Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/1nbF9yr4PzOz-JyFpX8STtoCfkg.roa
File: 1nbF9yr4PzOz-JyFpX8STtoCfkg.roa (raw, json)
Hash identifier: cC8bywJNNtLHqGoOztaiGgnxwvpMBzStGCfCxePQ49k=
Subject key identifier: D6:76:C5:F7:2A:F8:3F:33:B3:F8:9C:85:A5:7F:12:4E:DA:02:7E:48
Certificate issuer: /CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Certificate serial: 077BD3D7
Authority key identifier: 6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/1nbF9yr4PzOz-JyFpX8STtoCfkg.roa
Signing time: Sat 01 Jan 2022 09:57:34 +0000
ROA not before: Sat 01 Jan 2022 09:57:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34944
IP address blocks: 91.201.84.0/23 maxlen: 23
2001:678:9d0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125555671 (0x77bd3d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e15a4336d2f5e1bd60737de957968992a7470e9
Validity
Not Before: Jan 1 09:57:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d676c5f72af83f33b3f89c85a57f124eda027e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:17:88:28:e3:17:ad:32:f5:18:e9:a5:47:87:
b2:0e:16:9e:cf:40:cd:f5:de:7a:e5:c1:b8:87:c7:
22:f2:44:d7:0f:07:e5:91:3a:39:6b:54:c0:cf:ba:
69:b9:92:be:d2:62:0b:d6:2f:a3:11:f3:f4:30:cf:
6f:0d:07:64:ec:21:17:55:a7:cb:ce:44:28:73:22:
1f:f7:09:3e:09:c4:62:ca:b0:a4:7b:02:d6:fb:c3:
27:8d:97:90:d1:2c:fc:2c:69:4c:c6:0b:ac:66:04:
17:a5:42:e3:3f:70:71:78:5a:8d:3c:30:bc:4c:35:
08:25:13:38:90:c1:68:3f:da:0d:02:b5:51:e2:ce:
66:e2:45:0e:af:7a:25:fe:9c:4c:7e:a7:ba:66:43:
65:c6:f0:3d:b5:42:e0:e7:1d:a6:99:df:31:53:c2:
3b:12:d3:a5:6d:7c:e7:2d:46:2f:44:88:69:6c:7f:
da:8d:20:f4:77:c0:f6:83:95:26:39:7b:83:5e:ad:
61:87:2a:d7:b4:62:67:7f:e5:24:2b:57:67:df:62:
5e:19:79:c9:49:ca:84:96:d0:4f:be:56:46:56:6c:
26:e8:c5:06:9c:e7:c4:f9:cd:3c:99:0b:1d:0b:0b:
56:ad:90:44:3a:fc:a6:41:e6:db:94:6f:f3:8c:19:
fc:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:76:C5:F7:2A:F8:3F:33:B3:F8:9C:85:A5:7F:12:4E:DA:02:7E:48
X509v3 Authority Key Identifier:
keyid:6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/1nbF9yr4PzOz-JyFpX8STtoCfkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.84.0/23
IPv6:
2001:678:9d0::/48
Signature Algorithm: sha256WithRSAEncryption
52:7e:a6:0e:ac:ea:9d:6c:48:5f:ff:b4:ef:f5:a7:1f:32:96:
1c:66:10:bb:94:c3:46:9d:66:77:ff:d6:d9:4f:5f:69:1f:95:
f7:9c:32:00:e5:ab:de:b9:5b:98:a5:b6:de:3b:b2:f4:f9:c6:
12:36:97:cb:73:b3:a2:b9:20:f5:f3:83:1f:51:45:46:43:2a:
15:7e:f9:0a:f4:e1:4c:f2:2e:3c:8c:e1:97:17:4b:b7:f0:65:
cf:99:30:99:a5:48:62:7c:8a:81:8a:fb:b7:03:ae:7a:76:69:
35:63:63:ca:a6:d7:e9:39:0b:f0:1d:a7:8f:98:49:f8:9d:40:
f9:a6:85:35:2c:42:40:23:71:72:91:ce:aa:65:7f:24:63:3f:
16:71:70:57:04:cc:af:a1:a3:27:8b:a6:fc:5b:c2:57:c8:c1:
f7:f9:30:c6:1a:73:a4:11:fc:37:72:ed:eb:d2:9e:5e:0c:8d:
24:e2:54:84:cd:b7:96:d0:aa:5b:c4:8c:7e:42:c4:b4:0a:ed:
e1:19:25:0b:78:e4:41:69:ea:3d:78:f8:32:3d:49:96:87:16:
d7:01:a2:47:1a:bb:1d:55:b5:7a:60:37:23:df:2f:34:42:16:
5e:50:7f:91:57:95:74:d5:ea:f6:0e:fb:75:87:ce:63:22:ef:
76:be:8e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org