Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/ae8da3-9cbd-444a-aaef-290a3fc4bb60/1/i-y_2WLQS4NLPhTn5XymOMxdrLs.roa
File: i-y_2WLQS4NLPhTn5XymOMxdrLs.roa (raw, json)
Hash identifier: Pb0xlfnbj95qRqxYRMC7hK5ldTSWfa79kn7QVqLgyfc=
Subject key identifier: 8B:EC:BF:D9:62:D0:4B:83:4B:3E:14:E7:E5:7C:A6:38:CC:5D:AC:BB
Certificate issuer: /CN=4300d06e2a69a3664b6abcfe22bd2d06b5336564
Certificate serial: 024BE13C
Authority key identifier: 43:00:D0:6E:2A:69:A3:66:4B:6A:BC:FE:22:BD:2D:06:B5:33:65:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QwDQbippo2ZLarz-Ir0tBrUzZWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/ae8da3-9cbd-444a-aaef-290a3fc4bb60/1/i-y_2WLQS4NLPhTn5XymOMxdrLs.roa
Signing time: Sat 01 Jan 2022 09:59:15 +0000
ROA not before: Sat 01 Jan 2022 09:59:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48642
IP address blocks: 91.235.188.0/22 maxlen: 22
109.197.224.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38527292 (0x24be13c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4300d06e2a69a3664b6abcfe22bd2d06b5336564
Validity
Not Before: Jan 1 09:59:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8becbfd962d04b834b3e14e7e57ca638cc5dacbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e7:a1:77:81:f6:f8:87:5b:70:12:88:25:2c:
0b:f9:41:40:3a:1f:75:a6:f2:45:85:c1:cd:9c:67:
a7:66:10:4d:10:bd:41:c5:ff:1e:ef:51:65:6c:f1:
dc:12:b9:00:e0:16:82:d0:3d:08:ee:e3:b8:bd:9e:
d4:7c:0c:4f:d1:41:46:93:da:03:b8:2a:ac:5a:50:
32:ac:97:81:02:5e:b7:e7:11:7c:0b:ab:17:a9:da:
64:43:7d:52:f4:90:de:87:e5:7d:a2:17:25:33:10:
5a:99:50:e7:4b:28:80:20:c4:a3:66:5d:3d:01:12:
95:9a:ef:8e:21:ab:b1:99:d1:4a:ef:47:07:8d:cd:
e0:ce:4e:16:24:e0:99:c2:f6:b8:ab:42:2c:2b:ff:
12:f0:a6:e5:91:45:16:18:ca:19:0d:91:80:4d:e9:
9b:b6:98:5a:9f:e2:5e:53:54:73:61:e2:6f:04:96:
80:30:ff:98:90:fc:db:79:b0:28:0b:b1:13:ef:61:
bc:a8:c0:8f:74:19:55:86:a8:5a:53:96:8c:77:bb:
38:1a:27:09:16:46:5a:a7:4f:71:95:16:7c:54:15:
98:3f:77:a5:fa:30:95:78:d7:5f:3a:a3:04:76:b1:
02:11:1e:07:e8:b6:9d:5b:03:90:c8:81:6f:2b:5e:
c9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:EC:BF:D9:62:D0:4B:83:4B:3E:14:E7:E5:7C:A6:38:CC:5D:AC:BB
X509v3 Authority Key Identifier:
keyid:43:00:D0:6E:2A:69:A3:66:4B:6A:BC:FE:22:BD:2D:06:B5:33:65:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QwDQbippo2ZLarz-Ir0tBrUzZWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ae8da3-9cbd-444a-aaef-290a3fc4bb60/1/i-y_2WLQS4NLPhTn5XymOMxdrLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ae8da3-9cbd-444a-aaef-290a3fc4bb60/1/QwDQbippo2ZLarz-Ir0tBrUzZWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.188.0/22
109.197.224.0/21
Signature Algorithm: sha256WithRSAEncryption
64:82:0b:ca:97:d5:b0:8d:ae:13:cf:9e:a6:0f:40:ff:b5:be:
83:e1:d4:4b:69:14:93:57:e7:f5:48:2f:93:ef:89:55:30:35:
6e:9f:ed:68:6a:8f:2d:74:7f:46:2b:3f:15:75:5a:7f:e8:7a:
12:18:bb:d6:df:33:a3:81:d0:cb:b5:81:5d:58:01:8a:b5:61:
66:10:3a:ac:57:98:fb:19:0e:df:79:a6:70:94:83:ad:98:66:
dc:2d:03:af:9b:ba:33:49:52:44:fa:a2:8d:2a:84:4f:71:d0:
a8:7e:e6:5f:ef:14:6d:f1:f0:35:68:e4:10:b0:c3:d7:50:47:
07:8d:35:78:3c:30:1a:e6:55:0d:1c:86:af:1f:59:3f:f8:36:
37:47:ad:42:99:2b:82:78:3d:62:4e:87:c8:62:b2:9e:ae:16:
d3:ea:fc:cb:74:25:cc:3a:88:af:80:f9:73:3a:ec:3a:7a:b3:
ba:ef:35:b6:b2:9b:0e:cb:e2:58:4d:0e:8a:bd:6e:54:ed:8c:
e9:04:5e:91:15:95:1e:1c:2a:c6:36:a3:6b:f9:17:fc:03:a3:
40:07:12:09:36:53:90:6e:02:e2:6d:12:aa:e9:8a:13:77:ab:
e9:2c:5a:cf:7c:b6:cb:7c:66:99:6b:3e:66:d8:53:c1:40:f2:
b2:72:33:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:29 2023 by rpki-client on console-fra.rpki-client.org