Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/PFuduHb7yxTsuIelmDthPy94GM0.roa
File: PFuduHb7yxTsuIelmDthPy94GM0.roa (raw, json)
Hash identifier: XcUAMWtFe+AJ2Fk8H6eB6vKj7G1qSCdWNdtlobeN/EE=
Subject key identifier: 3C:5B:9D:B8:76:FB:CB:14:EC:B8:87:A5:98:3B:61:3F:2F:78:18:CD
Certificate issuer: /CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Certificate serial: 0D048EA5
Authority key identifier: DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/PFuduHb7yxTsuIelmDthPy94GM0.roa
Signing time: Sat 01 Jan 2022 04:03:38 +0000
ROA not before: Sat 01 Jan 2022 04:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197600
IP address blocks: 91.223.160.0/24 maxlen: 24
2001:678:7b8::/48 maxlen: 48
2001:678:7bc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218402469 (0xd048ea5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Validity
Not Before: Jan 1 04:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c5b9db876fbcb14ecb887a5983b613f2f7818cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:64:c2:f3:68:9f:16:ec:a4:2a:95:75:58:50:
99:c6:b7:eb:b4:1c:ac:69:d9:7d:d8:14:4b:3b:72:
9b:b5:80:b9:6d:88:db:18:7d:af:d4:64:8a:be:8e:
f8:89:57:2d:c3:2d:0e:74:38:31:e4:1e:b4:be:b1:
ce:df:bb:ab:bd:5b:fd:55:6d:21:51:fb:3f:dd:55:
9f:78:c3:32:44:0e:0e:24:78:39:2e:24:d2:17:19:
de:60:4f:6b:80:a9:c4:76:b9:7c:3a:7d:98:64:c3:
b0:a7:eb:5b:9f:2e:60:f0:df:aa:1f:e4:23:c4:63:
e5:83:40:5d:75:bd:4d:da:26:ee:b4:42:8b:f4:b2:
76:86:5a:af:2e:48:40:97:a8:cc:4d:11:af:c3:4a:
37:e5:82:b3:17:4f:73:21:39:65:33:7f:ae:ef:fc:
6b:96:16:c1:53:d1:ef:7c:bc:33:d0:79:7e:a6:f7:
66:aa:37:24:c8:3f:53:05:12:6c:c2:78:40:51:bf:
bf:05:2a:ae:a6:60:96:97:a9:f0:82:9b:89:51:66:
6d:dc:e2:2e:e4:a4:03:1d:26:fb:61:cc:75:b8:59:
1b:fb:26:fe:30:0f:45:b8:9f:48:24:5f:75:8f:22:
09:82:fa:8d:64:f5:cf:ab:6d:43:f9:c5:57:82:c5:
fb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5B:9D:B8:76:FB:CB:14:EC:B8:87:A5:98:3B:61:3F:2F:78:18:CD
X509v3 Authority Key Identifier:
keyid:DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/PFuduHb7yxTsuIelmDthPy94GM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.160.0/24
IPv6:
2001:678:7b8::/48
2001:678:7bc::/48
Signature Algorithm: sha256WithRSAEncryption
a1:f6:26:1a:53:a2:11:91:76:d2:47:02:86:9a:ea:cf:86:89:
ca:5e:c7:20:b9:fa:73:51:32:ae:0d:48:01:06:02:43:de:44:
07:c9:7c:c6:e5:b9:71:18:91:89:59:22:39:61:a3:38:8b:b4:
f4:4d:52:2e:87:c1:eb:36:1b:73:79:14:22:e6:02:3d:ea:8b:
a1:d2:d4:3d:5e:1b:5a:33:f7:cf:85:87:49:17:2e:06:a4:68:
9e:62:29:80:78:08:45:12:07:a8:2b:6c:d7:3d:b6:39:63:9a:
c4:0b:41:66:ec:c4:eb:d3:3f:bb:1d:b1:be:8d:43:95:bc:ef:
6b:97:31:e2:6c:2a:b7:38:4f:57:c5:6e:0d:58:1b:a4:d2:e9:
2e:d1:41:0d:48:97:70:08:cc:69:f0:10:3d:61:6c:3b:47:1a:
d3:b7:10:89:74:42:a2:a1:56:b5:d6:50:b7:29:19:8e:8e:69:
93:2d:dd:75:d6:80:85:0a:27:23:49:0d:03:e6:8e:ef:89:81:
b9:0d:97:28:04:66:78:7b:3c:27:9b:0e:97:26:3b:94:25:2b:
05:b7:f5:0c:03:2d:24:26:c6:53:81:fd:88:d6:db:67:c2:e3:
66:28:00:6b:9a:0b:eb:40:4f:78:ab:b9:f1:53:34:bb:b3:9b:
82:62:44:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:50 2024 by rpki-client on console-ams.rpki-client.org