Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/Poi8t0npx2NKEXezw_eQzGWA-KM.roa
File: Poi8t0npx2NKEXezw_eQzGWA-KM.roa (raw, json)
Hash identifier: wYra3ON793I2hfzQK05MVzRX63EEMj3iUO6Egqr1gGs=
Subject key identifier: 3E:88:BC:B7:49:E9:C7:63:4A:11:77:B3:C3:F7:90:CC:65:80:F8:A3
Certificate issuer: /CN=a8305c6e58294ad0ed5162fa8429da5165653930
Certificate serial: 16312C00
Authority key identifier: A8:30:5C:6E:58:29:4A:D0:ED:51:62:FA:84:29:DA:51:65:65:39:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qDBcblgpStDtUWL6hCnaUWVlOTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/Poi8t0npx2NKEXezw_eQzGWA-KM.roa
Signing time: Sat 01 Jan 2022 04:02:46 +0000
ROA not before: Sat 01 Jan 2022 04:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57118
IP address blocks: 91.199.218.0/24 maxlen: 24
2001:67c:2d70::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 372321280 (0x16312c00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8305c6e58294ad0ed5162fa8429da5165653930
Validity
Not Before: Jan 1 04:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e88bcb749e9c7634a1177b3c3f790cc6580f8a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d1:e7:7f:78:08:60:fe:00:c4:be:8a:e6:45:
db:67:6b:4d:91:4b:20:2c:13:37:8b:ef:a7:d7:ab:
8d:17:07:f5:f0:ce:dc:73:5e:be:82:52:f6:9a:d2:
8f:6a:d2:7d:5d:bd:a6:6f:e6:76:4c:34:a5:88:f0:
b8:a5:c6:70:1a:3f:01:2d:b2:37:46:d8:e7:2d:2d:
0f:5a:8e:0d:10:a1:aa:f0:60:ae:9a:01:11:37:40:
03:e6:4a:d8:b2:21:5f:7a:e2:a6:ea:c5:a6:74:16:
41:15:eb:5f:63:6e:0e:0e:da:2c:81:20:90:3b:ad:
88:35:a9:1e:3a:7d:af:e2:d4:c7:4b:80:b1:98:a4:
83:99:85:d4:2b:b9:01:1b:7c:1a:22:ea:f5:ae:95:
31:78:1a:cf:1a:13:03:75:bd:df:61:0a:07:2b:5a:
4b:fe:74:3e:f2:4f:97:9d:6a:d4:b9:2f:85:40:a3:
d4:8c:37:45:da:9b:20:93:37:c2:e8:15:fc:7b:33:
ef:2d:d9:50:26:87:c2:13:b0:80:df:e0:20:03:59:
1b:82:58:95:25:ee:7a:f4:c9:f1:c4:fa:d8:29:1b:
75:0f:a4:d1:63:50:a1:0c:2c:20:7d:92:c2:6a:dc:
4f:5c:05:d9:af:6c:06:ee:6d:23:0d:f6:13:cc:ec:
45:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:88:BC:B7:49:E9:C7:63:4A:11:77:B3:C3:F7:90:CC:65:80:F8:A3
X509v3 Authority Key Identifier:
keyid:A8:30:5C:6E:58:29:4A:D0:ED:51:62:FA:84:29:DA:51:65:65:39:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qDBcblgpStDtUWL6hCnaUWVlOTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/Poi8t0npx2NKEXezw_eQzGWA-KM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/4c15d9-79e6-452f-aa32-02db8b77d087/1/qDBcblgpStDtUWL6hCnaUWVlOTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.218.0/24
IPv6:
2001:67c:2d70::/48
Signature Algorithm: sha256WithRSAEncryption
1c:77:c6:d1:03:c6:4c:80:ca:50:fb:1a:16:d9:1b:74:81:6e:
8a:33:b0:3c:d2:f4:5f:3b:27:10:66:27:c0:b4:07:83:1b:bc:
e1:33:ba:12:fc:9e:36:25:e4:5b:89:09:ac:37:98:ae:c7:65:
c3:ac:4f:4a:ef:7e:13:05:8d:13:1b:fc:78:48:5d:c8:e3:9b:
fc:29:b6:41:61:26:6b:f0:05:43:03:91:c7:89:31:57:af:3a:
41:5f:da:77:34:64:f7:e0:01:12:99:03:48:96:3c:17:d5:2d:
aa:30:89:9d:56:a5:79:81:ca:7b:45:d1:00:3d:7b:b2:1b:6e:
55:e7:bd:6b:33:87:45:b9:b6:09:90:d7:8c:b3:c2:a7:0b:f7:
a2:1f:38:04:a2:d8:e2:82:03:be:16:23:25:03:9e:16:5f:54:
c6:2f:4b:0c:26:ca:70:a3:e4:a0:67:00:5c:df:c3:84:4b:ff:
3f:7e:87:a6:cc:29:de:bc:dd:a2:b4:46:8d:1a:6b:6f:20:24:
1a:3c:2b:67:03:70:e3:9c:08:29:96:c4:b7:11:19:0f:38:28:
02:85:28:0d:e3:1f:f8:88:d9:da:89:81:39:e9:0a:16:44:85:
7b:32:3b:be:b2:2e:b4:16:9d:67:b8:85:b4:55:f1:eb:4b:4a:
4d:71:1a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:28 2023 by rpki-client on console-ams.rpki-client.org