Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/7c66b0-c808-45a1-9b50-5e758e81eff6/1/fY7N0CjXaKxgajHWfwM3zVw2Azw.roa
File: fY7N0CjXaKxgajHWfwM3zVw2Azw.roa (raw, json)
Hash identifier: sDXosvt/5+FMiGavjIBmpgbI1s9Y2eoW41iW0UEEtM8=
Subject key identifier: 7D:8E:CD:D0:28:D7:68:AC:60:6A:31:D6:7F:03:37:CD:5C:36:03:3C
Certificate issuer: /CN=67af9014b0dedd2c04840ae385b5339f6c6790f5
Certificate serial: 35BC23B6
Authority key identifier: 67:AF:90:14:B0:DE:DD:2C:04:84:0A:E3:85:B5:33:9F:6C:67:90:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z6-QFLDe3SwEhArjhbUzn2xnkPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/7c66b0-c808-45a1-9b50-5e758e81eff6/1/fY7N0CjXaKxgajHWfwM3zVw2Azw.roa
Signing time: Sat 01 Jan 2022 08:53:04 +0000
ROA not before: Sat 01 Jan 2022 08:53:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51957
IP address blocks: 91.221.156.0/23 maxlen: 23
2a00:5180::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 901522358 (0x35bc23b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67af9014b0dedd2c04840ae385b5339f6c6790f5
Validity
Not Before: Jan 1 08:53:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d8ecdd028d768ac606a31d67f0337cd5c36033c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:36:15:f5:ba:43:20:db:12:50:f8:1d:9a:9a:
61:df:b6:18:b2:4e:82:0f:46:cc:87:34:7b:44:b6:
0f:81:c1:54:4f:b3:44:7a:c6:55:2e:8a:87:ac:db:
39:c3:a6:28:ef:af:c1:6d:3a:0f:fe:ce:3f:da:a1:
50:7b:4b:1d:4f:36:ae:3f:80:1a:bd:d0:08:72:57:
44:be:fb:28:8f:4a:b3:8a:09:b4:c8:aa:98:d0:ac:
d8:20:b5:fa:02:d6:58:bc:c7:35:46:c4:54:7b:62:
ae:80:43:41:23:14:f3:f0:51:25:8b:42:cb:5c:18:
7e:f1:1b:f0:bb:79:d9:ec:ce:19:9c:be:bf:3f:54:
99:bb:38:f9:cc:5a:26:0d:5b:8d:4f:ee:22:66:73:
e4:0c:c4:d6:4c:6d:13:76:80:5c:62:3f:bd:b9:77:
af:d3:ad:85:3f:54:ce:dd:05:7c:11:e6:dc:b9:0b:
36:42:25:f2:d9:b8:1b:ed:4f:ae:92:5d:41:96:77:
ef:c2:66:74:d9:f6:e1:b8:26:17:37:7e:78:82:6b:
f5:bd:a0:1a:a7:35:41:c6:bb:45:bb:e0:da:03:0f:
6a:b9:24:2e:28:6d:57:19:36:7f:d1:eb:8c:3e:25:
bf:34:36:36:0e:17:de:2b:48:8d:2b:f8:71:0c:75:
55:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:8E:CD:D0:28:D7:68:AC:60:6A:31:D6:7F:03:37:CD:5C:36:03:3C
X509v3 Authority Key Identifier:
keyid:67:AF:90:14:B0:DE:DD:2C:04:84:0A:E3:85:B5:33:9F:6C:67:90:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z6-QFLDe3SwEhArjhbUzn2xnkPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/7c66b0-c808-45a1-9b50-5e758e81eff6/1/fY7N0CjXaKxgajHWfwM3zVw2Azw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/7c66b0-c808-45a1-9b50-5e758e81eff6/1/Z6-QFLDe3SwEhArjhbUzn2xnkPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.156.0/23
IPv6:
2a00:5180::/48
Signature Algorithm: sha256WithRSAEncryption
b8:2a:05:fc:dc:62:88:14:33:be:c0:05:64:a1:1d:25:bb:64:
66:fc:4c:2f:e0:12:2d:3d:0e:e4:5f:57:c9:c9:47:2b:03:91:
10:8c:33:95:15:05:52:b0:c8:32:49:37:43:80:66:b3:d7:bc:
ab:9e:c1:1f:d0:d4:d1:8c:06:f7:42:b9:3e:ae:c6:be:c0:1d:
9c:0e:50:38:29:13:55:cd:a2:5a:62:68:3b:5d:a9:01:30:9e:
f3:9f:8c:b6:b8:32:dc:ed:3d:43:66:a0:21:f7:54:19:80:83:
de:4a:a8:88:f6:da:a2:82:64:ad:36:06:c0:83:33:54:32:97:
c9:3a:ac:19:f2:f9:3a:4e:6a:67:90:6d:db:06:ca:0f:dd:9d:
0a:23:c8:13:4d:ee:fc:2c:5a:55:2b:6d:45:d7:19:7f:88:46:
aa:d5:25:4b:58:6f:37:ca:29:a2:05:89:14:b6:b4:59:81:bb:
60:93:12:34:d5:c2:95:90:ab:b4:21:83:ef:51:38:5d:4a:93:
ba:8a:8f:db:39:96:73:42:c0:5a:7b:5f:0d:31:4a:a9:a3:90:
e3:82:5f:56:4d:a6:25:ed:ea:89:b4:f3:d7:6b:d4:2b:6c:93:
9e:13:59:a9:b3:d3:40:bd:66:71:7c:02:61:3a:82:8a:43:ab:
d3:07:76:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:26 2024 by rpki-client on console-fra.rpki-client.org