Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/45c689-751f-46d7-9b6c-b1fc547b7322/1/iDV7WBYdELH4D_NhBj86OSYQs4E.roa
File: iDV7WBYdELH4D_NhBj86OSYQs4E.roa (raw, json)
Hash identifier: Qz191akP5EGVWAofnfs+wCCSgUPqqhq0ZitUgYzixIs=
Subject key identifier: 88:35:7B:58:16:1D:10:B1:F8:0F:F3:61:06:3F:3A:39:26:10:B3:81
Certificate issuer: /CN=ce28340a209b2ba12ae903a74cbb5e2e23aed238
Certificate serial: 067C787F
Authority key identifier: CE:28:34:0A:20:9B:2B:A1:2A:E9:03:A7:4C:BB:5E:2E:23:AE:D2:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zig0CiCbK6Eq6QOnTLteLiOu0jg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/45c689-751f-46d7-9b6c-b1fc547b7322/1/iDV7WBYdELH4D_NhBj86OSYQs4E.roa
Signing time: Mon 11 Apr 2022 20:25:24 +0000
ROA not before: Mon 11 Apr 2022 20:25:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62298
IP address blocks: 91.205.40.0/24 maxlen: 24
2a01:5340::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108820607 (0x67c787f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce28340a209b2ba12ae903a74cbb5e2e23aed238
Validity
Not Before: Apr 11 20:25:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88357b58161d10b1f80ff361063f3a392610b381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a7:52:ba:0a:0a:04:76:b0:2d:92:09:e4:d8:
92:5c:62:aa:ee:43:d7:fa:a8:57:ca:83:40:ee:42:
73:b1:54:aa:ea:b5:07:1b:69:4f:ef:00:a0:c0:04:
8f:a7:fd:41:0c:ec:52:c2:1b:00:3f:fa:ec:68:ff:
4b:ed:38:87:f1:e2:d4:8c:df:b2:41:fa:9d:de:78:
34:a6:41:00:77:9d:90:34:78:51:50:e1:21:1e:91:
5c:df:65:4c:d9:93:e3:e4:16:62:fe:cb:84:a0:7e:
a9:45:68:82:da:4c:55:be:e4:ea:51:4d:06:73:bf:
03:21:d5:4c:40:c8:55:44:e8:07:34:0e:2f:e2:e2:
67:45:0e:d2:5e:a9:03:8c:d1:4e:f0:c8:ef:aa:e1:
cb:75:52:ad:a5:73:8f:9d:f7:65:7e:86:a1:74:21:
78:ec:7d:5f:3f:1a:1c:d0:5c:e7:7a:1f:21:2b:eb:
0b:dd:19:55:25:a9:19:38:1b:e6:9d:bd:a8:24:4c:
e7:de:ec:68:33:52:54:36:54:20:d3:cf:f8:4a:c7:
6a:c4:dc:b0:ab:dc:6f:97:ab:0b:49:32:47:f4:58:
0c:67:eb:65:4b:e6:d0:68:c9:6b:a4:d4:68:1d:d6:
a9:da:83:2e:c2:56:06:45:75:e1:75:d4:5f:9e:af:
68:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:35:7B:58:16:1D:10:B1:F8:0F:F3:61:06:3F:3A:39:26:10:B3:81
X509v3 Authority Key Identifier:
keyid:CE:28:34:0A:20:9B:2B:A1:2A:E9:03:A7:4C:BB:5E:2E:23:AE:D2:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zig0CiCbK6Eq6QOnTLteLiOu0jg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/45c689-751f-46d7-9b6c-b1fc547b7322/1/iDV7WBYdELH4D_NhBj86OSYQs4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/45c689-751f-46d7-9b6c-b1fc547b7322/1/zig0CiCbK6Eq6QOnTLteLiOu0jg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.40.0/24
IPv6:
2a01:5340::/29
Signature Algorithm: sha256WithRSAEncryption
99:f7:db:a8:34:f5:77:60:34:48:26:b2:bd:17:1d:d2:64:51:
1f:9d:69:9f:9e:01:8d:1f:12:aa:81:f1:83:ae:44:d6:7e:13:
f1:80:92:8e:7b:d1:f5:d1:bf:e6:f1:2d:2c:9c:a8:eb:42:ff:
b0:bf:30:86:6a:46:d8:c2:b8:f8:c6:b7:ca:54:75:53:c5:79:
2a:e0:27:a5:d9:46:bf:26:c6:1c:ea:1f:f0:39:14:ae:eb:54:
40:4b:eb:65:ff:6f:2f:16:10:99:8f:d8:4f:b5:de:7a:a8:4d:
ff:47:ee:54:79:21:4d:22:2f:bd:66:38:9e:c8:86:91:4d:95:
e1:04:50:2b:ef:8f:dc:7a:43:b3:be:b2:f2:55:86:8a:8d:37:
e5:42:0b:d5:4c:1f:7b:68:8c:16:60:8e:80:1f:e2:ba:a9:09:
d6:bc:54:8d:a5:3b:b6:21:15:eb:b4:9f:2f:57:43:13:dd:2c:
1b:e8:7b:e3:6a:6a:ad:05:f5:46:a2:2e:64:d7:72:5c:46:56:
5f:ed:ab:da:a3:cf:ff:26:a9:c9:e8:41:08:4a:c0:98:5d:c4:
25:aa:d1:f8:0c:ec:86:b8:98:6c:53:ae:ac:34:48:97:81:ab:
e7:6c:3b:71:97:d0:c4:65:33:c3:e6:bf:eb:d5:bb:e0:66:af:
2d:98:fa:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:25 2023 by rpki-client on console-fra.rpki-client.org