Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/gJ75wKBCkr4gg_5dvP9d6UQEqqc.roa
File: gJ75wKBCkr4gg_5dvP9d6UQEqqc.roa (raw, json)
Hash identifier: FiFu7BalI7J5cm5EnipVtQldt5NvPj/cFkd/jMqIhw4=
Subject key identifier: 80:9E:F9:C0:A0:42:92:BE:20:83:FE:5D:BC:FF:5D:E9:44:04:AA:A7
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 050A30B1
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/gJ75wKBCkr4gg_5dvP9d6UQEqqc.roa
Signing time: Wed 11 May 2022 00:32:01 +0000
ROA not before: Wed 11 May 2022 00:32:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61138
IP address blocks: 91.216.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84553905 (0x50a30b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: May 11 00:32:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=809ef9c0a04292be2083fe5dbcff5de94404aaa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1e:91:af:d1:ba:44:b6:78:55:60:27:2f:d6:
f9:2f:66:93:18:e3:9f:0f:1a:ce:a4:c3:ee:11:52:
0f:14:3b:0d:35:0c:98:ee:9f:57:29:5a:fc:ba:f3:
34:23:5c:7e:76:14:2a:cb:39:ec:73:ed:80:ce:da:
d4:ea:82:f0:c2:40:8a:55:d1:58:63:2e:cd:c1:b1:
f4:23:37:1b:c7:d3:4f:1c:a3:97:19:6e:51:03:6f:
48:e6:db:ce:98:84:49:62:81:ab:3b:30:91:9b:fc:
38:ec:90:69:88:13:c3:9f:40:c7:77:7d:fc:b5:4f:
0e:2b:bb:1c:7d:71:00:45:e5:02:59:bc:e7:b3:6c:
52:cc:f0:2e:34:ca:15:32:39:b9:c2:6f:e0:37:5e:
a5:69:68:d8:64:9a:31:8c:59:c3:a8:d2:c6:67:c8:
2c:db:c2:85:4e:71:d3:6d:b6:cd:f5:e7:03:c0:01:
95:24:77:e8:7b:3d:1e:2e:27:e5:a6:7d:f3:c1:a2:
24:3f:07:4c:e6:02:c3:5b:c9:8c:c4:62:ee:39:7a:
6b:3c:a9:39:3d:0f:44:19:fc:2f:55:3b:bd:e2:11:
60:23:70:aa:83:9a:49:48:2e:98:fa:48:4e:f9:d2:
c1:b2:d6:87:4b:5d:50:54:9f:74:10:44:12:21:66:
38:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9E:F9:C0:A0:42:92:BE:20:83:FE:5D:BC:FF:5D:E9:44:04:AA:A7
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/gJ75wKBCkr4gg_5dvP9d6UQEqqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:66:88:d5:7a:29:e0:1e:aa:b6:59:62:ae:f9:cc:ac:2b:45:
49:63:1d:5a:b5:c1:df:5b:67:42:32:52:28:49:f9:41:eb:c7:
80:2b:a8:8c:c9:e4:5e:5a:e6:f4:98:99:ba:ee:d2:d4:70:05:
d5:22:3f:ae:32:3b:19:ce:be:80:4c:5e:31:e4:11:c4:64:8a:
bd:44:6c:9b:60:e3:81:67:80:3c:d6:0f:b1:6a:20:1b:a4:f0:
b0:0e:9d:d4:66:f3:c4:2d:29:fd:48:10:2e:e6:9c:e5:87:21:
14:70:81:68:06:4d:b9:36:e8:f9:86:7f:63:33:ed:5c:8b:f4:
82:06:a5:6d:db:7b:4c:20:1d:ba:0e:f6:24:01:c3:cc:0d:64:
15:92:9f:54:7c:79:93:1a:96:14:22:e5:89:6e:88:54:b0:29:
2f:4c:8b:56:6e:69:bd:be:3f:5f:bf:ef:1e:6b:35:30:66:d9:
04:42:ab:e2:35:3b:5b:24:db:0a:c6:e9:22:f0:4e:93:fe:d1:
91:09:8b:e1:7d:28:4d:ea:1c:5c:19:83:be:ed:f9:d5:6b:da:
9b:d5:c8:1b:37:0e:4e:99:81:42:9b:16:fd:31:db:52:77:d3:
80:8d:da:ec:2e:ad:d2:4f:96:23:2d:79:34:2e:ff:2d:b7:8d:
de:0b:a2:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:02 2023 by rpki-client on console-fra.rpki-client.org