Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/H6yReK6WLZmXUmwCpOYP4Cpsn_M.roa
File: H6yReK6WLZmXUmwCpOYP4Cpsn_M.roa (raw, json)
Hash identifier: bV3LOUPOoPBgKHl3UxX66eGn1ygFgaWBCQ50q2v9pDk=
Subject key identifier: 1F:AC:91:78:AE:96:2D:99:97:52:6C:02:A4:E6:0F:E0:2A:6C:9F:F3
Certificate issuer: /CN=dcfae7d4e69d42e4f4c95d99f482b9a944dbefc8
Certificate serial: 0422C27E
Authority key identifier: DC:FA:E7:D4:E6:9D:42:E4:F4:C9:5D:99:F4:82:B9:A9:44:DB:EF:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Prn1OadQuT0yV2Z9IK5qUTb78g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/H6yReK6WLZmXUmwCpOYP4Cpsn_M.roa
Signing time: Wed 09 Mar 2022 15:44:02 +0000
ROA not before: Wed 09 Mar 2022 15:44:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 91.236.66.0/24 maxlen: 24
91.236.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69386878 (0x422c27e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcfae7d4e69d42e4f4c95d99f482b9a944dbefc8
Validity
Not Before: Mar 9 15:44:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1fac9178ae962d9997526c02a4e60fe02a6c9ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:64:27:a1:0e:83:9b:56:34:f1:dc:6a:a6:69:
79:1a:19:86:a6:03:15:5c:b7:db:29:f3:4d:97:56:
db:b0:1e:2f:60:5a:9f:01:b7:ca:bb:42:4a:4a:91:
12:63:f1:bd:1c:5a:b1:35:8c:c0:4e:b6:a2:32:f2:
25:66:78:c6:0f:7f:64:89:b4:65:f3:c5:f7:0a:ef:
66:b3:da:73:2c:77:12:ee:da:69:9a:68:8d:0d:4f:
75:9e:b5:46:12:ca:a5:c2:d1:7b:ef:e1:03:15:68:
30:0f:49:ce:5c:f4:f7:4e:d3:09:c7:d4:b5:60:85:
d6:55:99:8a:c9:35:8c:c2:19:2e:63:60:0a:8d:6c:
ee:59:de:61:9f:70:7c:89:84:e8:5f:98:7c:fb:5e:
4e:9f:2e:25:e8:9a:7a:0e:54:a9:e4:90:ff:a0:c0:
ff:f4:9e:48:47:09:fa:f8:3b:91:08:60:13:85:8f:
48:04:ef:67:da:71:ed:ec:e2:03:5a:35:81:e8:04:
ac:12:bf:84:f0:eb:5c:9c:f3:64:9f:8d:37:a0:e1:
a7:21:dc:3a:7d:ad:ca:fe:33:44:76:62:f1:6c:49:
f6:0e:b5:fb:af:95:79:11:00:fc:a5:4c:92:0f:9b:
85:e4:44:b4:03:8e:cd:ee:60:76:ce:cc:67:14:69:
89:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:AC:91:78:AE:96:2D:99:97:52:6C:02:A4:E6:0F:E0:2A:6C:9F:F3
X509v3 Authority Key Identifier:
keyid:DC:FA:E7:D4:E6:9D:42:E4:F4:C9:5D:99:F4:82:B9:A9:44:DB:EF:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Prn1OadQuT0yV2Z9IK5qUTb78g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/H6yReK6WLZmXUmwCpOYP4Cpsn_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/3Prn1OadQuT0yV2Z9IK5qUTb78g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.66.0/23
Signature Algorithm: sha256WithRSAEncryption
23:94:2e:7e:23:d0:00:3d:7c:92:fc:64:61:77:35:52:ed:26:
7d:65:52:fd:65:fb:d8:75:3b:99:f2:a4:a8:05:3d:90:4f:9e:
32:cb:f9:93:d3:57:26:41:78:78:3b:b0:23:8e:e8:cd:83:7b:
c3:3b:f7:43:bf:20:de:b8:53:3a:cd:4a:a3:59:c1:e3:d4:ad:
37:db:59:50:07:22:c2:81:ca:0a:a3:18:2b:58:bf:8c:e1:39:
6d:e3:5c:c0:9e:5a:a9:00:fe:47:de:a9:aa:b0:6c:37:99:12:
0a:f4:8c:f6:2f:98:7c:ef:41:45:13:4f:60:7f:3a:3a:8c:a1:
12:84:ad:ae:d1:26:40:47:0f:50:4c:84:04:19:9a:f8:25:b7:
47:b5:bd:b1:16:1b:83:42:8f:12:5f:88:aa:e7:b2:2f:ac:e4:
0f:f8:07:e3:87:ab:fa:23:bb:f1:dc:df:b1:f0:3a:46:af:b9:
42:89:e1:fb:90:09:cb:76:b2:45:86:37:64:c1:69:0e:d2:0e:
94:22:a7:8b:0c:3a:21:4e:e3:27:52:1f:cd:62:f2:a7:87:95:
8c:ab:4c:b9:32:ce:4e:71:e9:cc:4a:68:7c:72:4b:17:c2:93:
2f:54:78:66:b5:fd:76:54:a4:98:21:95:ad:7b:a8:77:5c:98:
37:6f:45:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:41 2023 by rpki-client on console-fra.rpki-client.org