Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/zAvO6HCLeUgmdAl4h1dUDk4DEW8.roa
File: zAvO6HCLeUgmdAl4h1dUDk4DEW8.roa (raw, json)
Hash identifier: tlwrWWruzY1Tvb+KG14ir9EnZvrfryLX5csBvqtyDNA=
Subject key identifier: CC:0B:CE:E8:70:8B:79:48:26:74:09:78:87:57:54:0E:4E:03:11:6F
Certificate issuer: /CN=c551472480683c61970f605fb199eeb6eae1218b
Certificate serial: 03A4989F
Authority key identifier: C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/zAvO6HCLeUgmdAl4h1dUDk4DEW8.roa
Signing time: Sat 01 Jan 2022 09:54:30 +0000
ROA not before: Sat 01 Jan 2022 09:54:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56544
IP address blocks: 91.225.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61118623 (0x3a4989f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c551472480683c61970f605fb199eeb6eae1218b
Validity
Not Before: Jan 1 09:54:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cc0bcee8708b7948267409788757540e4e03116f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ec:e2:78:33:4c:a2:3e:f8:a3:1f:e1:33:e2:
a9:80:4d:d4:4f:ac:2d:e6:76:16:55:8a:4a:1c:a8:
f6:cd:ed:13:ee:6a:c4:ce:b1:af:c6:ef:97:66:cb:
fb:f7:d3:73:6d:f8:e1:e4:19:3b:43:4b:27:1c:74:
98:cc:8c:40:05:aa:51:13:8d:98:29:27:5e:19:fb:
4f:f4:d3:6c:1c:ad:cf:30:b5:ba:6c:47:16:00:e5:
96:f3:a6:db:87:10:3d:57:fd:97:96:82:19:6c:b2:
69:c2:47:ff:b1:d3:96:8a:fb:f3:26:15:6f:fe:0d:
1b:a0:51:ce:27:0d:9c:95:7f:08:ed:e0:3b:71:57:
8d:6d:8a:71:60:35:50:03:17:80:75:4d:41:d3:60:
02:2a:18:d8:6d:4c:d5:ac:76:d8:97:da:93:26:8a:
b3:52:be:44:4d:1c:28:4f:63:c9:d2:2d:ff:3e:48:
3b:64:5e:b2:bf:fe:29:67:a0:c2:29:3a:34:ae:95:
9a:72:ab:b7:0c:8b:ba:27:2c:01:83:44:ed:7e:98:
0c:42:46:a1:42:00:07:bb:a0:09:47:e3:a0:0c:e7:
da:b2:46:2a:7a:82:ba:9e:e0:12:bb:54:5a:11:71:
09:c0:eb:0c:aa:e4:1e:fa:b7:92:0c:67:e3:09:21:
ee:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:0B:CE:E8:70:8B:79:48:26:74:09:78:87:57:54:0E:4E:03:11:6F
X509v3 Authority Key Identifier:
keyid:C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/zAvO6HCLeUgmdAl4h1dUDk4DEW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.176.0/22
Signature Algorithm: sha256WithRSAEncryption
cf:c1:e4:0f:c3:45:61:ab:52:87:48:e7:aa:bc:8f:60:d2:97:
4c:b0:d0:0c:f2:22:1e:83:d9:ac:52:11:b7:70:4c:66:74:a8:
49:98:5f:5b:fd:6a:9f:1b:51:e9:ad:32:1f:2b:2d:ca:a4:cb:
92:a6:1c:39:02:6e:fc:88:ad:bf:31:00:71:6b:3b:a9:55:b9:
34:b6:d1:80:5e:5e:2a:1a:6b:6e:f5:a9:49:b0:5d:fc:4f:5a:
b7:d7:58:e1:c2:1a:13:34:44:84:47:93:18:65:14:98:3b:2d:
3d:e7:27:3b:a6:a5:63:a0:73:9b:f7:a2:ed:08:d1:af:87:16:
06:34:0f:48:13:6b:0e:f4:97:a7:99:e3:33:ff:c9:48:12:9c:
4f:ea:52:09:96:3c:8f:36:d9:8d:24:ce:b5:cd:e1:73:31:a4:
95:e2:aa:26:96:bb:c8:52:d0:64:ba:d8:a7:3d:4e:8c:d0:c2:
a5:27:a7:da:1b:87:c5:4f:50:8d:17:28:97:c8:de:14:a4:cf:
8b:d8:24:c2:ad:3b:4d:72:e2:ff:83:4b:5a:7c:c3:55:c2:dc:
4b:db:a3:55:40:51:f3:92:02:52:d7:ea:bf:88:e9:84:22:25:
ee:8c:a4:a9:bd:23:22:7d:db:10:01:59:47:d0:52:56:13:a7:
a9:33:ac:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:45 2023 by rpki-client on console-fra.rpki-client.org