Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/f7761a-fc38-475c-8a11-94c73346c0ea/1/uQvdU3tY0-acHnTBvGgeCr9gFCg.roa
File: uQvdU3tY0-acHnTBvGgeCr9gFCg.roa (raw, json)
Hash identifier: wMX23xNW6Wcy5hdboGxo07wbIyCSc20GqiTaCdycyiY=
Subject key identifier: B9:0B:DD:53:7B:58:D3:E6:9C:1E:74:C1:BC:68:1E:0A:BF:60:14:28
Certificate issuer: /CN=7b13e05669f556662bec5664e101659f966c826a
Certificate serial: 015888
Authority key identifier: 7B:13:E0:56:69:F5:56:66:2B:EC:56:64:E1:01:65:9F:96:6C:82:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/exPgVmn1VmYr7FZk4QFln5Zsgmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/f7761a-fc38-475c-8a11-94c73346c0ea/1/uQvdU3tY0-acHnTBvGgeCr9gFCg.roa
Signing time: Thu 28 Apr 2022 12:30:35 +0000
ROA not before: Thu 28 Apr 2022 12:30:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 91.223.121.0/24 maxlen: 24
2001:67c:2f70::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88200 (0x15888)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b13e05669f556662bec5664e101659f966c826a
Validity
Not Before: Apr 28 12:30:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b90bdd537b58d3e69c1e74c1bc681e0abf601428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:de:f3:ef:03:dc:01:3a:c2:ef:25:06:2f:71:
ea:ad:74:e3:09:be:36:11:7c:89:f2:74:16:2e:a4:
fd:bb:c4:46:55:aa:55:b4:e0:a1:aa:0c:8d:3b:88:
98:ee:de:25:d4:ec:b1:72:ab:58:51:61:af:e0:f4:
b8:a5:b0:03:77:86:a0:6c:54:1c:ad:78:b6:f3:37:
7e:0b:25:52:65:96:85:03:b5:5f:f2:9a:9d:96:70:
d4:92:4e:28:c6:ec:c1:6a:cf:51:f0:35:cc:94:ee:
c0:df:7f:7d:0d:1c:11:87:9e:55:5f:b2:80:4f:c4:
77:47:34:34:74:d6:7d:73:ca:11:58:93:ef:9f:8e:
b5:88:93:ce:78:36:c9:75:f8:37:c8:2f:de:2f:7e:
b9:73:99:02:b7:d3:56:68:38:6e:0d:18:06:8f:05:
3c:aa:35:09:ce:d2:da:fd:df:90:b9:ab:55:11:dc:
6a:25:d2:5c:1b:6d:e2:4c:1c:94:82:b4:81:7f:cf:
f6:5c:2d:bd:f1:1e:71:58:7a:ff:a0:52:0c:f8:ca:
6f:80:54:66:0d:47:a9:d4:05:76:8d:ef:ee:60:49:
12:64:46:ef:9f:56:19:34:51:ff:6b:51:1e:89:a1:
e8:eb:d3:e8:bd:4c:dd:08:2f:3e:7c:71:cc:cb:2c:
b2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:0B:DD:53:7B:58:D3:E6:9C:1E:74:C1:BC:68:1E:0A:BF:60:14:28
X509v3 Authority Key Identifier:
keyid:7B:13:E0:56:69:F5:56:66:2B:EC:56:64:E1:01:65:9F:96:6C:82:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/exPgVmn1VmYr7FZk4QFln5Zsgmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f7761a-fc38-475c-8a11-94c73346c0ea/1/uQvdU3tY0-acHnTBvGgeCr9gFCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/f7761a-fc38-475c-8a11-94c73346c0ea/1/exPgVmn1VmYr7FZk4QFln5Zsgmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.121.0/24
IPv6:
2001:67c:2f70::/48
Signature Algorithm: sha256WithRSAEncryption
12:d1:82:37:1c:cc:b7:3d:2f:d0:31:7d:e8:60:a7:87:36:c7:
9a:0f:f5:88:4d:4b:15:c0:8d:1d:c7:be:67:8d:e3:ea:ba:82:
aa:2d:ef:3e:0a:21:20:15:07:aa:d1:64:94:cd:91:4f:90:82:
30:e3:c9:d5:51:9f:73:35:7d:a6:c6:bd:33:dd:a5:95:39:91:
df:ba:30:51:36:83:60:b6:16:15:05:91:0e:3a:36:60:a7:dd:
c1:e2:31:64:68:9c:ef:07:4c:79:f0:e5:3f:6e:14:b4:3d:9a:
a4:24:aa:67:d7:91:4f:f6:37:24:4f:25:fb:13:58:46:50:3c:
c2:e6:35:29:be:65:bb:f7:a3:04:31:da:cb:ff:e8:ce:34:18:
64:25:4b:8a:eb:43:2d:6e:59:3d:94:80:e0:3a:cd:25:06:e0:
00:2b:a6:b1:09:b9:76:a0:e5:5c:8e:b2:50:9c:d0:a3:90:06:
ae:c5:00:92:77:79:45:26:56:95:a4:69:ca:87:a3:33:7e:04:
eb:4f:05:f5:24:f4:53:bc:bb:a4:c8:b5:dc:0e:50:59:5e:5b:
04:c8:b3:77:69:0e:ef:11:15:92:55:fc:59:13:8c:c7:57:af:
3c:d3:be:4b:e7:d3:1a:91:b0:ce:80:d5:0d:7a:e7:77:17:76:
45:36:0d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:24 2024 by rpki-client on console-fra.rpki-client.org