Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/byC8QoL3bJob7a1oXu7DNK8R1yM.roa
File: byC8QoL3bJob7a1oXu7DNK8R1yM.roa (raw, json)
Hash identifier: Y1cS5XrRTND6+RIQ0VfjcHclcksee4HbPrVa/XxY/NU=
Subject key identifier: 6F:20:BC:42:82:F7:6C:9A:1B:ED:AD:68:5E:EE:C3:34:AF:11:D7:23
Certificate issuer: /CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Certificate serial: 01821A63C81F100BF7875976129C0C7BECC6
Authority key identifier: CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/byC8QoL3bJob7a1oXu7DNK8R1yM.roa
Signing time: Wed 20 Jul 2022 06:55:23 +0000
ROA not before: Wed 20 Jul 2022 06:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197944
IP address blocks: 91.230.90.0/24 maxlen: 24
2001:67c:24dc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1a:63:c8:1f:10:0b:f7:87:59:76:12:9c:0c:7b:ec:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf6843ce15229a8023d97fa27a37e59278b2bfd7
Validity
Not Before: Jul 20 06:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f20bc4282f76c9a1bedad685eeec334af11d723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:85:72:39:83:db:68:90:26:f3:15:1e:69:71:
ec:53:c3:5c:10:ff:92:d1:89:52:71:73:bd:1d:84:
7c:30:3c:13:45:f1:62:36:37:af:73:5c:27:2c:7e:
0c:3a:33:50:d9:8a:46:10:d8:9e:da:46:c5:a5:c0:
dd:3d:6a:99:64:47:10:0c:a1:c6:8c:2b:05:25:ff:
e6:ea:9b:4e:f6:4f:eb:60:25:ba:c5:43:86:02:7f:
f6:db:7d:b2:17:b6:18:39:6b:64:50:e3:0a:d9:e9:
f8:ce:93:fa:1f:d4:87:6a:d7:63:d1:ba:62:6c:61:
3a:d3:01:b6:d8:3e:1d:b7:9c:a5:8c:3f:93:90:dd:
97:7e:ba:f3:44:10:f2:c0:50:be:26:bb:68:5f:1e:
23:0b:4e:b0:9f:b3:ab:09:7d:eb:03:1a:a4:c7:a3:
40:b6:1c:62:27:59:d0:2b:a3:73:bd:47:76:36:06:
31:bc:b4:36:ec:ab:cf:44:b0:1f:f1:56:54:d8:d6:
e7:f5:65:d6:6a:48:c8:c3:b5:f3:00:d8:81:11:49:
50:ca:84:23:a6:10:7f:5e:3a:61:24:87:28:63:3f:
2f:75:c8:5a:3b:bd:91:4e:ff:18:8b:03:9b:9c:4f:
d6:df:43:19:13:07:64:27:55:65:e0:98:ce:e2:04:
da:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:20:BC:42:82:F7:6C:9A:1B:ED:AD:68:5E:EE:C3:34:AF:11:D7:23
X509v3 Authority Key Identifier:
keyid:CF:68:43:CE:15:22:9A:80:23:D9:7F:A2:7A:37:E5:92:78:B2:BF:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2hDzhUimoAj2X-iejflkniyv9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/byC8QoL3bJob7a1oXu7DNK8R1yM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/761b48-69ea-40e4-8d7c-64cd194f7f4f/1/z2hDzhUimoAj2X-iejflkniyv9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.90.0/24
IPv6:
2001:67c:24dc::/48
Signature Algorithm: sha256WithRSAEncryption
02:e5:82:05:26:4a:f4:03:d5:a6:d7:8d:e1:a3:76:b5:7d:0a:
af:5e:ad:d8:6f:ef:bb:f3:f2:e8:07:e0:8f:1b:d9:87:cf:dd:
b3:fb:ba:ce:e7:1c:f4:64:3e:ed:58:1a:d4:38:6f:e7:85:7e:
02:0e:f5:d3:21:84:23:bc:28:6c:4a:19:b9:58:9b:3a:45:ac:
f8:9a:e7:af:96:74:a6:16:4c:a0:aa:a9:ee:f6:1f:7c:6c:26:
1f:3e:a6:a5:ec:f8:3b:34:35:62:95:82:51:c8:d6:33:8d:c0:
d0:77:09:0f:27:b6:e5:e7:ad:0d:5b:46:a3:b2:95:8a:70:80:
62:5a:ac:69:5e:06:7c:54:67:07:ee:2d:b8:dc:89:20:79:5b:
61:2a:e2:88:fd:1b:60:0e:c8:90:82:51:9e:5b:81:74:e5:b5:
b6:6a:08:16:dd:90:a1:a5:ef:70:0e:73:a8:a4:c3:12:ea:6b:
c1:8d:1d:6c:0a:3c:28:04:29:44:5c:1f:37:d4:5d:a2:23:75:
3d:75:78:68:a9:21:b7:18:63:62:7d:d3:4f:93:f7:06:92:9c:
51:0c:da:84:e3:a7:dd:83:cc:33:66:85:8a:86:d4:c6:a3:19:
03:7c:a4:0f:43:1c:ec:93:32:68:23:72:1c:e9:31:bb:40:e5:
4f:3b:ee:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:15 2024 by rpki-client on console-fra.rpki-client.org