Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/aqVEjXKPYV4zx4EVy1nrXPLyVb8.roa
File: aqVEjXKPYV4zx4EVy1nrXPLyVb8.roa (raw, json)
Hash identifier: 6Rs3SNzkWbN6oI7tHYaMks6udoirliLta4hDYS8Zjxs=
Subject key identifier: 6A:A5:44:8D:72:8F:61:5E:33:C7:81:15:CB:59:EB:5C:F2:F2:55:BF
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 03CCB06B
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/aqVEjXKPYV4zx4EVy1nrXPLyVb8.roa
Signing time: Sat 01 Jan 2022 02:56:36 +0000
ROA not before: Sat 01 Jan 2022 02:56:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137443
IP address blocks: 91.217.135.0/24 maxlen: 24
45.83.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63746155 (0x3ccb06b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Jan 1 02:56:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6aa5448d728f615e33c78115cb59eb5cf2f255bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:49:73:48:5b:47:28:47:a4:fd:fe:53:d9:
b6:c4:c6:b8:14:73:87:3a:35:29:37:1c:49:6a:ed:
f0:bf:35:6e:1a:ef:1c:e0:da:7c:5d:34:02:c2:67:
96:83:88:6a:d3:5f:b9:b9:0d:97:f3:21:00:e6:e5:
a7:f4:e2:58:18:23:ae:0d:f1:34:7b:13:3e:b3:7e:
71:71:e8:d6:8e:fd:43:23:1a:a2:04:1b:c6:76:8f:
30:6f:2e:af:b0:6f:b9:ed:83:2a:66:8c:56:ef:b4:
c5:90:0b:66:c2:ea:2b:13:11:c2:bc:8e:b2:6c:d3:
23:ff:30:e6:a2:0d:89:d3:bf:ff:35:91:f4:1a:93:
5a:05:55:67:96:3b:56:ab:ca:b9:9a:81:53:24:ff:
6c:f4:8b:e9:19:6a:bc:57:fe:94:a1:9f:d5:18:2a:
b3:ab:15:36:93:fc:25:5f:c0:6c:02:0d:84:6d:a6:
3e:07:77:3e:c7:71:e2:ad:1e:63:54:40:be:c8:47:
6c:7e:00:e1:d5:d3:4e:e3:c5:c3:ff:2f:d2:31:d7:
8b:b6:ab:4e:68:44:e3:3b:38:7d:4b:ad:06:37:25:
76:87:08:0e:31:48:09:ad:f8:a5:05:0c:1c:95:62:
18:ae:7f:3e:cb:05:3f:09:6f:77:a5:f4:bf:8e:94:
95:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:A5:44:8D:72:8F:61:5E:33:C7:81:15:CB:59:EB:5C:F2:F2:55:BF
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/aqVEjXKPYV4zx4EVy1nrXPLyVb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.236.0/24
91.217.135.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:20:0a:ab:2a:41:34:00:95:51:26:98:d7:9b:c2:a8:54:c8:
90:ad:88:04:24:b8:86:8a:6f:41:02:b5:15:bb:32:f4:3b:3b:
b2:4e:84:b9:9a:13:cd:e2:29:42:31:88:0d:90:d5:fe:68:64:
32:99:f4:dc:12:ef:82:70:95:f9:99:c3:f4:f3:40:cd:e4:98:
bd:5c:2c:9d:f8:d3:d0:21:03:e7:29:b3:65:d7:f9:fb:90:e9:
29:8b:a1:2b:a2:a2:2a:b4:dd:af:d2:c5:44:2b:29:6a:dd:54:
4c:da:8e:3b:ac:9e:5d:e4:ef:65:cc:fa:e8:ec:b9:da:df:86:
b2:62:a6:52:68:03:48:1b:18:1d:4e:45:57:60:16:17:69:2f:
a3:81:e9:f1:55:f2:5a:0c:76:f7:c3:a8:1e:0f:44:39:50:8f:
dd:fe:7e:26:24:0b:77:1f:a5:af:79:64:26:eb:7b:a0:26:09:
24:f1:57:20:86:af:da:16:ee:db:14:8b:4b:2e:ea:b4:a3:44:
71:14:07:83:6c:97:d0:91:0b:aa:29:7c:69:7d:0e:2a:33:07:
58:5e:e1:7c:8b:49:32:af:89:9a:7b:47:aa:45:f1:b9:ed:bf:
7f:5b:f4:d8:23:3d:c1:2b:24:e2:67:bf:b9:bd:f9:97:ae:86:
2a:d0:5c:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-ams.rpki-client.org