Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/643f86-636f-4c6e-9e60-a95b637afc8d/1/Ixb6yOYK23NHwYzX8QG8yzl41-E.roa
File: Ixb6yOYK23NHwYzX8QG8yzl41-E.roa (raw, json)
Hash identifier: nT9xFzRnSPzQjRCVEtVf2U5GTt0f0wXLb9Di3RNlY7E=
Subject key identifier: 23:16:FA:C8:E6:0A:DB:73:47:C1:8C:D7:F1:01:BC:CB:39:78:D7:E1
Certificate issuer: /CN=835bf48f18527b2b3b59bfbf3fdff204492bce91
Certificate serial: 08CB0BB9
Authority key identifier: 83:5B:F4:8F:18:52:7B:2B:3B:59:BF:BF:3F:DF:F2:04:49:2B:CE:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1v0jxhSeys7Wb-_P9_yBEkrzpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/643f86-636f-4c6e-9e60-a95b637afc8d/1/Ixb6yOYK23NHwYzX8QG8yzl41-E.roa
Signing time: Sat 01 Jan 2022 08:57:38 +0000
ROA not before: Sat 01 Jan 2022 08:57:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50906
IP address blocks: 91.216.20.0/24 maxlen: 24
2001:67c:1cc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147524537 (0x8cb0bb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835bf48f18527b2b3b59bfbf3fdff204492bce91
Validity
Not Before: Jan 1 08:57:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2316fac8e60adb7347c18cd7f101bccb3978d7e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:70:ff:81:76:c8:3a:be:d1:8f:53:ab:02:
f7:69:54:44:21:69:43:13:cf:23:e1:78:ff:2b:e4:
7a:23:c9:24:13:28:c2:4d:07:46:39:f5:5e:35:13:
9b:84:88:e9:5e:74:8e:29:fe:22:73:85:85:4d:ff:
f5:90:43:f4:1c:98:e1:20:59:cb:fa:14:05:e2:dc:
d9:b0:0f:ae:fa:5b:fb:0e:63:62:71:df:75:13:b7:
d7:bb:92:40:93:02:6b:12:5a:5d:87:2e:a7:8d:6a:
e3:da:05:60:49:7f:c1:a0:94:2b:5f:89:cb:14:3a:
7c:24:3d:2b:5b:be:31:05:90:cd:a5:38:ce:fd:e5:
19:7d:bd:20:29:83:1c:38:ba:53:96:2b:92:a9:56:
80:2d:8d:18:99:aa:f2:90:75:a9:b7:5f:bf:60:43:
de:32:c7:52:2e:17:fd:1d:e0:a9:c7:c8:45:c7:48:
a3:53:8f:f2:28:39:10:5b:ac:5f:8f:dd:84:b0:b9:
fc:01:d9:d9:86:fc:9f:45:c6:4d:5a:7b:1f:87:74:
bc:af:73:55:9f:06:9b:0a:53:b3:3b:4a:59:8e:b8:
d6:df:87:eb:81:35:3c:8f:40:25:1a:b1:8f:95:fe:
cf:45:65:65:2c:ea:df:70:07:c3:89:ab:7f:d6:9b:
2e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:16:FA:C8:E6:0A:DB:73:47:C1:8C:D7:F1:01:BC:CB:39:78:D7:E1
X509v3 Authority Key Identifier:
keyid:83:5B:F4:8F:18:52:7B:2B:3B:59:BF:BF:3F:DF:F2:04:49:2B:CE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1v0jxhSeys7Wb-_P9_yBEkrzpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/643f86-636f-4c6e-9e60-a95b637afc8d/1/Ixb6yOYK23NHwYzX8QG8yzl41-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/643f86-636f-4c6e-9e60-a95b637afc8d/1/g1v0jxhSeys7Wb-_P9_yBEkrzpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.20.0/24
IPv6:
2001:67c:1cc::/48
Signature Algorithm: sha256WithRSAEncryption
64:bf:cb:e7:a0:97:52:2d:36:00:65:7f:c6:13:a0:c9:ec:4c:
a4:e8:31:61:ed:ae:3b:4d:93:1f:e4:a7:d8:cf:8a:dc:c8:8b:
97:b2:e9:d9:34:b8:3f:33:a9:96:13:06:24:0c:22:18:5a:9a:
44:46:38:ad:4f:22:af:f2:e1:33:fc:d5:b7:37:51:c9:59:e0:
af:07:fd:3d:e1:d7:74:84:cb:07:4e:4b:bd:69:6e:ee:0c:c7:
42:9a:22:a9:d1:e8:03:58:be:d1:ea:bd:29:6c:8b:25:ce:98:
f9:07:bd:a7:07:39:7f:17:d6:c3:0d:d2:a2:ff:3c:36:96:89:
18:35:df:a5:a4:01:30:3c:cf:19:5c:3f:02:45:9c:a5:ce:97:
4c:6e:c6:35:80:5c:56:f4:de:5a:aa:47:1a:04:2d:33:88:55:
33:2e:81:db:4f:a6:80:80:85:fd:32:bc:48:91:b5:70:a2:b1:
4e:0f:7a:e5:f7:1d:06:65:bc:91:0f:36:74:ad:6f:30:44:f2:
74:dd:24:e2:53:76:a8:aa:aa:77:4f:05:02:d1:ab:39:8c:06:
64:98:db:04:1c:b7:46:99:2f:06:fe:e4:65:c2:7e:d9:ce:2c:
2f:f7:cd:0e:43:8f:35:a9:9b:ec:05:81:90:d6:d2:6f:a8:a2:
80:a1:cd:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:47 2024 by rpki-client on console-ams.rpki-client.org