Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/AU8acbhDOxdMGDWSweleeFeZj2w.roa
File: AU8acbhDOxdMGDWSweleeFeZj2w.roa (raw, json)
Hash identifier: SBYtnu86HWmZoOJI8bU7o+hLvBK6+JvRQ2Fkj6CA9kA=
Subject key identifier: 01:4F:1A:71:B8:43:3B:17:4C:18:35:92:C1:E9:5E:78:57:99:8F:6C
Certificate issuer: /CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Certificate serial: 36C949
Authority key identifier: A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/AU8acbhDOxdMGDWSweleeFeZj2w.roa
Signing time: Thu 31 Mar 2022 20:21:03 +0000
ROA not before: Thu 31 Mar 2022 20:21:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21485
IP address blocks: 91.231.153.0/24 maxlen: 24
2001:67c:15ec::/48 maxlen: 48
2a0a:3500::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3590473 (0x36c949)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Validity
Not Before: Mar 31 20:21:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=014f1a71b8433b174c183592c1e95e7857998f6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e1:cc:2b:a3:58:37:60:25:61:ed:26:2d:4f:
3a:40:40:75:56:52:46:c4:46:a5:c2:c4:49:25:b5:
4c:5f:6d:05:db:0f:07:4e:43:d5:6b:2a:b1:7b:79:
fc:3e:d3:d5:fa:93:4d:6d:0b:6e:e8:ff:ad:2f:fe:
8c:3d:8e:63:c3:f1:b6:de:f3:88:5c:89:ed:bf:18:
0f:b2:74:26:33:e6:c9:23:a2:d0:41:b9:a9:d7:0b:
f7:de:17:46:a8:7d:44:7f:52:03:f4:9e:7d:5f:3b:
ff:91:5c:d1:c9:50:d8:8a:1a:c7:d5:db:ba:f4:7f:
5d:53:76:e7:7d:d4:52:55:1a:94:4f:99:af:05:2a:
80:97:b8:d6:7a:18:c9:e5:7a:0f:d0:ff:c2:76:07:
0c:ce:ee:ce:08:62:26:f7:b5:b3:2e:49:f0:a1:06:
9e:f0:03:4c:6f:41:5e:b3:c3:be:2d:96:ad:b7:26:
cc:9a:eb:d9:0c:1b:7e:d9:c9:13:ce:b4:a5:20:ab:
06:06:8c:b1:dc:be:3c:d3:af:e9:99:a2:71:a0:b7:
17:4b:33:45:f8:21:d6:b9:48:9a:19:ed:08:66:73:
3e:d8:65:a1:db:32:e3:dd:6b:d1:c7:9f:8d:3c:92:
f1:b7:06:ce:02:97:7a:87:88:39:84:3d:3b:b6:1d:
8c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4F:1A:71:B8:43:3B:17:4C:18:35:92:C1:E9:5E:78:57:99:8F:6C
X509v3 Authority Key Identifier:
keyid:A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/AU8acbhDOxdMGDWSweleeFeZj2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.153.0/24
IPv6:
2001:67c:15ec::/48
2a0a:3500::/32
Signature Algorithm: sha256WithRSAEncryption
0f:28:be:01:88:b5:92:4f:a3:a2:38:bb:4d:d5:cd:83:a8:26:
0c:d4:53:90:e5:d1:03:0d:00:2c:17:85:f0:e5:59:8f:53:33:
2a:54:79:30:dc:01:33:0e:a6:89:01:5d:1e:71:95:e8:0f:a6:
0c:6a:91:25:e1:cd:f5:f7:eb:c3:77:96:ff:ba:ee:0b:e8:0d:
89:07:9e:9a:bf:ae:e1:7c:25:dc:a7:60:4c:9e:6d:83:f5:09:
93:8d:ae:47:c6:7d:8e:2b:d5:87:7f:e1:a2:24:4d:ae:a8:fa:
10:26:99:3a:4a:a3:b9:b9:a6:62:51:bb:dd:da:e3:32:37:57:
d6:c2:40:21:0f:cc:73:88:ff:40:2a:1e:d4:d9:81:b3:a4:4f:
fd:94:bb:bc:df:10:1a:cb:53:de:f2:5a:0e:59:04:0c:88:44:
69:7a:d2:35:01:5e:7e:10:37:41:13:18:6d:99:21:5c:20:90:
c9:13:9f:5e:80:d8:a1:01:1b:8e:02:f2:00:e0:29:d7:bc:38:
9d:49:fd:15:a9:a2:2c:9f:e1:cb:b4:7b:47:68:68:da:9a:22:
af:4f:04:5d:a8:2e:fa:dc:b1:fb:29:9e:33:aa:27:9b:bc:2f:
5f:06:4d:ba:a1:6a:7c:73:ec:b4:3c:01:da:cb:56:81:82:1f:
8e:5f:96:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:26 2023 by rpki-client on console-fra.rpki-client.org