Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/360b17-7e17-451b-abd5-85a534f180fd/1/0RVRaRMLzqOFeTYrPHZx_u7mmSU.roa
File: 0RVRaRMLzqOFeTYrPHZx_u7mmSU.roa (raw, json)
Hash identifier: OvVAEqnWOqiOv9WDmnAMFaSK1MV0lv1jOJJC2R6DdGQ=
Subject key identifier: D1:15:51:69:13:0B:CE:A3:85:79:36:2B:3C:76:71:FE:EE:E6:99:25
Certificate issuer: /CN=28ac9edd240bfc4520ce0bc9b245963d24e2bfe2
Certificate serial: 03DDE4FB
Authority key identifier: 28:AC:9E:DD:24:0B:FC:45:20:CE:0B:C9:B2:45:96:3D:24:E2:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KKye3SQL_EUgzgvJskWWPSTiv-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/360b17-7e17-451b-abd5-85a534f180fd/1/0RVRaRMLzqOFeTYrPHZx_u7mmSU.roa
Signing time: Sat 01 Jan 2022 13:00:46 +0000
ROA not before: Sat 01 Jan 2022 13:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60945
IP address blocks: 92.60.44.0/22 maxlen: 24
91.218.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64873723 (0x3dde4fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28ac9edd240bfc4520ce0bc9b245963d24e2bfe2
Validity
Not Before: Jan 1 13:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1155169130bcea38579362b3c7671feeee69925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:fc:50:1b:d6:85:e8:6b:e6:e7:2f:e0:0c:0e:
32:e2:0c:29:8d:76:97:2e:9c:47:3e:cf:ad:76:aa:
01:ea:eb:23:65:eb:c5:59:b7:71:04:d4:f7:13:c6:
9b:57:27:b8:83:d6:07:6e:cb:cf:be:81:14:db:15:
be:7d:f8:c4:18:3f:26:f9:d5:9f:fe:a4:0a:3d:db:
12:5e:f1:5f:7b:df:77:53:6a:46:29:e4:78:90:f4:
be:a1:78:15:82:11:56:08:6d:b6:d0:dc:74:bf:ec:
a1:65:f5:14:fa:ab:6c:1f:0f:03:17:de:2e:2d:85:
1e:ac:54:f6:93:01:64:26:18:00:73:86:ca:1d:66:
da:8f:a3:94:7f:4b:2d:64:4a:02:62:9f:ab:66:b9:
1a:5d:39:43:5d:1c:8b:1e:68:84:44:41:83:e7:e8:
6f:36:0e:0f:97:fe:90:02:c0:d5:72:86:80:c6:b2:
26:cc:4b:8c:ca:19:1e:9e:fe:4b:df:3f:2a:95:fd:
c5:5d:01:71:5c:15:54:32:f0:55:1c:39:4f:7a:23:
9a:24:94:a0:b3:ce:14:e4:3e:99:1c:c7:fa:19:ad:
14:3a:97:25:d1:39:4f:c4:c0:1b:05:76:37:56:13:
e8:46:f9:d6:7e:cf:d7:38:df:72:aa:09:c2:5d:10:
a6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:15:51:69:13:0B:CE:A3:85:79:36:2B:3C:76:71:FE:EE:E6:99:25
X509v3 Authority Key Identifier:
keyid:28:AC:9E:DD:24:0B:FC:45:20:CE:0B:C9:B2:45:96:3D:24:E2:BF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KKye3SQL_EUgzgvJskWWPSTiv-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/360b17-7e17-451b-abd5-85a534f180fd/1/0RVRaRMLzqOFeTYrPHZx_u7mmSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/360b17-7e17-451b-abd5-85a534f180fd/1/KKye3SQL_EUgzgvJskWWPSTiv-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.58.0/24
92.60.44.0/22
Signature Algorithm: sha256WithRSAEncryption
07:c8:65:f8:c2:cc:89:b5:41:d2:e1:04:6e:75:d0:70:b3:b2:
9e:bb:4a:f7:6d:b4:75:f0:b0:ea:05:c0:8e:82:43:93:a3:ca:
3e:4a:24:f1:40:e6:57:f2:2e:e6:4c:6d:31:23:10:ee:6d:8f:
20:69:16:f7:7c:4d:58:ee:19:5c:b5:d6:91:5b:98:2a:63:21:
56:f8:9e:c4:f3:b3:c4:b6:62:4b:dc:6a:65:1d:81:17:a1:a9:
47:7f:02:94:bd:6a:79:d4:d6:85:7c:12:0f:44:ef:cb:b4:85:
be:a1:ba:a7:e7:0e:9f:78:2e:27:1e:9b:74:5d:b6:50:07:fd:
37:e8:a3:6d:06:ee:7c:bd:61:50:0f:05:31:fb:70:2e:b0:da:
8e:32:c4:d8:06:90:e2:22:a0:16:f0:4a:7a:1f:87:16:94:dc:
ba:23:e5:80:12:bc:93:95:a1:8e:2d:59:19:7b:b6:43:75:4d:
74:36:83:fc:88:05:96:6a:d5:3d:e4:c9:f7:c1:ee:b2:d5:e8:
f8:a1:70:79:d3:95:d0:eb:39:fa:f5:60:7d:73:2f:5f:0b:a0:
e6:67:f8:94:22:94:4f:4a:0c:99:49:0a:d7:fc:d5:b1:75:e9:
e0:f6:e2:81:fc:7c:b8:c7:27:7b:92:8c:34:5f:65:1c:00:0b:
6f:6b:16:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org