10:C0:A0:55:34:6A:3A:29:B6:19:03:13:E9:8F:65
X509v3 Authority Key Identifier:
keyid:BD:17:5E:87:8D:33:B4:7D:80:6F:2C:F3:E0:46:28:22:09:35:12:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRdeh40ztH2Abyzz4EYoIgk1Ej0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/mVdD08QQwKBVNGo6KbYZAxPpj2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/dda98e-8646-4d07-80ac-a35eaf005af5/1/vRdeh40ztH2Abyzz4EYoIgk1Ej0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.8.0/24
IPv6:
2001:67c:2f84::/48
Signature Algorithm: sha256WithRSAEncryption
61:dd:bf:02:80:09:f7:f7:5f:1e:cf:28:e9:70:76:de:ec:59:
90:49:35:6c:12:ad:be:43:ce:b4:5f:dd:ad:fb:6e:61:d6:73:
0c:54:1a:7a:9f:f0:b9:07:ef:8c:87:b2:5d:3b:e6:43:08:1b:
ab:15:8d:cc:da:50:c1:ab:1e:0f:f8:ec:af:27:57:13:5e:e2:
33:38:08:c4:47:bf:85:8b:68:3f:44:23:56:47:b9:10:a6:fe:
1e:87:e6:17:91:6d:59:ba:f3:95:45:eb:de:6b:7d:a7:24:be:
30:dd:0b:5b:bd:ca:b8:65:89:80:24:b5:6a:97:ff:0b:33:d4:
a3:a4:a1:0a:4a:c9:b8:50:5e:9d:1b:46:80:a7:59:a7:fc:cf:
41:1c:8f:c3:ee:3e:53:f2:b0:fa:4c:5d:e1:fd:70:01:1c:fd:
78:a8:14:23:9d:08:3d:f6:5b:82:3f:db:3d:d8:a5:4d:14:28:
68:b7:1c:d2:ed:ee:b5:45:93:d8:b2:95:03:6f:8e:bc:54:4a:
76:a0:56:17:9f:f2:53:da:18:64:61:6c:ee:ab:5a:ae:0d:9b:
38:42:51:ed:fb:a5:fc:91:2a:23:14:1b:50:d9:6c:f0:73:1c:
5d:6a:97:aa:4a:f2:99:aa:12:ca:77:fa:c9:ac:ee:f2:1e:31:
d2:de:06:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:34 2024 by rpki-client on console-fra.rpki-client.org