Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/f7fe9b-69ae-4206-8d66-f660a57e2dd5/1/G83K9VQzNh73FBav7miSLzlXBUg.roa
File: G83K9VQzNh73FBav7miSLzlXBUg.roa (raw, json)
Hash identifier: o2UTvc8S3LV4G/djRL1bpxfaGvQ03XbUpcPRtdh7f3o=
Subject key identifier: 1B:CD:CA:F5:54:33:36:1E:F7:14:16:AF:EE:68:92:2F:39:57:05:48
Certificate issuer: /CN=3ca1fabe9f0b3e977f8e0829c0bf5f0878384668
Certificate serial: 0D7FDB97
Authority key identifier: 3C:A1:FA:BE:9F:0B:3E:97:7F:8E:08:29:C0:BF:5F:08:78:38:46:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKH6vp8LPpd_jggpwL9fCHg4Rmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/f7fe9b-69ae-4206-8d66-f660a57e2dd5/1/G83K9VQzNh73FBav7miSLzlXBUg.roa
Signing time: Sat 01 Jan 2022 15:59:34 +0000
ROA not before: Sat 01 Jan 2022 15:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201160
IP address blocks: 91.235.64.0/24 maxlen: 24
185.11.213.0/24 maxlen: 24
185.11.212.0/24 maxlen: 24
185.11.215.0/24 maxlen: 24
185.11.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 226483095 (0xd7fdb97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca1fabe9f0b3e977f8e0829c0bf5f0878384668
Validity
Not Before: Jan 1 15:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bcdcaf55433361ef71416afee68922f39570548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c4:4f:d4:ea:65:63:ab:50:b3:a9:ab:de:9c:
1a:b6:b7:1e:14:5e:d3:ce:78:9d:47:a1:5f:b3:e5:
e1:df:a0:c7:d4:f1:e6:4c:a8:13:81:b8:b8:9c:66:
da:80:d6:76:88:40:16:27:c7:d9:71:7e:77:20:4d:
3c:a1:43:83:ab:96:1e:2e:5b:46:ba:7d:2b:7c:71:
39:70:83:4d:f6:87:85:76:dd:9f:d1:6c:79:58:0a:
16:ff:75:ab:f3:9f:a9:07:4f:3a:98:7c:18:05:22:
3f:dd:ee:2a:25:d3:6e:9b:0a:cf:a6:ef:01:82:47:
be:ea:92:53:82:39:cc:9d:47:11:9a:1e:87:47:58:
f3:74:16:a0:ec:c4:84:70:b2:8c:5b:43:4a:57:1e:
c1:02:3c:97:1b:c1:ea:7b:c4:c6:44:0d:69:d0:97:
30:dc:bf:57:6e:11:57:5a:bb:2c:76:1c:0a:7b:ca:
d5:04:6f:5a:8a:7e:73:70:8e:d0:57:89:3c:5b:ea:
53:23:01:b7:b0:43:99:a7:b7:48:07:6a:7d:3d:41:
46:53:7f:0c:33:73:59:b3:5f:76:86:d4:05:6c:79:
af:de:c8:ed:10:ed:ed:c8:52:f9:e8:0d:c1:a1:40:
e4:bd:b2:15:b4:69:3f:4d:30:65:df:7c:18:91:3e:
b6:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CD:CA:F5:54:33:36:1E:F7:14:16:AF:EE:68:92:2F:39:57:05:48
X509v3 Authority Key Identifier:
keyid:3C:A1:FA:BE:9F:0B:3E:97:7F:8E:08:29:C0:BF:5F:08:78:38:46:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKH6vp8LPpd_jggpwL9fCHg4Rmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/f7fe9b-69ae-4206-8d66-f660a57e2dd5/1/G83K9VQzNh73FBav7miSLzlXBUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/f7fe9b-69ae-4206-8d66-f660a57e2dd5/1/PKH6vp8LPpd_jggpwL9fCHg4Rmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.64.0/24
185.11.212.0/22
Signature Algorithm: sha256WithRSAEncryption
48:aa:22:90:03:48:02:50:70:8e:56:08:d2:c0:00:0e:df:c8:
79:64:8f:fc:dd:be:db:98:09:ae:50:9c:b4:79:96:8b:01:21:
94:2b:4a:f3:0b:13:55:f6:a3:83:b8:f3:05:90:78:a5:ad:14:
0a:c1:02:e2:73:8c:8a:8c:6c:0d:c4:c2:19:18:21:56:5e:77:
df:64:03:99:cd:90:55:6a:9e:bb:a8:db:86:43:d2:d8:c6:d4:
b1:09:ae:13:13:dc:37:be:48:ad:05:8a:76:58:d6:69:f8:43:
1b:56:2f:4e:49:f1:74:87:c6:55:60:ca:5e:55:21:88:62:70:
71:6e:ab:5d:2a:89:f7:6a:99:61:c8:60:10:e5:84:cc:90:f7:
f7:f8:ac:62:5a:2e:b6:07:ea:47:b4:08:f1:96:98:9f:1f:c7:
6d:9f:bf:a0:c9:f3:9f:cf:10:61:21:59:d3:02:9d:53:86:29:
3d:db:08:74:79:bc:74:07:37:4c:5d:0d:36:41:5d:3b:02:e4:
e9:7b:6d:eb:ab:35:74:80:10:dc:9f:e5:08:06:82:12:f2:21:
36:75:a5:4f:93:55:91:2a:72:76:4e:92:84:26:0b:3b:40:82:
08:a0:01:15:e7:1b:3a:03:04:d2:b6:d2:99:83:be:ee:e1:ef:
1d:7b:10:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:59 2024 by rpki-client on console-fra.rpki-client.org