Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/1-2REVy_YKPH7XySIqaYTnfrw9J4.roa
File: 1-2REVy_YKPH7XySIqaYTnfrw9J4.roa (raw, json)
Hash identifier: DTV44HLfxiOzkKZ7Ax5FEzzXHaufMLUbDLLJcE1JhLQ=
Subject key identifier: FB:64:44:57:2F:D8:28:F1:FB:5F:24:88:A9:A6:13:9D:FA:F0:F4:9E
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 0182467E115DCC5AF066709273F874A56320
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/1-2REVy_YKPH7XySIqaYTnfrw9J4.roa
Signing time: Thu 28 Jul 2022 20:27:23 +0000
ROA not before: Thu 28 Jul 2022 20:27:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 91.208.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:46:7e:11:5d:cc:5a:f0:66:70:92:73:f8:74:a5:63:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Jul 28 20:27:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb6444572fd828f1fb5f2488a9a6139dfaf0f49e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b1:65:7e:31:09:c8:45:76:71:c8:90:85:57:
58:b1:a2:81:77:5e:a3:12:28:4b:e2:ce:0e:84:4b:
23:25:e2:63:29:bc:52:3f:ac:2c:33:aa:93:52:cb:
4a:72:e0:1a:9f:d3:af:2a:4b:97:4e:a0:6e:6c:24:
36:e7:80:66:79:56:20:e0:a5:e9:83:da:5f:b4:32:
65:83:11:e1:00:57:fe:a4:6f:c1:f5:10:61:fb:48:
6e:bb:56:7a:3d:25:56:f0:28:2b:20:34:3e:89:7b:
06:b5:ed:af:7f:aa:ca:34:34:b9:aa:99:32:f6:2e:
1a:9c:9a:5e:ee:e8:26:91:6d:c1:8b:00:0d:ef:0c:
9f:13:f2:4f:bd:61:b2:86:5e:77:9c:02:7f:2f:c4:
fe:49:c0:a6:52:f0:3a:59:a8:c4:e4:e6:13:57:1b:
d1:5f:0c:cb:2c:fb:13:8f:e1:a5:97:93:4e:91:79:
aa:f8:77:4a:9b:a0:71:02:3d:52:6d:e7:ae:af:d7:
a7:45:28:87:56:c3:52:9d:bb:67:ad:bc:dd:5d:c1:
e1:57:81:2c:a3:e0:73:96:8d:f5:ea:39:ec:2c:c4:
07:25:82:5e:07:3a:f4:c3:bc:49:b5:25:a4:0e:6f:
29:37:3d:a6:ab:a5:b4:c7:9d:69:66:7d:89:a6:3c:
7d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:64:44:57:2F:D8:28:F1:FB:5F:24:88:A9:A6:13:9D:FA:F0:F4:9E
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/1-2REVy_YKPH7XySIqaYTnfrw9J4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.73.0/24
Signature Algorithm: sha256WithRSAEncryption
47:56:ff:8c:4b:2a:dc:50:78:4f:a1:9a:c4:7a:e4:18:45:20:
58:21:d2:43:9d:01:44:1a:80:0b:86:d1:e6:c3:66:a4:d3:6b:
1a:0b:58:6e:be:41:f8:44:37:0f:60:f8:12:26:6c:bc:65:db:
bc:5f:1d:bd:90:f2:e9:d0:7f:aa:d6:d1:15:3d:f6:5b:2e:a0:
58:23:d2:83:b4:bb:7c:20:4f:49:47:76:bb:19:55:2b:9d:62:
ef:39:1e:9e:32:d0:5b:4a:e4:38:2c:83:7d:88:7e:70:c5:f6:
1d:25:39:e7:10:98:90:7c:ef:d1:c1:b1:e0:60:d4:8a:32:fa:
a7:f3:a1:77:91:fd:0d:b5:67:91:d2:6f:78:bb:c6:57:18:6b:
3b:e4:7b:43:6b:42:41:57:74:0b:9b:75:3e:6e:da:c3:7c:6b:
a4:f3:97:62:50:de:89:dd:a0:02:ee:c3:47:76:da:a3:f8:0a:
25:28:f9:fd:d6:f3:64:28:b3:e0:48:24:7e:f6:73:97:ec:90:
83:64:4f:52:56:99:70:20:bc:65:4e:a2:85:e3:43:48:f5:2b:
fd:e5:c5:a7:c5:ee:00:db:ce:b9:6d:75:76:12:44:a3:cd:2f:
9f:dd:fc:fb:2c:42:72:48:36:86:79:f1:25:ad:69:db:22:d8:
48:d5:a5:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:01 2023 by rpki-client on console-fra.rpki-client.org