Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/360b17-7e17-451b-abd5-85a534f180fd/1/Yj2K0Zd9DNGkz-tA62qRKxC6654.roa
File: Yj2K0Zd9DNGkz-tA62qRKxC6654.roa (raw, json)
Hash identifier: K3KhwdJ8oGC8tv/ovn38yR8vzryNuHz0h5B41pIryI8=
Subject key identifier: 62:3D:8A:D1:97:7D:0C:D1:A4:CF:EB:40:EB:6A:91:2B:10:BA:EB:9E
Certificate issuer: /CN=28ac9edd240bfc4520ce0bc9b245963d24e2bfe2
Certificate serial: 03DCFCF2
Authority key identifier: 28:AC:9E:DD:24:0B:FC:45:20:CE:0B:C9:B2:45:96:3D:24:E2:BF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KKye3SQL_EUgzgvJskWWPSTiv-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/360b17-7e17-451b-abd5-85a534f180fd/1/Yj2K0Zd9DNGkz-tA62qRKxC6654.roa
Signing time: Sat 01 Jan 2022 13:00:46 +0000
ROA not before: Sat 01 Jan 2022 13:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3170
IP address blocks: 92.60.44.0/22 maxlen: 24
91.218.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64814322 (0x3dcfcf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28ac9edd240bfc4520ce0bc9b245963d24e2bfe2
Validity
Not Before: Jan 1 13:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=623d8ad1977d0cd1a4cfeb40eb6a912b10baeb9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:51:30:7f:03:ed:ab:45:67:54:00:fc:39:dd:
e0:31:7c:f9:8c:4d:8c:5d:a0:b2:44:58:0e:87:29:
63:da:a8:4c:fe:7e:3d:00:b2:86:42:b1:69:b1:bc:
76:c7:ee:81:90:27:06:cd:e3:4f:24:a1:a5:53:1c:
0e:df:49:65:69:f2:6a:64:11:e2:0b:56:06:d3:5f:
a4:5a:9c:a3:cd:b2:ce:25:b6:a1:ea:7d:b5:61:f3:
e0:26:a2:c5:2f:24:c4:70:cb:e0:91:69:32:c3:8f:
fc:43:cb:bd:2e:a4:a8:e0:50:37:a2:09:b0:66:fe:
6e:2a:aa:d5:1e:54:86:f4:cf:69:c6:9e:87:a3:7f:
fe:83:86:dd:60:ff:57:71:59:c0:4c:b4:f2:4e:29:
ac:d0:d3:1d:c2:c9:04:d4:eb:79:7e:9e:0a:9d:52:
19:6d:94:1f:99:d7:a6:d3:af:9f:b9:b8:68:56:40:
64:5d:bc:ba:b8:93:4b:cd:f8:59:3c:bf:d3:29:f1:
98:a8:24:28:8b:89:81:f1:65:f3:3e:98:7d:75:6d:
38:53:4a:45:9f:c3:54:f3:6e:9f:8a:d9:78:62:6c:
3d:15:ab:80:88:24:ae:97:0d:48:c5:a6:c9:27:31:
83:79:10:de:4a:cf:49:60:72:2d:66:26:80:51:ac:
c3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:3D:8A:D1:97:7D:0C:D1:A4:CF:EB:40:EB:6A:91:2B:10:BA:EB:9E
X509v3 Authority Key Identifier:
keyid:28:AC:9E:DD:24:0B:FC:45:20:CE:0B:C9:B2:45:96:3D:24:E2:BF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KKye3SQL_EUgzgvJskWWPSTiv-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/360b17-7e17-451b-abd5-85a534f180fd/1/Yj2K0Zd9DNGkz-tA62qRKxC6654.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/360b17-7e17-451b-abd5-85a534f180fd/1/KKye3SQL_EUgzgvJskWWPSTiv-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.58.0/24
92.60.44.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:92:8e:f0:d6:67:88:79:32:af:f3:39:24:3f:a7:70:09:df:
18:5d:87:07:7a:33:45:24:62:c0:0c:c4:8a:e6:6d:56:d4:37:
42:a7:a8:0f:42:b0:80:e3:a9:e8:e2:21:51:50:5c:55:e2:0a:
a2:69:32:1c:28:92:c8:2e:59:88:19:66:87:a1:57:e4:fa:49:
2f:cb:d0:0a:cf:77:92:62:d0:11:6e:52:c2:b8:30:8b:00:9d:
bc:49:be:e3:af:43:7d:04:95:06:ed:dc:5b:c0:f6:d1:77:ba:
b0:ec:2d:78:88:3e:9a:8a:2a:7e:45:8a:44:6b:e5:ba:19:08:
7e:6e:00:47:bf:20:01:71:0b:2e:e0:9f:9d:39:46:c7:fd:63:
1e:60:c2:19:0d:c8:2a:18:12:ab:b7:26:23:b9:97:80:d9:85:
3e:03:80:99:ac:7d:90:02:40:64:63:08:ab:86:1c:66:19:98:
9d:d6:34:2d:12:05:4f:78:4a:93:66:02:d5:a8:f2:61:29:09:
02:c7:46:30:ae:25:27:89:80:c5:e9:71:1e:74:50:1f:81:5d:
a0:83:d9:61:86:ed:29:91:e3:67:95:88:c7:51:29:38:03:c1:
09:fd:1a:a7:f4:bd:cd:9e:1c:72:e1:5a:eb:9f:dc:ae:8c:13:
db:a7:c6:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org