Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/rSIzTedDpeAOk3xGtbfd4ty8DIc.roa
File: rSIzTedDpeAOk3xGtbfd4ty8DIc.roa (raw, json)
Hash identifier: 4ZuonTvSwH+0QNFNpzsUcB4GrE86vnL1raL9PGoVflk=
Subject key identifier: AD:22:33:4D:E7:43:A5:E0:0E:93:7C:46:B5:B7:DD:E2:DC:BC:0C:87
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 01852A3B959C6936F9D395923D6AE81C9990
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/rSIzTedDpeAOk3xGtbfd4ty8DIc.roa
Signing time: Mon 19 Dec 2022 11:53:46 +0000
ROA not before: Mon 19 Dec 2022 11:53:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211373
IP address blocks: 91.208.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2a:3b:95:9c:69:36:f9:d3:95:92:3d:6a:e8:1c:99:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Dec 19 11:53:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad22334de743a5e00e937c46b5b7dde2dcbc0c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:19:96:25:7e:45:c5:48:7b:75:fd:02:52:f6:
60:25:b4:dd:1f:64:3c:56:45:ed:bc:d5:5b:75:37:
e6:5b:fe:59:9b:59:50:3d:f1:f7:04:08:a7:b8:74:
e2:06:c8:99:53:d5:b0:b0:cf:59:3a:99:c7:11:21:
27:5c:88:4b:9f:ed:96:95:55:8c:af:b4:2d:47:97:
17:fa:3f:00:05:21:4e:2f:8d:6b:be:98:cd:03:40:
ba:5a:28:72:de:e8:9f:32:ac:02:09:10:49:e9:97:
62:98:a9:4f:47:f8:0e:0e:9f:25:61:60:4c:f5:50:
9e:a2:b6:bf:ae:d9:c4:d1:98:14:87:56:3e:42:b9:
a7:2f:c4:cb:7b:cd:ba:36:e4:5d:57:d2:7a:94:df:
a7:51:b9:ab:dc:64:a2:d0:4f:be:7f:29:4f:8b:cd:
89:9f:8a:2e:b2:da:bf:1e:9f:4c:b0:69:6c:24:87:
45:32:de:60:23:43:4a:05:45:b7:d6:c3:e4:35:70:
8b:ce:29:9b:fe:45:6a:c1:18:a2:10:c3:92:11:69:
91:29:46:f5:7b:c1:70:57:53:0e:ff:e1:94:4f:cf:
7e:c5:23:be:f4:4c:50:3d:b8:39:30:06:4d:25:f2:
26:4f:f7:e5:ba:d6:82:6a:78:f7:dd:99:b1:29:c9:
d4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:22:33:4D:E7:43:A5:E0:0E:93:7C:46:B5:B7:DD:E2:DC:BC:0C:87
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/rSIzTedDpeAOk3xGtbfd4ty8DIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.69.0/24
Signature Algorithm: sha256WithRSAEncryption
60:82:54:cd:74:55:f7:9a:2a:5c:61:4f:2c:ce:de:f8:b0:7c:
cd:95:f7:28:81:70:b6:ca:e8:c2:30:9f:bc:73:c2:ec:07:ff:
04:a6:f4:33:b7:5e:a6:45:27:26:b5:48:34:9f:94:a0:18:7a:
44:36:2a:6a:4a:5e:8f:60:30:c5:ba:45:6e:2e:18:0a:10:fd:
73:36:8f:48:ff:75:7e:4a:2e:7e:00:d6:0d:f1:45:ed:9d:18:
c9:da:4d:fa:c4:72:85:07:08:52:38:17:f3:0d:f2:af:09:0a:
21:71:74:23:18:c1:b7:e2:4d:56:ea:57:91:48:11:07:11:16:
4c:b1:b9:bb:2e:ee:db:59:79:ab:bc:93:2d:14:9d:45:14:06:
f6:b0:46:21:3c:c2:0b:9b:d2:40:38:ad:15:eb:46:4e:04:17:
d8:0e:d5:08:e9:48:00:1d:5d:31:c6:73:33:e5:2a:b7:be:4b:
0c:c1:ef:d5:92:db:b8:c9:a7:20:ee:0b:23:d5:5a:70:4c:1b:
07:d1:20:ab:51:7d:58:fe:51:50:8d:29:06:c6:4b:74:db:a5:
17:57:9b:56:0b:89:99:02:34:51:1a:dd:51:dc:6d:35:5a:ea:
57:5d:82:ba:e6:f5:52:84:16:34:10:7b:16:88:71:0f:ff:f8:
79:85:40:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:02 2023 by rpki-client on console-fra.rpki-client.org