Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/dIZVvA0AwVV0KRqpQ8d2L6DSAM0.roa
File: dIZVvA0AwVV0KRqpQ8d2L6DSAM0.roa (raw, json)
Hash identifier: y/IvA8ldoMwyQufSOwwzUcg8FCgMedaKFHHLNWOzTRs=
Subject key identifier: 74:86:55:BC:0D:00:C1:55:74:29:1A:A9:43:C7:76:2F:A0:D2:00:CD
Certificate issuer: /CN=1903647efb243662e57e61d4ec45b4a25a37eac8
Certificate serial: 3896BBA1
Authority key identifier: 19:03:64:7E:FB:24:36:62:E5:7E:61:D4:EC:45:B4:A2:5A:37:EA:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQNkfvskNmLlfmHU7EW0olo36sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/dIZVvA0AwVV0KRqpQ8d2L6DSAM0.roa
Signing time: Mon 04 Apr 2022 14:13:50 +0000
ROA not before: Mon 04 Apr 2022 14:13:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25538
IP address blocks: 217.10.0.0/20 maxlen: 20
193.110.90.0/24 maxlen: 24
91.210.72.0/22 maxlen: 22
2001:1410::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949402529 (0x3896bba1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1903647efb243662e57e61d4ec45b4a25a37eac8
Validity
Not Before: Apr 4 14:13:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=748655bc0d00c15574291aa943c7762fa0d200cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:55:40:d7:8a:2d:4e:0b:e9:4f:cf:48:d3:17:
32:98:ca:1c:b0:22:e5:e1:a8:3f:6f:b6:37:f9:36:
21:b2:3b:45:f3:42:d3:db:30:f0:eb:19:03:c0:c7:
4b:e3:fe:c2:7f:42:e5:01:d4:6b:33:00:64:28:77:
f8:93:21:e5:85:b2:db:b2:82:18:40:b4:6b:30:a4:
3a:a1:92:ef:80:a9:64:03:21:6f:0d:4f:2e:28:61:
c3:df:c0:a2:81:67:64:49:a7:d4:65:dd:4a:38:7e:
56:47:49:05:4b:c4:85:c1:ba:65:26:fd:fa:e7:b5:
08:80:46:a8:a6:b3:da:4f:99:22:a8:24:49:1e:5f:
8f:a1:e9:93:d1:6f:db:63:64:3a:88:8a:4f:c5:50:
80:7f:4d:b6:65:76:39:e4:7d:fa:f0:ac:07:03:52:
1b:c7:8a:b2:b7:de:e2:db:f4:5f:49:58:d3:de:79:
5d:06:1d:51:8d:9c:c4:0a:65:b2:84:fb:71:71:3d:
13:79:da:90:01:b2:46:84:23:83:3c:7a:d7:55:9e:
42:58:f5:cd:44:77:b8:fe:ec:21:ea:b1:71:56:81:
0c:b8:35:7a:b4:19:e2:20:f1:ad:bb:ef:ee:bd:2d:
21:17:33:e7:2a:2b:5b:ac:aa:da:7c:54:40:20:86:
53:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:86:55:BC:0D:00:C1:55:74:29:1A:A9:43:C7:76:2F:A0:D2:00:CD
X509v3 Authority Key Identifier:
keyid:19:03:64:7E:FB:24:36:62:E5:7E:61:D4:EC:45:B4:A2:5A:37:EA:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQNkfvskNmLlfmHU7EW0olo36sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/dIZVvA0AwVV0KRqpQ8d2L6DSAM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/6eefee-c9de-4728-aca8-a4c3432fb00f/1/GQNkfvskNmLlfmHU7EW0olo36sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.72.0/22
193.110.90.0/24
217.10.0.0/20
IPv6:
2001:1410::/32
Signature Algorithm: sha256WithRSAEncryption
79:58:8e:eb:19:6f:9c:fd:a6:77:0d:5e:47:89:e3:30:27:ad:
c2:05:f5:9f:55:93:fb:26:8d:b8:21:7c:60:86:4f:5f:8f:9d:
18:78:91:be:87:73:8d:b2:f6:52:9a:73:78:8a:5b:6e:17:d6:
39:ea:00:ab:7e:8a:e7:cc:7d:1b:4e:07:ae:30:11:f8:e7:f6:
05:e6:fc:89:68:8b:90:9c:9b:ca:89:8a:fa:b6:cb:ff:17:59:
a6:23:cc:be:f6:35:b6:8e:1f:74:d9:06:02:72:77:ca:10:2b:
d1:09:85:2f:ea:ca:60:08:a0:db:10:0e:a7:47:19:96:c8:ea:
28:fb:ed:b1:c1:cf:e5:9d:51:a5:ba:79:c0:fc:ca:73:75:7e:
46:01:ae:4d:6a:d3:f7:80:70:b8:27:3c:6d:14:b2:a8:79:af:
2b:ea:77:b0:51:d2:d1:76:c0:9e:79:c5:09:62:e3:e1:81:74:
a7:d6:da:2c:4d:17:4c:a1:21:e3:21:b9:49:6e:9b:62:45:ba:
c9:dc:5f:79:65:89:47:cd:7a:86:2b:5d:4d:98:73:d1:c3:4b:
f4:b1:b8:d1:f1:c7:16:9e:1c:fc:19:ea:81:68:e5:92:ff:50:
77:44:4f:ad:63:27:2c:58:8b:16:1f:1e:fa:f0:97:d8:d1:ef:
fb:bd:9b:d5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:06 2023 by rpki-client on console-ams.rpki-client.org