Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/_dpbQZHB-VHtzkzs6_Iaq6qTHcc.roa
File: _dpbQZHB-VHtzkzs6_Iaq6qTHcc.roa (raw, json)
Hash identifier: 2ts5eRtElQMO2qXcrO1yB/ULWpKvazvW7Bf8zM9w840=
Subject key identifier: FD:DA:5B:41:91:C1:F9:51:ED:CE:4C:EC:EB:F2:1A:AB:AA:93:1D:C7
Certificate issuer: /CN=dcfae7d4e69d42e4f4c95d99f482b9a944dbefc8
Certificate serial: 04EC4D4E
Authority key identifier: DC:FA:E7:D4:E6:9D:42:E4:F4:C9:5D:99:F4:82:B9:A9:44:DB:EF:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Prn1OadQuT0yV2Z9IK5qUTb78g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/_dpbQZHB-VHtzkzs6_Iaq6qTHcc.roa
Signing time: Fri 03 Jun 2022 12:48:22 +0000
ROA not before: Fri 03 Jun 2022 12:48:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 91.236.66.0/24 maxlen: 24
91.236.67.0/24 maxlen: 24
2a10:a700:100::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82595150 (0x4ec4d4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcfae7d4e69d42e4f4c95d99f482b9a944dbefc8
Validity
Not Before: Jun 3 12:48:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fdda5b4191c1f951edce4cecebf21aabaa931dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2b:48:33:83:7c:a6:e7:79:0b:41:2b:c7:de:
30:e5:ff:52:ea:0e:ba:4f:e6:88:d0:d6:29:4f:3f:
fd:c7:6b:f7:14:29:48:e1:d3:48:30:1f:b7:91:88:
14:54:75:b7:11:54:53:08:55:8d:0a:a1:7a:60:5a:
91:6b:1e:7b:c3:71:d8:5d:42:62:09:8b:49:f4:49:
fe:f7:f1:c4:2d:cb:92:91:e2:8c:6e:21:7f:83:76:
ba:cb:78:68:c6:e1:77:32:a9:af:a1:80:33:75:6b:
91:c1:06:77:b1:fe:91:23:55:7d:be:81:b5:d7:83:
45:2c:4e:73:6f:2a:eb:1b:03:f4:91:a9:a1:e9:ee:
64:30:0b:04:ec:c2:ef:25:ee:cb:4f:ce:58:68:87:
8b:7e:a1:79:ad:7c:44:e3:8c:43:bc:ba:33:59:12:
65:bd:0c:41:b6:ae:96:f5:e8:c7:79:b5:12:88:ae:
69:eb:fb:64:a6:28:67:7a:e1:40:ac:c0:9f:58:ac:
4e:3c:15:df:1b:d2:62:d6:d8:f7:43:a7:fb:ad:a9:
90:6a:85:29:da:ec:dd:3b:82:66:26:1e:c1:17:8d:
36:88:d8:6f:36:1b:85:ae:e2:ac:47:3c:7d:74:1b:
1f:fc:da:a9:70:81:67:7b:51:73:35:f3:d1:1c:35:
19:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:DA:5B:41:91:C1:F9:51:ED:CE:4C:EC:EB:F2:1A:AB:AA:93:1D:C7
X509v3 Authority Key Identifier:
keyid:DC:FA:E7:D4:E6:9D:42:E4:F4:C9:5D:99:F4:82:B9:A9:44:DB:EF:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Prn1OadQuT0yV2Z9IK5qUTb78g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/_dpbQZHB-VHtzkzs6_Iaq6qTHcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9342f8-df9e-45bb-972f-37273df3901c/1/3Prn1OadQuT0yV2Z9IK5qUTb78g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.66.0/23
IPv6:
2a10:a700:100::/40
Signature Algorithm: sha256WithRSAEncryption
1d:39:00:4f:03:75:5e:a0:23:04:a3:a5:f0:56:f2:0b:b2:b8:
d4:e2:af:60:78:43:2d:17:b5:d3:52:50:c4:22:45:6a:e8:98:
ce:d5:ae:15:8a:8d:c3:73:7c:fa:8d:b0:b4:72:29:a6:c8:61:
6b:f6:fa:55:b2:3f:85:f6:ab:6c:6a:bb:bb:dd:ed:fb:ef:90:
b3:56:e9:e4:14:b6:73:8b:d2:12:25:22:aa:66:ca:95:b9:69:
20:20:f7:48:58:12:4b:4c:59:b1:a9:ee:64:aa:81:d7:7b:10:
1b:b0:42:3f:a0:c7:b2:c3:63:ba:18:a4:29:a2:e8:8d:05:b9:
b0:26:15:58:93:a4:bb:62:75:a8:39:b5:94:5e:93:0c:c4:bc:
10:5b:83:9a:d8:12:b5:3b:7d:5b:ee:14:fd:e1:2c:e8:7a:7a:
94:ff:3a:a0:77:4a:89:33:b1:21:90:c1:75:e7:11:a2:c9:ed:
09:9a:ff:2f:99:3e:65:17:52:9a:25:1f:3e:bb:70:57:9d:99:
3e:be:87:bd:bf:70:25:b0:7d:49:4e:a0:0e:7e:b3:99:62:68:
0e:8a:49:18:55:8d:5f:5f:74:7c:4e:37:54:df:2e:fd:c1:a9:
99:13:44:27:fc:9e:9e:0e:5e:55:f7:90:bc:97:63:4e:ea:a1:
7e:6a:37:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:02 2024 by rpki-client on console-fra.rpki-client.org