Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/9620ce-43f0-42bc-af59-435bda5bd048/1/OK0fHwb_bYKOF5FcxD8pEdBFswE.roa
File: OK0fHwb_bYKOF5FcxD8pEdBFswE.roa (raw, json)
Hash identifier: f6VquKXs2Fnn1ZzabL+nKnYpycdgwP0ED0ifVnvHLZQ=
Subject key identifier: 38:AD:1F:1F:06:FF:6D:82:8E:17:91:5C:C4:3F:29:11:D0:45:B3:01
Certificate issuer: /CN=731535a2eaebc68c1657aafcf5a788c8751d9b62
Certificate serial: 04FB3E7D
Authority key identifier: 73:15:35:A2:EA:EB:C6:8C:16:57:AA:FC:F5:A7:88:C8:75:1D:9B:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxU1ourrxowWV6r89aeIyHUdm2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/9620ce-43f0-42bc-af59-435bda5bd048/1/OK0fHwb_bYKOF5FcxD8pEdBFswE.roa
Signing time: Sat 01 Jan 2022 08:54:48 +0000
ROA not before: Sat 01 Jan 2022 08:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 91.218.37.0/24 maxlen: 24
2a02:ef80::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83574397 (0x4fb3e7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=731535a2eaebc68c1657aafcf5a788c8751d9b62
Validity
Not Before: Jan 1 08:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38ad1f1f06ff6d828e17915cc43f2911d045b301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:90:bb:16:9d:69:18:94:f2:ef:21:3f:4d:e8:
75:48:01:41:4c:a6:02:06:d2:d6:bd:54:fd:9c:7a:
0f:cb:cf:5a:c1:5a:da:d8:3a:20:f8:77:1e:06:f2:
f0:c1:61:36:f5:9f:8e:83:ce:04:62:49:7a:2c:65:
c5:61:df:55:2a:1b:57:64:4b:98:db:b7:a8:67:de:
9e:dc:78:91:14:de:b8:34:da:97:53:b1:75:52:e7:
45:77:1d:52:5d:fa:dd:05:f2:24:17:a3:2e:b6:d4:
06:db:e0:75:49:70:36:be:b9:45:e0:4b:a8:73:3f:
37:6f:90:54:66:f1:ff:8b:88:58:77:d7:b4:11:cb:
49:27:f9:ed:ae:f1:7b:3a:f9:3c:24:c7:88:a2:c9:
68:69:79:fb:27:2a:55:95:30:6e:04:0a:41:68:5f:
9e:3f:56:71:77:53:1a:4f:54:e2:06:70:b4:ac:b5:
d9:e3:c9:9f:ea:0e:a1:e6:4d:8d:30:06:ae:c2:47:
89:ab:cf:da:31:80:d5:46:2b:f9:b6:28:39:a2:b4:
a4:b9:27:96:4b:73:46:0f:09:5b:d4:e5:a0:a4:cc:
a5:06:1b:98:d8:26:ab:52:e2:cb:42:90:bf:7f:43:
07:91:8f:63:de:f9:41:1a:be:e8:b1:8b:e2:ab:03:
5e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:AD:1F:1F:06:FF:6D:82:8E:17:91:5C:C4:3F:29:11:D0:45:B3:01
X509v3 Authority Key Identifier:
keyid:73:15:35:A2:EA:EB:C6:8C:16:57:AA:FC:F5:A7:88:C8:75:1D:9B:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxU1ourrxowWV6r89aeIyHUdm2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/9620ce-43f0-42bc-af59-435bda5bd048/1/OK0fHwb_bYKOF5FcxD8pEdBFswE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/9620ce-43f0-42bc-af59-435bda5bd048/1/cxU1ourrxowWV6r89aeIyHUdm2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.37.0/24
IPv6:
2a02:ef80::/48
Signature Algorithm: sha256WithRSAEncryption
5d:df:e8:c6:38:a8:84:71:bc:18:0a:cb:3c:78:52:bf:c5:dc:
cb:7c:91:0f:01:0c:c8:db:d3:a0:d6:1d:84:5d:40:05:e9:dd:
df:21:b4:4b:87:2c:3e:e6:56:4e:1d:9a:df:63:a1:e3:b7:82:
6c:f1:e6:d9:39:31:0b:44:5e:8e:4c:e8:71:e6:92:c3:40:6a:
44:ab:a4:26:ec:54:dd:dd:95:91:c1:6e:77:14:21:d0:87:e7:
6e:a9:a3:f4:ac:0a:14:b8:89:68:57:08:f0:e6:9b:ff:9c:f0:
b3:86:02:84:b1:8e:21:ce:46:0d:58:6a:6d:6e:4c:f5:f9:5f:
f7:86:9c:7f:b0:d4:2b:31:83:19:fe:25:8b:1d:72:42:23:d4:
62:e3:91:46:e1:5e:a3:70:da:37:fe:8b:30:0a:01:f8:f7:4e:
f7:96:25:67:21:06:2a:55:b3:b2:32:10:bc:6c:bf:62:0a:02:
10:e3:8a:5a:d6:a0:0e:bf:7a:4f:92:7d:51:b8:87:6a:ce:42:
75:3d:39:97:7b:b4:4d:65:16:02:bb:2c:b6:8c:1e:8f:9b:ef:
9c:70:73:cf:35:b5:9c:5e:ae:27:f5:a2:49:ab:00:1c:4a:b3:
f4:b7:de:4b:43:b3:bb:59:45:32:64:b3:b2:f6:13:27:38:7a:
c8:73:94:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:19 2023 by rpki-client on console-ams.rpki-client.org