Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/Ld9iIvdI82xgOsjdpccvWf_t2ds.roa
File: Ld9iIvdI82xgOsjdpccvWf_t2ds.roa (raw, json)
Hash identifier: Le/n79X8Sekim2VAAWnxICrnJ0aJ124Pmc9MROOgVlg=
Subject key identifier: 2D:DF:62:22:F7:48:F3:6C:60:3A:C8:DD:A5:C7:2F:59:FF:ED:D9:DB
Certificate issuer: /CN=0eca6e06c6824bd1b811183e0e17fa19496d261c
Certificate serial: 015D59
Authority key identifier: 0E:CA:6E:06:C6:82:4B:D1:B8:11:18:3E:0E:17:FA:19:49:6D:26:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DspuBsaCS9G4ERg-Dhf6GUltJhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/Ld9iIvdI82xgOsjdpccvWf_t2ds.roa
Signing time: Tue 25 Jan 2022 12:40:49 +0000
ROA not before: Tue 25 Jan 2022 12:40:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30781
IP address blocks: 91.213.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89433 (0x15d59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0eca6e06c6824bd1b811183e0e17fa19496d261c
Validity
Not Before: Jan 25 12:40:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ddf6222f748f36c603ac8dda5c72f59ffedd9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:25:3b:f9:8a:cf:98:55:8a:a7:19:ee:67:ad:
e3:17:dd:64:4c:f1:00:07:f9:26:9d:e1:a5:11:4e:
c5:73:04:18:b7:3e:fe:a1:09:56:65:7e:32:08:b1:
79:1b:6a:31:78:f5:5c:4b:a1:f2:e7:de:b0:39:c3:
b6:43:ce:50:00:e0:a5:c6:7d:88:8a:79:d8:f0:f0:
bb:7e:4e:23:c8:d5:db:d6:3e:60:0b:3f:9a:e7:bd:
6a:27:b0:ec:7d:7b:57:a9:39:72:a6:5a:5c:ec:e6:
57:ab:b7:e1:90:0d:b6:7a:1d:9a:8f:38:87:ba:14:
bf:48:20:1d:2d:00:83:60:69:f5:2f:e3:25:6c:1d:
4d:85:89:4b:71:45:b2:56:23:73:66:8b:22:35:da:
4c:d0:58:e7:4f:a1:fa:ee:00:1d:d5:27:7d:fa:49:
78:be:aa:6e:ae:28:1f:c1:11:85:48:35:a7:a8:cd:
d6:fb:12:7a:ae:03:3d:61:96:f7:a9:73:d8:ce:7a:
09:1f:8a:2e:45:60:77:8a:e0:d0:eb:62:49:40:43:
2d:43:6f:d6:d0:ac:9d:7e:a5:95:6f:8f:3f:de:b9:
4d:25:82:36:f3:9b:d0:19:49:78:88:27:73:01:cf:
42:2c:ad:e3:1e:2f:be:78:78:5b:e4:15:64:de:b7:
b0:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:DF:62:22:F7:48:F3:6C:60:3A:C8:DD:A5:C7:2F:59:FF:ED:D9:DB
X509v3 Authority Key Identifier:
keyid:0E:CA:6E:06:C6:82:4B:D1:B8:11:18:3E:0E:17:FA:19:49:6D:26:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DspuBsaCS9G4ERg-Dhf6GUltJhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/Ld9iIvdI82xgOsjdpccvWf_t2ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/DspuBsaCS9G4ERg-Dhf6GUltJhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.148.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:f9:d9:d9:d4:35:30:37:83:73:73:55:8e:19:06:60:a7:57:
fe:a5:3c:d8:16:de:cd:7a:aa:fa:68:f4:a5:53:c7:c2:7a:e9:
e8:d4:de:7e:ab:d3:64:bd:42:f4:43:94:46:a1:15:30:1e:02:
98:d3:a8:00:96:33:86:30:9b:df:6d:1b:af:a2:23:9e:d4:2e:
38:d1:a6:e4:47:32:e2:06:26:2b:e9:b0:9e:e0:b1:98:ee:74:
ae:42:18:a7:f6:4d:0f:1c:0c:89:b4:20:6b:26:56:bb:7b:d4:
96:22:95:5a:32:e9:bc:a0:bd:28:60:2e:be:06:cd:9e:f6:44:
cf:37:fe:21:4a:b9:cd:f1:df:1d:cd:de:bf:38:b9:72:b4:7f:
e6:f6:c8:9f:50:15:25:cf:55:d0:9b:5c:c5:db:af:8c:8b:82:
e1:78:90:c9:ad:ca:ce:c4:fd:d4:18:15:a1:28:2d:3c:34:81:
0b:7e:c8:00:e2:f1:e1:fd:67:2f:9e:b7:4d:ee:63:b5:d4:75:
a7:22:0b:c1:d6:6d:fe:f7:bc:17:60:76:e8:a2:15:2d:b4:38:
be:d6:d0:ed:8a:be:16:18:60:81:3a:45:90:93:80:7b:89:07:
df:6b:77:19:e4:dd:42:e5:23:ed:02:b8:5c:11:2c:3d:4f:2b:
91:01:aa:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:00 2023 by rpki-client on console-ams.rpki-client.org