Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/08aFwmAlkY295v2O-UlVLvVdeKM.roa
File: 08aFwmAlkY295v2O-UlVLvVdeKM.roa (raw, json)
Hash identifier: SwZJ6vKTB5qYrB9Ms5W3vKx2wsQRNSfr/6whFSie5V4=
Subject key identifier: D3:C6:85:C2:60:25:91:8D:BD:E6:FD:8E:F9:49:55:2E:F5:5D:78:A3
Certificate issuer: /CN=72c3a9a3ad320a8fc61b5f8789f525d07e5be251
Certificate serial: 0461454A
Authority key identifier: 72:C3:A9:A3:AD:32:0A:8F:C6:1B:5F:87:89:F5:25:D0:7E:5B:E2:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/csOpo60yCo_GG1-HifUl0H5b4lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/08aFwmAlkY295v2O-UlVLvVdeKM.roa
Signing time: Sat 01 Jan 2022 13:59:53 +0000
ROA not before: Sat 01 Jan 2022 13:59:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48409
IP address blocks: 91.207.238.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73483594 (0x461454a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72c3a9a3ad320a8fc61b5f8789f525d07e5be251
Validity
Not Before: Jan 1 13:59:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3c685c26025918dbde6fd8ef949552ef55d78a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4d:29:77:c5:76:18:c8:13:5b:3c:af:11:c1:
a1:e5:0c:d5:61:fb:67:54:14:1e:c6:a8:ed:70:a3:
b9:13:a6:c2:29:1e:4a:f4:91:bd:c1:71:6a:d4:5f:
d2:05:d9:a6:f4:b6:fc:fb:b3:2e:dc:94:e5:f6:38:
4c:90:a7:4a:2e:b6:21:d0:4b:02:db:c9:8f:8c:39:
ba:5b:6a:cd:d6:7a:da:bd:c6:f8:a7:24:37:5b:dd:
2f:ec:4d:bf:80:32:af:45:ea:26:f0:99:18:69:bc:
85:a7:2a:78:8f:a5:7b:68:4d:e3:b8:8b:b9:ae:cd:
56:fa:34:d3:1d:fd:08:30:da:3b:6c:6f:15:54:31:
50:74:3f:64:7a:0b:c9:a0:cb:bb:5f:08:e8:fb:2b:
99:0a:12:20:2e:47:e4:52:c4:be:84:98:d4:f7:e6:
96:ff:3c:b0:1b:2c:eb:db:da:f6:87:af:96:d2:0d:
92:c0:0d:b4:2c:29:13:68:91:5d:e1:3d:9d:84:83:
36:19:c8:73:1b:26:aa:58:5e:eb:22:f7:ec:52:fe:
2f:8f:9d:ca:aa:d6:75:92:94:8f:aa:98:d8:37:6b:
82:5c:dd:47:d3:63:d7:54:51:24:e9:9f:17:d9:9d:
71:42:53:09:b2:97:b3:61:14:a3:6f:db:4c:6a:bb:
ef:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C6:85:C2:60:25:91:8D:BD:E6:FD:8E:F9:49:55:2E:F5:5D:78:A3
X509v3 Authority Key Identifier:
keyid:72:C3:A9:A3:AD:32:0A:8F:C6:1B:5F:87:89:F5:25:D0:7E:5B:E2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/csOpo60yCo_GG1-HifUl0H5b4lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/08aFwmAlkY295v2O-UlVLvVdeKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/efa4d7-99a7-4c18-80fd-d29f45f793c7/1/csOpo60yCo_GG1-HifUl0H5b4lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.238.0/23
Signature Algorithm: sha256WithRSAEncryption
92:af:f2:e1:19:1f:c2:e3:ce:0c:0c:74:a8:02:68:b3:7d:6b:
b0:ce:95:a9:08:66:da:80:5e:81:b5:6a:14:ec:dc:ec:73:ac:
1a:66:54:c8:f2:f7:76:bc:da:49:95:f3:bf:f0:a8:04:c0:3f:
14:aa:cb:9f:91:6c:d6:17:ca:24:00:3e:0d:49:f7:af:4f:56:
14:48:93:34:04:c5:31:f5:b4:6f:04:3f:1d:d5:4d:96:2e:2f:
d6:bb:40:54:0d:94:0a:fc:c6:dc:a6:b8:3e:89:ae:82:68:73:
c0:8c:a9:9f:05:c8:44:2a:ed:4c:2d:ee:9b:e5:c9:d3:41:e9:
d2:a5:4d:94:c1:a5:c3:c0:13:ab:2f:4d:59:2d:33:c9:15:10:
62:5c:80:08:c7:ef:d3:5a:22:08:29:5d:86:15:40:49:00:76:
72:f5:ae:b0:40:5e:b1:4b:33:06:15:56:21:7c:62:00:6a:c0:
81:cb:b6:be:12:00:67:24:87:9a:fc:e5:42:80:1e:98:e3:83:
53:95:b5:00:2d:a4:c6:64:d4:bf:09:4f:8b:03:9e:c1:0b:1c:
28:5a:6d:18:95:cb:5f:31:a7:98:5a:d9:83:be:c0:fa:66:fb:
75:c0:03:88:b7:ac:51:aa:89:e9:61:de:b0:09:9a:a6:08:69:
09:57:71:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:57 2024 by rpki-client on console-fra.rpki-client.org