Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/dea778-09c8-4572-b3bb-c6059a3aa340/1/U_aPqvyoxfgFdum-kH56a1RltWA.roa
File: U_aPqvyoxfgFdum-kH56a1RltWA.roa (raw, json)
Hash identifier: CfSf7NFlTxzWfpo9YOFq6bkJzEZOQEsBjcZ3VEAuwwM=
Subject key identifier: 53:F6:8F:AA:FC:A8:C5:F8:05:76:E9:BE:90:7E:7A:6B:54:65:B5:60
Certificate issuer: /CN=bac55ec7cff0ef5650725adf3aefe6051a10cb6a
Certificate serial: 018243E64EAF6CA56D7779F6CB191BC1BB5D
Authority key identifier: BA:C5:5E:C7:CF:F0:EF:56:50:72:5A:DF:3A:EF:E6:05:1A:10:CB:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usVex8_w71ZQclrfOu_mBRoQy2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/dea778-09c8-4572-b3bb-c6059a3aa340/1/U_aPqvyoxfgFdum-kH56a1RltWA.roa
Signing time: Thu 28 Jul 2022 08:22:23 +0000
ROA not before: Thu 28 Jul 2022 08:22:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42375
IP address blocks: 91.200.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:43:e6:4e:af:6c:a5:6d:77:79:f6:cb:19:1b:c1:bb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bac55ec7cff0ef5650725adf3aefe6051a10cb6a
Validity
Not Before: Jul 28 08:22:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53f68faafca8c5f80576e9be907e7a6b5465b560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:93:21:98:d0:97:28:70:ae:56:57:2b:10:b6:
22:fe:44:3c:3c:92:59:6b:ed:a2:73:de:d8:62:9b:
d9:b5:26:6c:ca:24:1b:5e:e1:e3:a9:a0:14:ef:b2:
75:77:fe:88:3e:02:2d:1e:63:93:09:2f:c6:d9:48:
1e:26:0c:e6:94:d9:ac:3c:e9:e7:91:a4:b5:d6:2f:
87:a6:22:a1:f2:2d:20:1c:19:28:7e:d0:04:b7:2b:
42:7b:e4:4d:dd:b3:47:33:00:9a:a7:3a:e9:2b:68:
ca:01:41:a2:0c:97:c9:ce:39:e7:4d:27:a0:af:85:
4a:74:a6:ba:8b:bb:9f:c9:e4:47:29:ae:90:58:ea:
b3:1f:2c:31:c9:29:b9:ae:ed:c8:76:88:2d:ab:b3:
9f:74:4f:53:30:2f:95:9d:51:e6:a9:0b:50:39:93:
e0:3d:01:1e:71:41:d1:43:2a:c6:78:42:7f:c4:89:
81:84:ed:c8:d7:65:9a:67:8a:31:91:07:a6:b9:ed:
a9:41:69:87:80:ea:38:2d:b5:1a:32:2a:07:1b:11:
10:2b:8d:86:b6:33:20:77:bb:c0:6b:9f:95:6d:d3:
03:5c:d8:1d:f5:f3:85:81:0e:18:41:88:bf:e7:01:
4b:79:56:ac:bb:9d:c0:5f:8d:f0:f5:0a:02:0a:0b:
47:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F6:8F:AA:FC:A8:C5:F8:05:76:E9:BE:90:7E:7A:6B:54:65:B5:60
X509v3 Authority Key Identifier:
keyid:BA:C5:5E:C7:CF:F0:EF:56:50:72:5A:DF:3A:EF:E6:05:1A:10:CB:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usVex8_w71ZQclrfOu_mBRoQy2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/dea778-09c8-4572-b3bb-c6059a3aa340/1/U_aPqvyoxfgFdum-kH56a1RltWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/dea778-09c8-4572-b3bb-c6059a3aa340/1/usVex8_w71ZQclrfOu_mBRoQy2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.146.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:16:56:d8:b7:39:1b:87:2b:c2:76:47:e4:2e:b4:4d:b7:26:
a6:58:ef:38:02:dd:ac:3d:8c:29:88:6d:18:17:62:af:de:8a:
ba:95:44:ef:cf:5b:cd:83:80:6d:99:f5:7d:a8:31:21:8f:d6:
84:32:0a:f2:d6:1f:db:d5:af:f1:57:e2:50:3f:3e:0e:45:59:
3a:2c:fd:29:00:c4:0d:e5:71:bb:c1:bc:05:e0:b6:19:5b:4e:
fe:48:2d:26:64:29:ad:89:6d:ed:c2:bd:b1:ac:6c:23:7d:db:
61:c1:f2:a9:a1:43:af:cf:32:c3:59:39:0e:25:bd:a2:58:a7:
b9:2d:81:20:84:21:48:7e:9f:2b:d3:5a:d3:fc:e0:69:7f:d7:
bf:da:6d:26:0c:b1:78:91:8a:64:f4:f4:05:92:e3:ba:32:50:
a5:c0:6a:3d:ea:e3:8e:8e:3c:ac:1b:37:fa:01:17:28:d1:23:
c5:c9:1d:ab:75:1c:71:5c:06:d4:1d:e6:fb:eb:eb:3a:d3:1c:
02:03:f3:93:c4:86:b8:6b:f2:c8:aa:7b:bd:cc:8d:a3:c5:33:
02:24:d7:58:cd:ca:9c:e5:43:4e:1f:12:e2:2c:14:63:11:7f:
dc:43:78:cb:f1:fb:9d:fe:0b:ac:33:95:6b:00:af:1b:19:b7:
4b:01:18:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:44 2023 by rpki-client on console-ams.rpki-client.org