Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/OfZ6adhUKWlreGypXnY3zqhIzr8.roa
File: OfZ6adhUKWlreGypXnY3zqhIzr8.roa (raw, json)
Hash identifier: N8uKsktsuyVfmaBPGHD3ZfsBHsS381Q5KsfHod3hGtc=
Subject key identifier: 39:F6:7A:69:D8:54:29:69:6B:78:6C:A9:5E:76:37:CE:A8:48:CE:BF
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 050C1527
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/OfZ6adhUKWlreGypXnY3zqhIzr8.roa
Signing time: Wed 11 May 2022 13:56:02 +0000
ROA not before: Wed 11 May 2022 13:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 91.213.186.0/24 maxlen: 24
91.213.189.0/24 maxlen: 24
91.208.104.0/24 maxlen: 24
91.208.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84677927 (0x50c1527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: May 11 13:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39f67a69d85429696b786ca95e7637cea848cebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a6:da:58:da:23:5f:b1:c5:a6:67:03:0e:2d:
8b:3d:c8:8e:d1:1e:a9:3d:ef:95:23:ac:e3:5b:34:
d5:39:89:68:82:79:00:03:aa:a2:db:20:f0:9b:87:
62:c4:32:cd:15:91:00:2b:ff:db:a9:6d:db:d9:9d:
6f:7e:9b:bd:c1:89:75:93:71:db:9e:b2:e8:f7:fc:
57:8e:f7:6d:19:57:b6:a5:9e:87:61:28:d2:d0:c4:
58:0a:96:87:cf:49:bf:d9:0f:1f:8f:5e:3a:e7:e1:
d9:7b:ba:32:99:df:c4:54:3c:98:84:d8:b3:34:a2:
a0:26:06:06:88:c9:b4:15:d5:a4:ea:04:d1:69:6f:
1d:e0:08:64:f8:81:a0:43:59:8a:24:f0:04:ab:2b:
10:7a:fb:8e:e0:ef:24:bf:03:fe:87:b0:52:20:00:
e5:c0:ab:e9:ef:a4:e2:f8:78:8d:16:d2:62:cc:bb:
75:a7:66:26:c2:63:53:55:bd:46:4e:e9:2b:87:e2:
96:ac:5b:5c:27:27:f9:8e:95:0d:24:5c:fc:9e:46:
fc:35:f9:22:94:ce:64:50:96:29:c1:2c:29:ea:73:
8f:da:88:3d:b2:12:97:4f:88:bf:24:e9:cb:22:7e:
15:f9:4d:a3:e3:5e:31:47:3a:9e:2c:14:5d:f7:13:
bc:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F6:7A:69:D8:54:29:69:6B:78:6C:A9:5E:76:37:CE:A8:48:CE:BF
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/OfZ6adhUKWlreGypXnY3zqhIzr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.104.0/24
91.208.109.0/24
91.213.186.0/24
91.213.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:15:49:a1:5b:99:f3:ed:cc:e9:48:98:62:6c:25:49:2a:1e:
4c:ff:1e:13:f5:be:de:b0:21:01:c0:d0:de:f1:80:c4:77:1f:
f4:ab:98:28:cd:7e:45:83:49:86:7b:0a:99:77:a5:c7:3e:d9:
64:bc:eb:82:b3:78:3c:24:c4:c2:2e:36:ae:b0:92:16:ea:69:
80:1c:50:d4:c0:c4:81:50:e9:3d:6d:23:87:b4:08:fa:b1:66:
b9:9a:58:b7:d4:f7:0f:40:55:40:51:b1:a7:e7:30:be:dd:cb:
0d:0c:e8:79:5a:89:cc:d9:63:cb:5e:19:a2:6b:a0:d3:d8:de:
cf:c1:c3:c9:d8:0e:69:6d:3b:84:dd:0f:3f:39:32:ea:49:2c:
c2:95:e0:db:5f:d7:09:ed:b5:2a:17:1a:f2:8a:87:e4:8a:db:
6c:5d:2f:ff:d2:c5:5b:e4:91:1e:44:6e:7a:98:9f:7c:5d:5e:
94:f3:74:31:b4:df:59:26:f1:e3:d5:1b:12:88:92:b7:b7:4d:
f9:a7:a5:ac:50:e1:5d:96:d6:76:38:06:67:16:2a:84:08:47:
d2:69:dd:fd:37:6a:fa:ca:42:2b:66:f6:05:09:34:08:87:d3:
02:c8:98:8d:1a:da:8d:df:be:fd:4d:67:db:32:f5:02:62:b7:
0b:ed:04:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-ams.rpki-client.org