Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/3vo7gEI4CX7yFbMyfdWzV4TRgWY.roa
File: 3vo7gEI4CX7yFbMyfdWzV4TRgWY.roa (raw, json)
Hash identifier: P+8TbdxARaXKzSFaGy1jOO6leM9lb5MkCdhOJwKfiLc=
Subject key identifier: DE:FA:3B:80:42:38:09:7E:F2:15:B3:32:7D:D5:B3:57:84:D1:81:66
Certificate issuer: /CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Certificate serial: 0431FE17
Authority key identifier: 62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/3vo7gEI4CX7yFbMyfdWzV4TRgWY.roa
Signing time: Sat 01 Jan 2022 06:04:52 +0000
ROA not before: Sat 01 Jan 2022 06:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51793
IP address blocks: 91.221.78.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70385175 (0x431fe17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Validity
Not Before: Jan 1 06:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=defa3b804238097ef215b3327dd5b35784d18166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:50:d6:6e:ef:49:b6:db:ee:71:5e:1c:41:a0:
4b:1d:11:55:91:cf:42:e8:cf:37:c9:88:07:8e:b3:
8f:7f:5e:6d:92:51:ca:57:40:d3:8c:71:69:d3:44:
d6:73:b2:18:3d:27:4e:45:17:6e:03:e7:33:ef:a0:
66:f4:ab:48:ca:b3:92:38:6d:6e:0b:1b:77:fc:53:
2c:a0:fa:a9:b9:82:fc:68:fe:17:1d:8e:fc:7c:6f:
e6:29:8d:fb:4d:aa:8e:8f:bf:52:de:3e:03:69:36:
a3:da:f6:ad:49:e2:e0:89:d7:a5:a6:8e:56:ee:4c:
76:a1:cb:6a:92:34:ef:0b:18:c5:d9:0b:c8:2b:ef:
56:89:9a:f1:85:05:63:01:dc:8f:19:19:bc:4f:5d:
f6:b8:44:26:71:30:2a:65:d2:29:97:5a:e6:66:3e:
5e:1a:71:90:56:58:75:5a:ac:41:15:f5:a3:2a:bf:
a5:3f:75:12:b4:c1:34:91:5e:40:f1:a5:21:d4:94:
a6:68:d7:cb:52:ca:2f:2f:18:07:54:e0:07:6a:fc:
b5:bc:82:c8:9f:4f:46:9c:1f:60:dc:f6:79:92:fc:
7e:54:39:55:b8:a0:28:89:d9:a9:ec:fd:a9:58:d0:
33:13:32:b7:33:db:e9:08:21:14:b2:bf:a7:70:64:
8e:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FA:3B:80:42:38:09:7E:F2:15:B3:32:7D:D5:B3:57:84:D1:81:66
X509v3 Authority Key Identifier:
keyid:62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/3vo7gEI4CX7yFbMyfdWzV4TRgWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.78.0/23
Signature Algorithm: sha256WithRSAEncryption
84:cb:9c:af:b9:b2:4c:3b:5b:b7:e3:6f:6f:dc:37:90:0d:35:
6e:d9:50:dd:6f:52:07:43:5e:9e:36:a9:f4:c0:6d:3b:79:aa:
6e:b8:f3:61:c6:35:fb:6c:fb:9b:6e:0b:54:c5:88:f7:05:f8:
71:23:32:65:6e:d6:88:2f:89:88:04:c2:27:5c:6e:9d:87:77:
6f:a6:7b:f2:ae:9d:bd:cf:4b:53:7f:cf:36:dd:f6:fd:92:22:
7b:16:98:78:27:9e:58:3a:da:9c:91:d8:ed:47:87:71:2d:3b:
e5:45:a9:31:4c:e9:ab:0d:84:7c:0f:a3:d5:24:08:f2:68:42:
17:dc:32:7a:96:fa:e2:fe:c5:08:59:4e:c0:d1:eb:32:56:e0:
e1:c6:5b:66:9d:66:b8:47:b2:b5:04:4d:73:a4:87:ba:d4:f3:
4e:c6:07:30:13:60:70:05:04:99:21:c8:17:96:53:ff:b8:68:
de:c3:8a:6d:d8:73:2a:d8:79:2a:9a:c2:47:75:a6:55:fb:b2:
ed:18:ba:25:85:8c:13:0a:91:e2:eb:6c:a1:73:df:a8:a9:8f:
60:a2:e3:e4:40:23:23:28:7a:97:72:13:83:e0:f9:87:9f:09:
4d:eb:36:b3:e5:63:15:b7:50:b2:f6:08:ef:7f:79:ad:77:d5:
73:e9:f6:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:24 2023 by rpki-client on console-fra.rpki-client.org