Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/dFiqdTDMLNYPbREbfOrA7U7vfNs.roa
File: dFiqdTDMLNYPbREbfOrA7U7vfNs.roa (raw, json)
Hash identifier: b6Cv5DQzfRhsJpMiQGkMY7pJ2/mJv/FeEeYaAWEWT40=
Subject key identifier: 74:58:AA:75:30:CC:2C:D6:0F:6D:11:1B:7C:EA:C0:ED:4E:EF:7C:DB
Certificate issuer: /CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Certificate serial: 018B88
Authority key identifier: AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/dFiqdTDMLNYPbREbfOrA7U7vfNs.roa
Signing time: Sat 07 May 2022 22:08:28 +0000
ROA not before: Sat 07 May 2022 22:08:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42100
IP address blocks: 91.212.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101256 (0x18b88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af3f700503f40720a82f76ef15cda62022f1f9a9
Validity
Not Before: May 7 22:08:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7458aa7530cc2cd60f6d111b7ceac0ed4eef7cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5a:2f:28:15:f1:94:9f:9a:da:75:15:a3:5c:
f6:32:ab:83:ab:cf:ef:3e:07:3c:9e:96:69:5b:b8:
66:10:43:4e:08:5a:27:fb:08:d7:08:5a:9e:f8:5c:
94:c6:53:67:92:c8:0a:5d:4e:45:76:47:a3:f0:56:
ed:84:89:cd:91:4c:8d:42:48:0f:bf:e6:8f:d9:0d:
2e:b6:1f:79:7b:20:fb:9f:82:f1:a9:6b:62:dd:1b:
0e:a9:c8:c8:ea:6d:18:9a:56:6b:70:9c:0c:4c:5b:
30:5e:3c:5b:57:21:3e:c7:71:c8:dd:1a:26:ea:16:
99:08:12:7d:e0:9c:9c:4c:14:02:27:e0:2a:30:e5:
ec:98:76:4c:7c:2d:4a:e2:fd:27:9c:89:d9:c9:00:
4e:1f:02:34:b4:62:97:d4:ba:0d:98:e8:df:b3:19:
9d:c0:09:8e:b5:a0:b5:5d:9c:25:81:dd:66:fb:7c:
80:85:5a:ba:82:8d:98:a1:52:17:f8:e4:72:4c:e8:
d5:54:22:bf:33:28:e4:38:41:04:d3:98:6e:56:e8:
55:df:32:d3:2b:53:de:57:1f:19:53:7a:f5:4f:8b:
95:43:c6:f9:f6:2e:1a:a8:03:53:c4:1e:7a:f5:a2:
29:73:14:ad:44:53:1d:b6:f0:fa:52:e2:12:49:de:
ec:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:58:AA:75:30:CC:2C:D6:0F:6D:11:1B:7C:EA:C0:ED:4E:EF:7C:DB
X509v3 Authority Key Identifier:
keyid:AF:3F:70:05:03:F4:07:20:A8:2F:76:EF:15:CD:A6:20:22:F1:F9:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rz9wBQP0ByCoL3bvFc2mICLx-ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/dFiqdTDMLNYPbREbfOrA7U7vfNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/7b7f26-f841-4700-aafb-ead0634192cd/1/rz9wBQP0ByCoL3bvFc2mICLx-ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.13.0/24
Signature Algorithm: sha256WithRSAEncryption
06:db:23:7e:ea:35:ca:6e:85:9f:b5:07:05:55:36:5c:6f:28:
81:bd:e1:90:9d:16:03:5b:32:2d:91:68:a9:66:d4:43:75:9b:
ee:e5:7c:54:e7:79:fe:35:25:66:bc:35:00:38:45:48:52:6b:
4b:54:72:1f:cb:9a:b1:22:c4:99:59:e6:a1:36:e5:ca:80:70:
b6:82:b5:c1:fa:c5:c2:cf:3f:28:5a:57:d9:d3:35:a8:60:5e:
3e:bd:bd:95:1c:92:7c:67:a1:90:95:8a:71:2b:dd:a3:8d:b3:
fb:a9:ac:1d:c3:e1:ba:50:06:cf:ea:c0:86:44:16:72:7c:ef:
9c:1c:21:84:e9:90:ce:31:4e:b0:c8:43:28:46:30:28:94:bd:
c7:c6:44:e0:eb:0a:9c:17:10:57:a8:39:a9:cb:47:dd:6a:3c:
c6:f5:2f:34:50:dd:57:32:38:96:20:06:e6:58:73:79:df:67:
0a:ca:d2:26:6d:14:02:5a:d8:6f:81:5b:f2:7c:2d:1d:03:9e:
19:b0:fe:b1:c8:2f:fc:3f:67:1b:aa:18:ab:b3:db:f9:95:e0:
9d:7c:78:08:6f:ca:b0:e5:7f:f3:9d:73:b1:d0:ad:a6:0c:e3:
ff:da:f7:eb:f7:77:50:80:db:92:1c:c8:bf:84:b2:88:58:7e:
27:49:cb:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:00 2023 by rpki-client on console-fra.rpki-client.org