Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/yHgy7bMN5Fsqiy9QbyCr92u75nE.roa
File: yHgy7bMN5Fsqiy9QbyCr92u75nE.roa (raw, json)
Hash identifier: jUyjWwufw/WcimFX0vX/HsaSO02/ql7Gu6OZWf4Zlys=
Subject key identifier: C8:78:32:ED:B3:0D:E4:5B:2A:8B:2F:50:6F:20:AB:F7:6B:BB:E6:71
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 050DF8ED
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/yHgy7bMN5Fsqiy9QbyCr92u75nE.roa
Signing time: Thu 12 May 2022 03:14:02 +0000
ROA not before: Thu 12 May 2022 03:14:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 91.208.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84801773 (0x50df8ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: May 12 03:14:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c87832edb30de45b2a8b2f506f20abf76bbbe671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:11:ee:0d:40:86:e7:bb:96:88:1a:8f:24:a5:
31:ef:9f:6d:98:be:4e:65:89:b8:9c:d5:c6:e8:3f:
2f:5e:e8:1b:bf:cd:af:a4:31:43:e5:6f:08:62:cb:
49:37:83:c6:21:06:68:07:56:69:f3:b7:85:9f:33:
c4:c0:a6:1c:47:76:73:ef:0c:0d:1e:83:78:aa:2f:
37:90:a2:b5:29:4b:e7:12:6d:fb:37:dd:d1:b3:29:
ae:de:5d:0d:28:88:45:24:35:dd:a0:26:fa:46:92:
09:5c:1a:fb:c0:2a:d8:5b:9b:c1:be:53:8e:fd:c2:
56:4a:4d:51:ed:64:6b:b0:fd:da:73:6a:f7:d0:1d:
c0:91:3d:c6:79:f1:60:0d:7b:96:6d:31:80:0d:2c:
68:d9:7f:b0:e2:80:3b:aa:6a:b3:34:97:b2:c8:a3:
13:8a:ac:00:0f:47:5c:fe:f3:1c:05:a8:8e:89:7a:
9c:23:07:fe:6a:99:d8:5c:57:71:90:ab:e4:c0:e7:
e7:b3:24:83:8f:a1:ab:db:11:c5:80:5c:f8:6a:62:
4b:c6:9a:73:68:26:ef:fa:59:55:a6:da:05:4f:32:
8a:04:bb:62:41:a4:74:96:71:bb:d1:18:49:2b:00:
93:0d:21:f8:5b:11:94:3f:3a:15:82:be:c0:50:d4:
d7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:78:32:ED:B3:0D:E4:5B:2A:8B:2F:50:6F:20:AB:F7:6B:BB:E6:71
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/yHgy7bMN5Fsqiy9QbyCr92u75nE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.69.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:84:45:48:74:1a:ba:f6:0e:e8:70:78:0e:70:d2:f5:6e:ed:
2d:f2:bf:dd:f3:21:d4:13:fa:e7:aa:51:bf:80:c8:f0:52:41:
fd:8c:b5:6d:03:60:02:2b:a8:15:5a:87:df:65:88:5d:4a:25:
dc:a1:d9:d1:f6:0c:d4:c4:ee:3b:09:76:ff:95:92:ac:c7:84:
fb:e2:76:e5:52:fb:e9:55:82:7b:d0:f0:03:64:cd:f6:a9:94:
3c:f0:db:3e:c3:4e:6f:c1:92:3b:73:2e:8d:77:e9:88:3e:19:
39:fd:b9:0d:56:eb:f4:45:a0:35:59:78:38:f8:30:75:58:6e:
cb:a9:7c:74:08:7f:46:ec:d5:96:aa:03:14:16:50:84:86:91:
c3:79:6e:cc:04:8f:09:72:b1:33:0e:6d:b8:62:93:6e:d5:80:
5d:3c:1f:e8:ed:8e:f2:18:f1:bd:8c:7d:32:f4:19:04:4a:e3:
1a:48:cc:ce:d9:99:dd:f0:0a:88:56:0e:b9:71:e5:84:5e:b2:
12:b4:3f:b4:d5:a5:61:07:22:af:17:18:bd:28:36:c5:be:98:
37:ca:d5:ed:19:1a:0c:fb:d5:f5:a2:01:c1:8e:ac:9a:3c:2e:
14:6a:95:1a:f9:4a:22:94:c8:5e:c4:55:3e:7d:1b:09:40:fa:
74:fc:d9:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-ams.rpki-client.org