Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/CCDwpTLYVTy1Z2RxpVAEF47F21I.roa
File: CCDwpTLYVTy1Z2RxpVAEF47F21I.roa (raw, json)
Hash identifier: RyMaddZkLzdaZgIegC+ohu01ADniAC8bHO6GqpgnC6I=
Subject key identifier: 08:20:F0:A5:32:D8:55:3C:B5:67:64:71:A5:50:04:17:8E:C5:DB:52
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 018243AD8DF45B62631FEAAD15785990AE27
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/CCDwpTLYVTy1Z2RxpVAEF47F21I.roa
Signing time: Thu 28 Jul 2022 07:20:23 +0000
ROA not before: Thu 28 Jul 2022 07:20:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43352
IP address blocks: 91.93.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:43:ad:8d:f4:5b:62:63:1f:ea:ad:15:78:59:90:ae:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jul 28 07:20:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0820f0a532d8553cb5676471a55004178ec5db52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:95:8b:61:36:3c:56:6f:82:9e:40:ad:c9:d6:
7d:e6:61:f1:ee:d5:06:74:90:58:cc:07:eb:be:c8:
9e:ea:e1:89:ec:0f:c1:3f:c1:3e:d1:88:0f:71:3b:
ec:0b:60:26:03:ca:c9:80:5f:67:0c:52:c9:70:e1:
5a:01:09:b7:c0:81:48:ee:9c:b4:4a:87:20:29:36:
3b:0a:67:8b:32:2c:5f:77:67:0a:7c:02:33:7c:34:
8e:85:c3:fd:b3:b9:67:d0:1d:74:8b:8e:ec:e9:15:
65:83:e6:72:0e:e7:de:54:72:32:32:16:c8:3d:8e:
25:c5:44:52:5b:48:20:47:b5:cd:5b:96:a9:fa:c0:
12:2e:ee:05:8b:c2:fb:76:b0:3b:21:40:3a:a1:a7:
ea:c2:11:17:81:90:ad:a9:ef:1f:83:f1:05:7b:45:
bc:d8:9d:1b:b9:f8:e6:ae:00:7a:56:6b:67:bd:a4:
27:89:a7:ff:bd:e6:1e:23:2e:c3:90:5d:8f:d8:49:
b4:71:ad:47:16:3f:11:fd:14:05:a7:e3:d7:a0:07:
e8:28:68:6d:6a:7f:f6:44:ee:db:a8:25:a9:a4:6e:
c8:4f:cc:c8:c0:8d:10:45:d1:03:62:40:d8:27:ab:
7b:05:09:05:e5:0e:9c:dc:14:e0:8a:b1:dd:3c:07:
e5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:20:F0:A5:32:D8:55:3C:B5:67:64:71:A5:50:04:17:8E:C5:DB:52
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/CCDwpTLYVTy1Z2RxpVAEF47F21I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.93.155.0/24
Signature Algorithm: sha256WithRSAEncryption
78:2b:12:c8:a3:f8:cd:e3:f8:ea:b7:7c:82:18:4c:ad:65:df:
75:78:e0:46:22:ac:4f:68:e3:af:fa:bc:d2:2f:8a:fa:8f:32:
a8:dd:b9:f3:1a:23:23:de:b1:e9:cc:19:0a:37:90:87:52:8e:
fc:7d:87:2a:9d:3f:37:33:78:6d:80:55:97:65:ec:4f:93:3c:
e7:87:51:62:cd:06:70:3d:f3:37:8b:2e:92:35:90:46:f6:05:
bc:f6:25:5b:b2:bc:e1:89:5e:17:d3:5c:80:0e:ec:c3:a5:3b:
46:17:c8:e0:17:b6:06:21:f8:c7:f6:9a:ee:0e:a5:62:e1:e1:
e5:4e:ba:2c:61:12:ec:86:fb:47:74:76:3c:d6:ff:d2:0c:5a:
6f:0f:b6:40:76:88:fd:07:ad:66:f2:44:52:a4:c5:3d:97:e7:
fa:ac:86:24:a7:28:3a:36:95:36:26:5c:b9:53:77:7f:22:03:
30:c2:6f:77:36:64:98:bc:65:c3:73:ad:a5:5f:6f:80:56:97:
a6:50:93:c3:fb:76:45:5e:cd:63:a8:da:fe:2c:e3:cc:f2:e8:
af:f9:f7:99:6a:24:50:f9:b1:b7:96:7f:9b:76:ed:c2:c2:9f:
d7:f6:76:d3:ff:b0:f7:1f:ec:03:75:86:82:b2:ae:d2:91:32:
12:f3:d1:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org