Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/8ad64a-057f-472a-89b1-5eef024d9a92/1/RXyTd9oJa5YPRt5ik67oNGYQGDo.roa
File: RXyTd9oJa5YPRt5ik67oNGYQGDo.roa (raw, json)
Hash identifier: qpocaXkbzTT6mlUBpOSP/1HCMFdbjB8lHYe7P4+LANs=
Subject key identifier: 45:7C:93:77:DA:09:6B:96:0F:46:DE:62:93:AE:E8:34:66:10:18:3A
Certificate issuer: /CN=1a5b7d43bb4c83e7c7d97ce07543a96d74c69fda
Certificate serial: 017345B0
Authority key identifier: 1A:5B:7D:43:BB:4C:83:E7:C7:D9:7C:E0:75:43:A9:6D:74:C6:9F:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Glt9Q7tMg-fH2XzgdUOpbXTGn9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/8ad64a-057f-472a-89b1-5eef024d9a92/1/RXyTd9oJa5YPRt5ik67oNGYQGDo.roa
Signing time: Sat 01 Jan 2022 14:03:35 +0000
ROA not before: Sat 01 Jan 2022 14:03:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197479
IP address blocks: 91.222.145.0/24 maxlen: 24
91.222.144.0/22 maxlen: 22
91.222.144.0/24 maxlen: 24
91.222.146.0/24 maxlen: 24
91.222.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24331696 (0x17345b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a5b7d43bb4c83e7c7d97ce07543a96d74c69fda
Validity
Not Before: Jan 1 14:03:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=457c9377da096b960f46de6293aee8346610183a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:83:dc:87:d5:43:3d:af:6e:49:0d:21:be:95:
67:a9:20:ae:f1:e3:a7:14:e4:97:78:41:4e:24:e8:
7a:31:32:53:54:bc:8e:3d:2d:2d:53:38:ac:32:23:
76:96:7c:18:f5:8e:be:a6:4b:79:b0:75:3d:98:8e:
85:89:db:65:2c:9f:ba:55:4f:87:6e:e2:a7:78:21:
ac:fc:4c:cc:0e:c5:9e:fb:a1:ee:ee:57:f7:0f:3a:
e3:fa:45:c1:e0:8f:f3:4d:f0:91:ac:a8:54:0d:24:
36:b2:da:2c:26:62:11:28:a4:df:f3:a4:ad:33:55:
e6:03:bc:51:37:b3:db:8a:3e:1c:c0:5f:51:a0:d9:
78:39:01:74:3e:f7:c9:73:f4:48:00:68:cc:0a:0c:
65:a8:b7:f9:6f:dc:ac:49:9d:9e:5e:17:35:f7:f3:
1a:39:92:16:7a:2d:39:8b:08:c9:7a:46:06:69:93:
bb:bf:b9:82:43:72:69:b2:ae:c6:f5:2f:b5:bf:4a:
84:10:9c:d6:25:05:ab:7e:df:4d:44:f8:f1:a6:27:
bd:a5:b6:3f:8e:40:1f:88:5d:f7:bd:9f:dd:d7:0b:
f7:48:38:c8:be:49:a5:0e:bc:06:28:ba:35:81:55:
c6:2f:fc:e7:16:2e:45:19:ac:65:d4:56:1a:52:cd:
20:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:7C:93:77:DA:09:6B:96:0F:46:DE:62:93:AE:E8:34:66:10:18:3A
X509v3 Authority Key Identifier:
keyid:1A:5B:7D:43:BB:4C:83:E7:C7:D9:7C:E0:75:43:A9:6D:74:C6:9F:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Glt9Q7tMg-fH2XzgdUOpbXTGn9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/8ad64a-057f-472a-89b1-5eef024d9a92/1/RXyTd9oJa5YPRt5ik67oNGYQGDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/8ad64a-057f-472a-89b1-5eef024d9a92/1/Glt9Q7tMg-fH2XzgdUOpbXTGn9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.144.0/22
Signature Algorithm: sha256WithRSAEncryption
45:41:8e:6c:6c:5c:04:bb:19:d5:47:4e:5f:c9:14:31:2f:b2:
44:19:50:7e:2c:7a:53:f3:fc:d5:47:22:e2:0f:4d:f7:ee:9e:
a3:b5:10:1d:e8:4a:f9:7b:f5:b4:2d:b4:59:8c:33:69:0d:44:
ff:d5:86:0c:42:6b:51:5d:24:31:72:c9:b8:2f:47:ad:dc:f4:
3f:31:1f:81:b9:2d:9f:2c:16:61:12:6d:a9:af:7e:6b:d2:69:
d3:22:d6:12:dc:a2:50:95:c7:f9:6b:14:09:5d:b8:2c:9c:10:
91:bb:17:4e:e6:e8:73:3d:41:4a:42:56:af:aa:b5:f0:8c:9a:
a3:c3:f2:07:9d:b6:ce:95:5d:eb:7a:32:a8:0c:c3:52:3e:a9:
33:b8:2e:07:b8:0d:96:46:d4:af:4b:6a:bc:f3:13:dd:d6:fb:
59:14:db:79:3e:5d:05:8e:05:1d:8a:36:bb:3b:78:16:7a:32:
4c:c9:68:b1:c3:01:e9:66:74:a5:c9:7f:cc:b9:57:9a:7f:6b:
7f:d4:de:84:9f:e6:14:12:8a:7c:cd:b2:13:3c:de:f4:52:f6:
48:f7:70:9f:41:da:16:aa:32:83:ab:23:bd:7e:d1:26:53:40:
35:2c:13:b3:7f:6f:a5:26:68:51:00:33:9e:3e:1a:24:33:a7:
93:00:fe:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:17 2023 by rpki-client on console-ams.rpki-client.org