Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/840dc1-83fc-4f9d-be5e-1939883bb1f8/1/mkJIf7athYUqiqbhKRIz33zL6dw.roa
File: mkJIf7athYUqiqbhKRIz33zL6dw.roa (raw, json)
Hash identifier: ffrzKdcT5kLfou87l5puVPo0xXsjAyKLx5FPmVyHCe0=
Subject key identifier: 9A:42:48:7F:B6:AD:85:85:2A:8A:A6:E1:29:12:33:DF:7C:CB:E9:DC
Certificate issuer: /CN=f3b7dd54dab02fe8cde8a85e569f827088979419
Certificate serial: 0182EE8F69363496238706E4EC36F8874283
Authority key identifier: F3:B7:DD:54:DA:B0:2F:E8:CD:E8:A8:5E:56:9F:82:70:88:97:94:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87fdVNqwL-jN6KheVp-CcIiXlBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/840dc1-83fc-4f9d-be5e-1939883bb1f8/1/mkJIf7athYUqiqbhKRIz33zL6dw.roa
Signing time: Tue 30 Aug 2022 11:42:32 +0000
ROA not before: Tue 30 Aug 2022 11:42:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42791
IP address blocks: 91.213.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:8f:69:36:34:96:23:87:06:e4:ec:36:f8:87:42:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3b7dd54dab02fe8cde8a85e569f827088979419
Validity
Not Before: Aug 30 11:42:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a42487fb6ad85852a8aa6e1291233df7ccbe9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a3:e7:7f:0e:ec:81:2a:96:19:42:59:70:8e:
01:94:68:bc:0e:ca:77:ca:88:6b:23:7d:8d:c8:dc:
f1:c6:34:f5:50:45:b5:1a:a1:dc:eb:a4:d1:22:8e:
74:c6:ba:a3:6c:22:ff:a6:91:4c:fe:c6:37:b7:62:
d1:4f:fc:46:32:48:e8:4f:54:6b:ef:a4:52:a6:2e:
ef:ef:77:93:dd:bd:0b:86:9b:90:e8:eb:1a:0d:ee:
ef:7f:c2:a2:a2:e0:b1:3f:9e:af:8c:2a:e9:6d:de:
8a:7c:28:7e:39:20:73:5c:9e:6e:da:0c:9a:89:6a:
88:18:07:6e:90:7a:e2:f9:a7:ff:29:0d:a1:4a:c2:
ca:32:f8:66:1f:9a:b1:d4:c2:c8:5c:ee:03:3c:69:
ed:53:10:54:f5:13:28:54:59:f0:04:d4:ae:3b:12:
69:00:40:0b:04:6b:81:96:f2:b9:08:84:db:35:2c:
74:4e:bd:89:fe:a6:ac:99:bd:d2:bf:88:a0:f2:35:
5b:86:ad:56:bb:7e:8f:c5:cf:0f:7e:67:dc:a5:2f:
f1:8c:99:7f:02:21:ad:16:61:97:fc:50:35:5c:d8:
52:ee:80:71:b7:bd:24:c7:38:b9:69:07:2e:bd:18:
85:e9:f8:46:00:c1:e1:6b:c7:d6:2c:cb:ee:79:de:
38:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:42:48:7F:B6:AD:85:85:2A:8A:A6:E1:29:12:33:DF:7C:CB:E9:DC
X509v3 Authority Key Identifier:
keyid:F3:B7:DD:54:DA:B0:2F:E8:CD:E8:A8:5E:56:9F:82:70:88:97:94:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87fdVNqwL-jN6KheVp-CcIiXlBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/840dc1-83fc-4f9d-be5e-1939883bb1f8/1/mkJIf7athYUqiqbhKRIz33zL6dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/840dc1-83fc-4f9d-be5e-1939883bb1f8/1/87fdVNqwL-jN6KheVp-CcIiXlBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.131.0/24
Signature Algorithm: sha256WithRSAEncryption
60:82:75:32:97:de:32:aa:9f:12:4b:0a:ad:0e:a6:e8:b5:ab:
c3:62:3d:2a:90:3c:bf:01:42:03:dd:cf:9a:8e:58:c8:4a:8c:
c4:09:92:8e:cc:d8:af:c9:ec:c3:c8:0c:64:34:ad:de:d4:07:
69:bb:9d:22:9e:b9:3a:82:aa:6b:f4:b5:ec:24:82:59:9d:3b:
ef:78:cb:2f:5c:5b:2a:b7:a3:4f:e9:5d:40:7b:f3:66:13:48:
cc:7c:62:53:02:48:d1:38:48:55:0f:2b:67:74:f4:94:70:3b:
ac:c2:5a:e4:47:ed:5c:9d:f2:b3:19:9f:ba:93:e4:93:b6:bf:
1e:1c:6c:b4:86:4b:af:74:2c:9a:73:b3:9e:45:fd:a8:f7:c6:
d0:a2:c2:99:1f:cb:5a:02:e5:74:e1:22:59:fc:f6:25:07:7a:
48:11:2b:2c:c0:5b:a9:b2:2c:50:38:f8:ca:c0:66:f2:d6:e4:
ce:c0:a1:bf:ac:e7:46:c3:7f:9a:76:cc:70:0e:c7:a5:11:cd:
22:60:12:2d:b7:9a:50:4a:f6:73:5a:76:d5:e8:b6:09:eb:5d:
f2:f4:6a:22:e7:9c:d4:a5:fd:19:dd:08:6f:c2:51:73:87:c6:
04:11:49:0b:57:5d:04:80:bc:1d:d6:cc:40:9f:f3:fd:79:f5:
66:77:1c:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:01 2024 by rpki-client on console-ams.rpki-client.org