Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/_U9nxFDV6WhspUmdrJ51OeI4VRU.roa
File: _U9nxFDV6WhspUmdrJ51OeI4VRU.roa (raw, json)
Hash identifier: BrFVA0HZpx78dcHXBLRo49X+sZ8FWy3ouKp1FUsxrtI=
Subject key identifier: FD:4F:67:C4:50:D5:E9:68:6C:A5:49:9D:AC:9E:75:39:E2:38:55:15
Certificate issuer: /CN=6dbd51576b4a93460a465af35e6bf550f5548894
Certificate serial: 06AA4C
Authority key identifier: 6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/_U9nxFDV6WhspUmdrJ51OeI4VRU.roa
Signing time: Thu 28 Apr 2022 11:32:56 +0000
ROA not before: Thu 28 Apr 2022 11:32:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39406
IP address blocks: 91.212.68.0/24 maxlen: 24
188.68.82.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436812 (0x6aa4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbd51576b4a93460a465af35e6bf550f5548894
Validity
Not Before: Apr 28 11:32:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd4f67c450d5e9686ca5499dac9e7539e2385515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a5:57:45:f7:a6:64:d8:91:57:4c:03:4e:41:
14:77:1f:5e:1a:89:fa:3e:cc:e8:15:e4:45:75:6b:
80:e5:d7:de:f7:6d:06:d1:82:5a:68:d4:1d:24:e2:
e6:60:66:39:75:89:a4:9f:df:4d:30:6d:dc:c7:89:
a9:01:49:8e:a7:9d:a2:00:4b:c3:ec:87:df:5b:ac:
9b:5e:b7:34:6d:49:39:65:d1:3f:b3:a0:aa:eb:40:
10:40:10:78:e1:99:41:e4:44:76:dc:9d:b8:5c:45:
cf:d0:7a:05:7e:46:3f:cd:7a:9a:bd:74:9f:6e:ce:
6a:aa:63:06:91:cf:5b:81:22:5f:af:a2:a2:98:b3:
cc:06:9f:51:ea:b6:e7:a2:19:d5:5e:0b:b0:1a:68:
c0:6f:1a:21:e2:f9:c0:1b:0f:cc:7b:2a:8c:dd:f8:
e5:6a:90:bc:1b:ad:d3:5e:95:2f:83:de:42:50:b0:
ff:1c:ad:f0:e3:b3:22:a9:32:28:8c:e0:18:d2:b1:
76:44:ca:53:51:49:9f:b9:eb:16:68:fc:06:b4:5e:
73:ea:0e:75:15:d7:56:68:3a:66:b3:9d:5f:a7:d5:
b0:74:cb:8e:50:e3:ad:57:7b:45:ba:d2:49:4d:27:
a7:12:39:34:0b:7c:d0:7c:58:8f:f6:08:ba:4d:dd:
24:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:4F:67:C4:50:D5:E9:68:6C:A5:49:9D:AC:9E:75:39:E2:38:55:15
X509v3 Authority Key Identifier:
keyid:6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/_U9nxFDV6WhspUmdrJ51OeI4VRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.68.0/24
188.68.82.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:16:5f:f1:6a:e3:cf:9d:7f:2e:5e:a4:a5:28:be:5f:68:d6:
cd:b9:f7:63:ad:d1:6b:83:df:ab:79:5c:25:f5:c1:90:2b:98:
0b:dd:38:27:f3:f4:a2:8e:ee:16:05:26:0d:85:d9:84:6f:58:
b0:b8:08:8e:03:a0:e4:d7:9f:93:30:2b:b3:97:83:4c:38:65:
64:6c:2c:10:59:82:6a:a7:8b:60:01:c4:67:58:a3:d1:eb:5f:
78:6f:5d:e8:00:a9:f4:38:8b:8e:ac:90:85:e0:01:aa:07:cd:
71:7b:6a:fa:13:44:99:67:a6:ec:a5:0f:30:85:54:5c:4a:de:
5a:27:9d:dd:1a:8e:82:84:d1:16:fa:4b:b7:9d:ef:f2:a4:89:
ac:5f:1e:eb:15:2f:4d:20:ce:d8:a0:fa:ec:b4:ce:29:bb:9d:
5a:fe:45:a0:18:e5:15:32:fd:17:bc:7a:86:26:c9:42:ad:ff:
a3:c9:4e:7e:f3:ed:39:bd:75:52:7c:d1:ef:05:51:f3:df:79:
c5:20:e8:6d:eb:55:a6:2d:0f:68:c0:4c:b1:83:d5:d7:1c:ad:
46:18:ba:b1:d1:ba:fc:b3:3d:59:e4:fa:e9:7e:ff:df:bc:b2:
06:ab:e6:43:91:9c:79:77:fd:e9:d6:f0:f4:78:f5:dc:f0:f5:
4d:63:b5:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:17 2023 by rpki-client on console-ams.rpki-client.org