Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/xVB2Pbew6A66W9l1DvOggyg8sEE.roa
File: xVB2Pbew6A66W9l1DvOggyg8sEE.roa (raw, json)
Hash identifier: Fs+Z2bQ78JrNeEJKCUh5+EiXyAJ80qdelPjTSkn6zQY=
Subject key identifier: C5:50:76:3D:B7:B0:E8:0E:BA:5B:D9:75:0E:F3:A0:83:28:3C:B0:41
Certificate issuer: /CN=ffbcae2b290c801d57d09d025a9348e16706f182
Certificate serial: 0575C107
Authority key identifier: FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/xVB2Pbew6A66W9l1DvOggyg8sEE.roa
Signing time: Sat 01 Jan 2022 09:00:20 +0000
ROA not before: Sat 01 Jan 2022 09:00:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211430
IP address blocks: 91.209.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91603207 (0x575c107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffbcae2b290c801d57d09d025a9348e16706f182
Validity
Not Before: Jan 1 09:00:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c550763db7b0e80eba5bd9750ef3a083283cb041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fb:8b:f3:ed:1a:5d:08:5e:51:80:aa:60:06:
d3:b4:a2:01:b2:ef:e6:0c:94:b6:0f:6e:90:c3:23:
95:ee:05:50:73:59:78:63:8a:5f:c9:9d:b4:bd:7c:
70:7c:21:6f:ed:de:f7:9a:72:ac:81:3c:a8:a7:7f:
d0:a2:d5:69:98:90:b9:85:16:dd:38:14:7b:b3:87:
32:c6:6a:b5:27:70:8a:39:b5:1e:99:de:e5:8e:69:
ad:5f:bb:c6:c3:20:a5:6e:4e:fe:b4:d6:4a:c7:a8:
fb:4c:11:5b:c8:22:8c:dc:8b:2e:e4:15:61:ec:75:
ba:48:67:ca:ac:df:a1:b3:9a:7b:1a:ab:2e:fc:be:
00:92:e9:51:87:bc:f2:73:9b:70:37:a7:6d:11:00:
44:ea:86:e9:1b:ac:21:60:4d:83:26:f7:eb:f4:c8:
f7:57:16:44:b6:88:79:c0:36:bd:2d:a4:db:02:de:
22:08:01:a1:e6:43:12:ab:a4:b8:6b:f1:08:55:8b:
ae:91:22:25:63:8f:c2:b7:91:71:b0:64:18:98:db:
45:53:b0:2f:74:b6:e0:75:20:74:c3:c6:b1:5c:15:
91:91:d6:04:aa:e1:ce:7e:db:1a:35:20:03:7f:2d:
bd:11:df:08:c3:a8:f1:f6:f6:d9:ce:5e:a7:af:2f:
1f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:50:76:3D:B7:B0:E8:0E:BA:5B:D9:75:0E:F3:A0:83:28:3C:B0:41
X509v3 Authority Key Identifier:
keyid:FF:BC:AE:2B:29:0C:80:1D:57:D0:9D:02:5A:93:48:E1:67:06:F1:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7yuKykMgB1X0J0CWpNI4WcG8YI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/xVB2Pbew6A66W9l1DvOggyg8sEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/59bcd1-1e0b-485d-9510-096af478f04b/1/_7yuKykMgB1X0J0CWpNI4WcG8YI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.105.0/24
Signature Algorithm: sha256WithRSAEncryption
86:09:97:2f:8a:5a:e6:f4:2e:1f:90:d1:53:fe:c6:f8:c9:58:
7f:d3:0c:4e:d5:76:7a:e1:b6:0e:e7:20:01:5a:bc:e0:ab:43:
d2:0b:45:cc:16:e3:d1:8e:69:61:dc:fd:15:5d:ab:d2:52:8c:
34:a4:74:10:a3:24:77:0c:38:ff:73:96:c0:e7:a9:b2:e2:e4:
be:cc:05:0d:6c:9b:46:28:78:f7:4f:06:0f:a4:9d:33:b0:fb:
4b:33:57:1a:74:df:cc:45:c6:69:76:7f:45:90:1b:cd:23:1b:
a2:64:f0:77:9e:63:15:56:ec:63:18:f4:d2:58:a1:5c:df:b3:
17:47:d4:28:2e:43:7b:a0:21:fe:2d:eb:67:e5:07:82:1c:28:
df:3e:48:be:3d:31:bf:3b:eb:6e:a2:7a:3f:ec:2d:b3:c1:1f:
40:df:8f:60:c6:4b:20:45:74:63:8d:13:b3:6b:21:b0:94:e2:
29:e5:85:6c:54:7b:19:39:6b:06:1a:64:48:01:72:17:9a:76:
db:e8:6a:df:e4:e3:2d:6d:63:43:21:37:5f:a7:37:a2:b8:8f:
09:19:8a:f3:bc:ac:de:f1:81:45:f0:58:5b:b6:d9:8f:c1:76:
06:53:f2:d4:ff:79:bf:62:4a:3d:25:89:5b:e6:e1:81:d8:f1:
21:3f:01:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:25 2023 by rpki-client on console-fra.rpki-client.org