Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/19c9e1-8543-4f50-acae-e4045d8cfe8f/1/9bfEwDMuczIcxHICHQJ1WCo6pjY.roa
File: 9bfEwDMuczIcxHICHQJ1WCo6pjY.roa (raw, json)
Hash identifier: GsKIon1Vqm7mXIn6Tu7/gW1/ssBdkmcafXnem9LHCvY=
Subject key identifier: F5:B7:C4:C0:33:2E:73:32:1C:C4:72:02:1D:02:75:58:2A:3A:A6:36
Certificate issuer: /CN=963a0fc47a7adf62845ad6dcd7fb761a6c19fedb
Certificate serial: 018201414A79FA6D9A532D3BDA6795FF8C67
Authority key identifier: 96:3A:0F:C4:7A:7A:DF:62:84:5A:D6:DC:D7:FB:76:1A:6C:19:FE:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ljoPxHp632KEWtbc1_t2GmwZ_ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/19c9e1-8543-4f50-acae-e4045d8cfe8f/1/9bfEwDMuczIcxHICHQJ1WCo6pjY.roa
Signing time: Fri 15 Jul 2022 09:47:12 +0000
ROA not before: Fri 15 Jul 2022 09:47:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58213
IP address blocks: 91.216.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:01:41:4a:79:fa:6d:9a:53:2d:3b:da:67:95:ff:8c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=963a0fc47a7adf62845ad6dcd7fb761a6c19fedb
Validity
Not Before: Jul 15 09:47:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5b7c4c0332e73321cc472021d0275582a3aa636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:80:17:7b:27:2f:30:0d:d1:d6:ac:87:1a:eb:
6e:b5:88:6d:fd:40:2f:49:d8:0b:f5:07:ef:bd:7d:
38:32:0d:4a:71:2c:c9:0f:0a:26:d3:74:c8:aa:80:
47:20:17:00:a2:25:29:c1:11:2c:83:dd:ac:30:2b:
e6:79:b7:fa:1a:79:cd:1d:87:b7:d0:d2:ff:65:e3:
3b:81:16:44:f1:67:81:54:f5:28:12:7f:49:19:71:
d9:ac:98:ee:97:10:15:35:b9:b6:13:32:67:a0:1e:
18:3c:97:52:4b:80:a8:2c:d7:dc:c5:ac:b6:06:90:
2b:ec:35:5c:7b:65:8e:a1:96:98:bd:bf:15:72:01:
47:af:c6:be:d1:2f:fb:80:27:23:64:9a:d9:78:3e:
35:95:45:b5:4d:58:26:f0:d6:10:04:4c:94:77:7a:
c4:8d:25:60:02:2d:7b:ff:18:db:bb:40:34:ad:89:
59:22:d4:9b:13:35:38:33:cf:8a:83:fc:34:95:90:
a7:fa:cd:b6:55:1e:92:2e:d2:61:d1:c5:3b:ea:3f:
27:33:e3:db:04:25:8d:e6:91:21:da:c6:81:52:32:
29:f7:98:62:21:8c:6c:cd:06:4c:92:f0:39:57:bc:
bb:10:68:31:18:45:84:a6:2d:fd:44:fc:43:b6:9a:
ba:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B7:C4:C0:33:2E:73:32:1C:C4:72:02:1D:02:75:58:2A:3A:A6:36
X509v3 Authority Key Identifier:
keyid:96:3A:0F:C4:7A:7A:DF:62:84:5A:D6:DC:D7:FB:76:1A:6C:19:FE:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ljoPxHp632KEWtbc1_t2GmwZ_ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/19c9e1-8543-4f50-acae-e4045d8cfe8f/1/9bfEwDMuczIcxHICHQJ1WCo6pjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/19c9e1-8543-4f50-acae-e4045d8cfe8f/1/ljoPxHp632KEWtbc1_t2GmwZ_ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.74.0/24
Signature Algorithm: sha256WithRSAEncryption
81:71:16:ae:61:78:32:b4:80:f8:42:ac:0a:30:2f:36:3f:7f:
cb:c6:d0:ea:68:43:5b:5d:b2:ae:26:c4:27:f0:de:eb:e6:9f:
e9:b7:28:97:cd:6b:7f:3c:39:4d:15:ee:9e:d4:88:82:c2:d1:
08:89:cb:4a:95:aa:8a:04:d4:64:56:8f:13:c2:18:05:b5:29:
45:c2:f4:8c:a8:8c:46:06:6d:b9:67:7c:fd:72:7c:71:58:4c:
be:2a:a5:e6:6c:d6:56:b4:5d:2b:33:6f:f3:fc:52:1e:a0:e5:
dd:00:a8:f9:a7:72:a6:b6:54:84:c8:9a:30:04:a2:12:44:93:
03:b7:61:2f:28:35:70:02:28:a4:12:6e:18:13:cc:8d:c4:92:
7c:58:e7:11:79:c1:d5:6c:ee:c1:e3:96:47:d0:28:77:0e:e1:
09:af:5e:7b:44:bd:88:eb:22:30:b9:c1:b7:62:27:2e:41:4a:
88:09:03:91:40:a5:50:ae:b3:b8:09:bf:8c:da:b4:bc:96:a9:
a5:2d:f0:2b:b7:2d:f3:e6:59:d3:bc:30:46:70:bd:a3:82:b9:
84:6b:28:2d:44:8e:35:fa:46:b5:9a:b3:9f:d0:fb:80:c7:15:
56:4c:dd:48:f1:87:80:bd:ef:b6:69:0c:37:6b:4a:56:32:9f:
03:c3:27:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:41 2024 by rpki-client on console-ams.rpki-client.org