Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/AyyfaKU55y_RzUzRlttvbCi3H2M.roa
File: AyyfaKU55y_RzUzRlttvbCi3H2M.roa (raw, json)
Hash identifier: cXU1w8/CMYKZhHUU3odhrH7UPW4bPjvsccZBxA/kjGc=
Subject key identifier: 03:2C:9F:68:A5:39:E7:2F:D1:CD:4C:D1:96:DB:6F:6C:28:B7:1F:63
Certificate issuer: /CN=87a4e5d7725c5868aabea025b838dcc233c6ffc9
Certificate serial: 03E291CC
Authority key identifier: 87:A4:E5:D7:72:5C:58:68:AA:BE:A0:25:B8:38:DC:C2:33:C6:FF:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h6Tl13JcWGiqvqAluDjcwjPG_8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/AyyfaKU55y_RzUzRlttvbCi3H2M.roa
Signing time: Sat 01 Jan 2022 00:58:21 +0000
ROA not before: Sat 01 Jan 2022 00:58:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198263
IP address blocks: 91.232.164.0/22 maxlen: 22
193.186.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65180108 (0x3e291cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87a4e5d7725c5868aabea025b838dcc233c6ffc9
Validity
Not Before: Jan 1 00:58:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=032c9f68a539e72fd1cd4cd196db6f6c28b71f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:88:c6:e8:1c:f8:2e:98:29:44:04:75:59:98:
7b:0f:5f:9a:8b:cb:66:41:92:83:43:7a:38:55:fc:
6b:33:69:17:e0:0b:76:16:9f:5a:96:b8:30:7a:94:
34:b2:c0:d1:31:4a:09:fd:ab:78:62:0d:b1:20:e9:
07:f1:42:1d:45:e2:99:f4:a4:44:2a:6a:cb:66:e7:
16:73:de:e4:a9:cb:ea:66:ab:80:98:d5:0d:07:a9:
04:5a:13:9e:df:9a:25:e0:bd:3a:6a:6e:4a:5a:b5:
0a:dc:cb:8e:82:a2:af:79:02:98:d5:6c:30:f9:7c:
a1:da:d7:5d:bb:69:1f:00:14:fc:46:92:99:67:74:
cb:93:b6:4f:5e:d8:9d:d2:13:b9:a2:88:48:8f:9c:
c7:e3:e3:b9:23:c3:d2:c7:a1:27:ac:6a:42:21:88:
41:1f:3e:83:ff:c6:a8:59:ed:db:51:8e:33:08:9f:
c1:fc:49:20:5f:ec:1d:38:bf:f4:a4:a3:9d:f7:71:
76:f0:03:fc:33:87:e6:e4:81:84:62:f1:aa:26:0e:
39:af:0a:3e:29:4c:19:40:d0:93:b2:b4:3a:58:2e:
33:2d:ce:a0:27:98:20:f0:2c:6b:5b:2f:c7:41:a4:
9c:07:60:3f:47:80:8a:63:02:be:ef:3a:27:23:bb:
31:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:2C:9F:68:A5:39:E7:2F:D1:CD:4C:D1:96:DB:6F:6C:28:B7:1F:63
X509v3 Authority Key Identifier:
keyid:87:A4:E5:D7:72:5C:58:68:AA:BE:A0:25:B8:38:DC:C2:33:C6:FF:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h6Tl13JcWGiqvqAluDjcwjPG_8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/AyyfaKU55y_RzUzRlttvbCi3H2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/6555c3-0546-4eef-8648-506a21595cb8/1/h6Tl13JcWGiqvqAluDjcwjPG_8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.164.0/22
193.186.39.0/24
Signature Algorithm: sha256WithRSAEncryption
36:ee:63:67:a0:5a:8c:92:6d:f9:f3:93:78:09:cb:58:3d:30:
fd:00:cd:21:20:aa:98:7a:d9:ff:7e:3c:af:c3:03:fc:71:d6:
bf:df:37:10:03:cd:12:bc:00:bf:cf:09:61:fc:9c:f1:9f:10:
d0:93:9e:15:1d:47:6a:d0:fd:48:66:16:cd:03:4b:3b:3c:0f:
05:dc:65:99:94:4e:2c:46:a2:c9:2e:27:f6:92:4d:b1:bd:10:
ff:4c:22:df:40:ed:5b:d6:fe:93:b7:74:d1:58:7d:8e:e8:66:
2f:38:90:20:33:d0:9a:7c:68:ad:9c:6e:c8:a2:9c:d0:d8:bb:
1f:88:e1:ca:6c:57:72:52:5c:d4:18:5c:bc:f0:3c:64:ef:da:
86:2a:14:af:54:33:c5:50:94:85:2e:9d:30:75:a4:c0:d9:c0:
80:ba:d3:e9:60:66:39:00:02:58:32:13:8c:ee:95:46:09:62:
d8:09:07:30:57:37:5c:b4:ab:25:00:e8:7e:a5:5a:aa:eb:28:
0f:b9:e2:69:ba:70:5d:44:b1:c0:7d:9c:b6:60:bb:55:f4:25:
84:37:d6:d3:a2:3d:b6:2f:76:18:8f:20:ad:a4:e9:06:a2:cc:
85:95:96:88:51:7d:97:60:43:39:5e:3b:01:f0:52:6d:52:ef:
7e:19:fd:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:55 2024 by rpki-client on console-ams.rpki-client.org