Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/ErYci4UCg04s7UPU_07vs4yhEPI.roa
File: ErYci4UCg04s7UPU_07vs4yhEPI.roa (raw, json)
Hash identifier: j4GVyAgGRCnToGgq85unXo7pPUeoAOQIRj0eSRTrXtM=
Subject key identifier: 12:B6:1C:8B:85:02:83:4E:2C:ED:43:D4:FF:4E:EF:B3:8C:A1:10:F2
Certificate issuer: /CN=3d4c79394062376bca63a63a0bf973992a9f80a2
Certificate serial: 0238F0
Authority key identifier: 3D:4C:79:39:40:62:37:6B:CA:63:A6:3A:0B:F9:73:99:2A:9F:80:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/ErYci4UCg04s7UPU_07vs4yhEPI.roa
Signing time: Mon 24 Jan 2022 12:06:17 +0000
ROA not before: Mon 24 Jan 2022 12:06:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198782
IP address blocks: 91.239.61.0/24 maxlen: 24
91.239.61.128/25 maxlen: 25
91.239.61.0/25 maxlen: 25
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145648 (0x238f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4c79394062376bca63a63a0bf973992a9f80a2
Validity
Not Before: Jan 24 12:06:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12b61c8b8502834e2ced43d4ff4eefb38ca110f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a5:6f:dd:4a:90:bd:58:b7:59:21:0b:38:c5:
f7:72:23:5d:85:54:9f:de:66:e9:b4:07:3f:94:5d:
a0:b9:e2:63:ab:71:70:65:07:fb:03:e8:0c:07:0d:
cb:0d:a4:ad:65:b8:e1:e3:12:08:e5:ba:e5:26:02:
88:1c:c7:a5:ab:58:d9:27:4c:d6:32:a0:c6:aa:5f:
6f:e5:74:be:c5:40:99:2b:03:5a:be:eb:86:32:d9:
00:96:aa:9d:33:fb:34:c4:05:ab:62:e1:ec:a7:0e:
e6:ef:b8:22:f9:ea:e2:a5:70:66:e8:c4:45:8d:8a:
49:d6:f9:69:39:d5:71:cc:f9:43:54:a7:94:17:a0:
18:55:e2:45:1f:d9:ed:62:81:81:8a:04:04:02:56:
64:7d:86:26:3c:e2:c1:f2:92:8f:1d:0f:33:3a:20:
bb:9a:02:7c:8e:78:76:73:ed:ca:f7:d1:0a:16:7c:
e8:f9:45:2e:fb:97:6d:f4:c3:18:06:05:a3:3f:38:
0c:08:52:e9:5c:86:8c:a2:ab:1a:95:5c:2b:cb:42:
c9:43:7d:d0:28:db:47:7a:12:0a:2f:bc:23:85:1e:
19:10:18:93:97:68:4f:6a:8d:47:01:e7:87:3b:29:
de:f9:1e:c3:49:73:62:81:9a:fe:79:39:4e:33:67:
ba:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B6:1C:8B:85:02:83:4E:2C:ED:43:D4:FF:4E:EF:B3:8C:A1:10:F2
X509v3 Authority Key Identifier:
keyid:3D:4C:79:39:40:62:37:6B:CA:63:A6:3A:0B:F9:73:99:2A:9F:80:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/ErYci4UCg04s7UPU_07vs4yhEPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0a8651-62ec-49f4-bde0-155c75a45c27/1/PUx5OUBiN2vKY6Y6C_lzmSqfgKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.61.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:0a:44:e9:9a:7c:9b:ba:14:d9:c7:74:0e:f3:62:fd:55:3c:
49:d5:20:4b:dd:30:28:0a:4c:71:44:3d:9f:94:c0:d5:5d:ad:
1b:17:8d:f8:a6:f5:6d:4a:b6:b1:96:f3:cc:10:47:ad:cf:54:
5c:12:d4:bd:f4:53:16:66:5d:fb:50:78:21:1f:24:df:4b:69:
a9:27:29:72:c7:bb:e3:44:7e:59:c4:59:17:5c:92:68:6a:ea:
36:24:fb:00:36:25:e2:e5:17:86:37:e7:ba:f0:3e:2e:92:f5:
f1:21:b1:79:10:6a:04:e3:41:df:f8:a3:ec:23:be:e3:a9:6a:
8a:b2:c5:68:71:33:32:d0:a0:23:44:b2:9a:8f:15:17:b1:fe:
34:a3:47:2b:7d:36:e4:f1:bf:09:6b:48:b4:da:1f:41:e5:ee:
3f:1a:f4:4b:27:dd:18:be:71:98:0f:46:7c:44:9d:26:70:4d:
65:06:13:66:f2:30:de:7e:5a:2c:da:32:56:79:b6:69:ef:7b:
94:c4:55:88:29:5b:11:e9:a9:13:bc:c3:4e:5f:a6:5b:83:68:
38:4e:20:0d:09:aa:3a:51:80:ce:ee:67:50:69:be:28:a0:b3:
2f:af:83:e6:ce:be:f4:e0:94:f9:49:a9:cd:c6:3a:a4:27:aa:
6a:ba:99:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:27 2023 by rpki-client on console-ams.rpki-client.org