Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/013d7e-13f5-4e6e-ab87-2013618c04ff/1/9PY9Il3-A3mTBd4FXD9m0jUFP1Y.roa
File: 9PY9Il3-A3mTBd4FXD9m0jUFP1Y.roa (raw, json)
Hash identifier: ZaL1veA0nKISTWFf8J9v5SAX27bKaikTfvW3NbjQnNk=
Subject key identifier: F4:F6:3D:22:5D:FE:03:79:93:05:DE:05:5C:3F:66:D2:35:05:3F:56
Certificate issuer: /CN=aee9d5086369076a78d761638b32a8a9b8ef70e7
Certificate serial: 0A19CD31
Authority key identifier: AE:E9:D5:08:63:69:07:6A:78:D7:61:63:8B:32:A8:A9:B8:EF:70:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/runVCGNpB2p412FjizKoqbjvcOc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/013d7e-13f5-4e6e-ab87-2013618c04ff/1/9PY9Il3-A3mTBd4FXD9m0jUFP1Y.roa
Signing time: Sat 01 Jan 2022 02:59:34 +0000
ROA not before: Sat 01 Jan 2022 02:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48078
IP address blocks: 91.210.24.0/24 maxlen: 24
91.210.24.0/22 maxlen: 22
185.15.63.0/24 maxlen: 24
185.15.62.0/24 maxlen: 24
185.15.61.0/24 maxlen: 24
185.15.60.0/24 maxlen: 24
185.15.60.0/22 maxlen: 22
91.210.27.0/24 maxlen: 24
91.210.26.0/24 maxlen: 24
91.210.25.0/24 maxlen: 24
91.215.89.0/24 maxlen: 24
91.215.88.0/24 maxlen: 24
91.215.88.0/22 maxlen: 22
91.215.91.0/24 maxlen: 24
91.215.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169463089 (0xa19cd31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee9d5086369076a78d761638b32a8a9b8ef70e7
Validity
Not Before: Jan 1 02:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4f63d225dfe03799305de055c3f66d235053f56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:0e:0f:95:96:1e:41:75:a0:3c:90:8c:cb:32:
fb:34:01:8c:ce:81:9b:0d:b5:dc:12:5f:1e:57:c5:
94:72:a9:cf:39:c3:d3:6c:80:79:0d:32:68:84:d3:
b2:49:aa:6a:f8:53:30:14:c6:9d:d0:a2:f2:7b:6b:
9b:ab:01:76:d9:99:7f:4a:e0:7d:2a:4c:c0:b4:5d:
70:7d:e4:4b:90:81:6d:bf:08:c9:bd:a9:00:91:24:
de:3e:68:92:70:2d:34:bc:f9:d6:d5:3c:43:d0:8e:
33:bb:a5:5a:1b:0a:4a:45:23:ec:f2:42:85:25:d6:
a0:52:0a:b4:c6:20:27:ee:73:3f:ba:c3:8e:f3:f5:
7a:31:da:af:a7:e4:7d:ef:0a:90:ec:5d:9d:94:e0:
4f:f3:1f:1c:82:fb:87:5d:37:ea:91:70:9d:1c:d9:
1c:cc:a1:6c:29:cb:dc:5c:8c:35:50:85:f0:b4:9c:
ec:81:a3:bf:13:53:39:b0:e2:3c:d6:f0:21:bb:d8:
aa:dd:77:e7:74:68:f3:d0:80:15:4e:d2:11:f6:64:
95:a4:33:0d:68:3c:61:92:13:6d:0d:d8:c7:3b:df:
99:06:4b:64:10:0f:8f:9d:8c:3f:33:f5:11:c6:ad:
50:70:6f:b3:21:2f:ca:95:02:4e:44:ba:5e:f2:93:
cd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F6:3D:22:5D:FE:03:79:93:05:DE:05:5C:3F:66:D2:35:05:3F:56
X509v3 Authority Key Identifier:
keyid:AE:E9:D5:08:63:69:07:6A:78:D7:61:63:8B:32:A8:A9:B8:EF:70:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/runVCGNpB2p412FjizKoqbjvcOc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/013d7e-13f5-4e6e-ab87-2013618c04ff/1/9PY9Il3-A3mTBd4FXD9m0jUFP1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/013d7e-13f5-4e6e-ab87-2013618c04ff/1/runVCGNpB2p412FjizKoqbjvcOc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.24.0/22
91.215.88.0/22
185.15.60.0/22
Signature Algorithm: sha256WithRSAEncryption
17:f4:0c:da:58:47:e1:d7:70:c8:25:5d:ee:02:6f:35:8e:23:
95:b4:b6:35:bb:66:e2:53:1c:e6:9d:bc:14:23:f9:00:b6:0d:
ab:b5:ef:22:63:90:0c:f4:dc:92:71:95:68:0d:96:0c:80:18:
58:53:55:bb:ae:47:ef:f9:80:d5:63:4a:4e:f8:34:47:1e:6e:
0a:6e:40:c2:c6:3d:36:2b:30:d8:ed:5d:ca:39:5a:42:97:89:
8a:f8:99:46:a6:5f:4b:12:42:bb:15:19:c7:e7:ac:23:eb:e4:
d6:13:3d:b2:60:5d:4e:83:4e:42:b3:56:09:0f:52:c6:b2:51:
1b:9c:58:70:bb:cd:ee:ee:a3:99:96:ff:b2:28:b4:09:2f:81:
d3:2f:cf:36:07:1f:b5:53:31:e7:fd:91:31:40:56:c4:6f:ad:
1c:32:a8:b5:84:6f:15:66:10:6c:21:78:18:90:e8:64:24:c9:
d3:f3:7f:79:b4:ba:37:01:80:95:04:3a:16:ed:3e:6c:ec:5a:
61:ce:98:90:3b:a7:d6:60:a3:7c:1b:5f:27:d5:0c:54:63:d9:
e4:3b:7b:6b:59:22:8b:86:45:6e:57:f2:31:99:6c:58:9d:1c:
82:d5:78:25:63:27:a9:69:64:d9:46:6e:b1:4e:81:be:5f:71:
94:2e:c8:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org