Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/sE20VyL2mU6egRN_4ujsjA3Sjjs.roa
File: sE20VyL2mU6egRN_4ujsjA3Sjjs.roa (raw, json)
Hash identifier: nqlnUzOVq+heHYVcxDBXXd7tUflAaruv62JHkmtZf+k=
Subject key identifier: B0:4D:B4:57:22:F6:99:4E:9E:81:13:7F:E2:E8:EC:8C:0D:D2:8E:3B
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 01837EB7A6957714C712FAF1288957162E67
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/sE20VyL2mU6egRN_4ujsjA3Sjjs.roa
Signing time: Tue 27 Sep 2022 11:31:48 +0000
ROA not before: Tue 27 Sep 2022 11:31:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202704
IP address blocks: 91.217.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7e:b7:a6:95:77:14:c7:12:fa:f1:28:89:57:16:2e:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Sep 27 11:31:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b04db45722f6994e9e81137fe2e8ec8c0dd28e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:88:95:e9:7d:fc:bd:a7:b3:1a:97:fb:f1:f1:
d0:73:7a:64:9f:63:a6:cd:9c:f1:50:de:df:f9:16:
09:86:8b:49:17:50:83:21:73:17:2c:01:76:a1:d9:
a6:c0:48:25:3b:20:5b:26:b1:17:bb:ca:9e:b1:fb:
70:c3:c4:d7:81:11:96:08:c6:cc:ef:a6:54:1e:6c:
3d:1d:8b:bc:1f:4c:65:2c:2f:19:ea:de:25:d0:c3:
7e:2a:ac:9d:46:5c:06:bb:ea:aa:bb:95:d7:59:06:
75:ac:d4:ba:45:0a:75:63:08:96:c0:6c:8a:37:c1:
bd:c7:f1:45:2a:1c:30:66:6a:bb:28:f6:49:a8:bb:
12:66:74:1d:9b:cd:ae:1b:45:12:5e:7c:f3:6c:e5:
4b:97:fb:92:ea:7d:71:22:06:db:23:63:fb:8a:73:
e9:3c:be:4c:dc:b4:fe:e8:33:0d:16:90:26:5c:3d:
34:57:05:f8:8c:1d:c8:67:bc:59:d5:0e:e9:67:d5:
0a:a3:6a:57:7b:eb:71:9d:35:99:be:8f:7e:a7:d0:
7b:51:87:ed:51:0f:fa:e7:98:ab:fe:dc:6c:11:66:
22:21:f3:ca:cf:d7:33:57:2b:ec:21:0c:af:18:45:
d6:78:fd:4a:0d:90:42:83:64:9f:e8:a5:5f:3b:34:
af:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:4D:B4:57:22:F6:99:4E:9E:81:13:7F:E2:E8:EC:8C:0D:D2:8E:3B
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/sE20VyL2mU6egRN_4ujsjA3Sjjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
Signature Algorithm: sha256WithRSAEncryption
43:a8:23:d7:79:0d:8f:93:7d:b6:9c:dd:b8:16:45:f4:3f:20:
51:0e:14:11:6e:de:19:e2:e9:00:da:e0:92:d4:9a:a7:55:6a:
e1:d5:18:f8:ce:f0:c9:b3:71:a4:e3:f9:f0:6b:ee:71:e1:4e:
9c:05:00:31:3e:38:7f:61:f0:36:27:01:07:b8:0e:aa:96:bc:
fe:c6:0e:ec:41:2a:93:57:a1:98:ac:28:00:3d:8f:93:07:8e:
7e:ac:9c:87:e9:11:c9:cf:0f:22:a6:bc:01:76:0b:ab:5b:3d:
e7:3a:02:df:dc:09:e4:05:2a:2f:3f:5f:16:1a:b0:f3:8f:6c:
1f:e4:6b:82:9f:d6:63:2d:79:f8:8e:4c:0b:06:5c:bd:47:f1:
22:9d:16:83:70:12:2a:80:5e:ce:33:fe:3a:9d:be:58:01:95:
21:1f:b5:bf:5e:fc:fe:f8:0f:72:16:c7:99:8b:c2:1d:ea:bb:
56:86:19:a8:67:de:d1:0a:72:61:c8:f4:11:28:1a:e8:db:01:
d0:65:aa:d1:78:9a:eb:90:3d:4d:f5:d5:2c:b3:b9:6d:71:e9:
b6:ca:26:6a:7b:d5:73:44:91:e4:59:b5:e1:ac:59:38:50:ed:
0b:d5:e7:bf:b4:36:05:73:0f:38:1b:17:2c:d5:f2:bd:d6:9b:
4c:4f:ce:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:33 2023 by rpki-client on console-fra.rpki-client.org