Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/mi4HV_wUD0c75Dvdfpsd6PK-Gng.roa
File: mi4HV_wUD0c75Dvdfpsd6PK-Gng.roa (raw, json)
Hash identifier: cJdf7x6DNxT7PeixawxTfAh8QKBEfJR5pZo/ChluRNk=
Subject key identifier: 9A:2E:07:57:FC:14:0F:47:3B:E4:3B:DD:7E:9B:1D:E8:F2:BE:1A:78
Certificate issuer: /CN=a7fc5c65c93a7404086b17a54e7e0da960a9b293
Certificate serial: 02933A5A
Authority key identifier: A7:FC:5C:65:C9:3A:74:04:08:6B:17:A5:4E:7E:0D:A9:60:A9:B2:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_xcZck6dAQIaxelTn4NqWCpspM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/mi4HV_wUD0c75Dvdfpsd6PK-Gng.roa
Signing time: Sat 01 Jan 2022 14:59:56 +0000
ROA not before: Sat 01 Jan 2022 14:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49554
IP address blocks: 91.225.112.0/22 maxlen: 22
91.225.113.0/24 maxlen: 24
2001:678:c00::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43203162 (0x2933a5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7fc5c65c93a7404086b17a54e7e0da960a9b293
Validity
Not Before: Jan 1 14:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a2e0757fc140f473be43bdd7e9b1de8f2be1a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:91:07:04:06:25:29:b1:e6:e5:04:cf:67:00:
0d:ec:49:50:97:03:01:8b:62:3a:69:d9:55:51:3a:
4a:f2:97:d4:5c:f8:54:18:de:a9:49:6b:ed:39:50:
67:70:fc:5b:16:4d:12:6a:03:e9:67:39:a2:8b:34:
98:52:e7:90:5d:a9:fd:dc:29:a5:23:b6:d1:22:49:
7f:58:02:d1:4e:d9:90:cc:be:1a:87:1f:5b:5b:9b:
8c:1e:21:3b:b7:ab:84:be:04:d4:92:b0:c0:f5:b1:
ec:a7:21:7b:2d:b5:1a:3e:ab:cc:53:bb:1f:71:70:
68:17:0e:96:2b:b3:43:81:96:ea:ff:2f:b1:ad:b5:
af:97:06:98:88:38:3c:08:26:31:e0:ca:3a:70:37:
64:91:20:a4:95:cb:45:f3:8f:97:f4:cb:98:c5:45:
a0:14:2e:43:a7:93:ea:59:6a:1b:ce:ab:da:15:2a:
b4:be:58:bc:63:a0:1c:f2:ab:d9:b6:da:b8:93:27:
6d:fa:68:d7:a0:71:2b:68:55:32:72:97:4b:9e:52:
cc:8c:4e:fe:11:1c:8d:3e:ae:f3:34:63:ec:bb:64:
a6:8d:15:8a:24:fd:b5:26:a8:9b:53:7c:16:3d:9d:
24:01:ad:ad:d7:a1:04:e9:fd:da:92:d7:2a:63:a0:
42:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:2E:07:57:FC:14:0F:47:3B:E4:3B:DD:7E:9B:1D:E8:F2:BE:1A:78
X509v3 Authority Key Identifier:
keyid:A7:FC:5C:65:C9:3A:74:04:08:6B:17:A5:4E:7E:0D:A9:60:A9:B2:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_xcZck6dAQIaxelTn4NqWCpspM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/mi4HV_wUD0c75Dvdfpsd6PK-Gng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8fcb12-ae4e-4353-a3b9-f0ad375a8086/1/p_xcZck6dAQIaxelTn4NqWCpspM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.112.0/22
IPv6:
2001:678:c00::/48
Signature Algorithm: sha256WithRSAEncryption
62:61:58:88:5b:67:f1:05:a3:85:3e:8d:ef:98:d2:f5:60:8f:
2c:47:bf:61:28:99:81:e9:ab:40:80:fc:2e:07:53:8c:64:30:
c5:b2:4b:ee:b1:3f:2e:c2:cc:bc:2b:6a:cc:be:af:d7:3c:9e:
0d:a4:fb:ad:3a:d2:24:49:d7:28:d2:d2:f9:34:d7:97:d2:77:
08:dc:84:65:0d:05:61:1b:a9:23:32:8b:9c:45:dc:3d:ae:c4:
e6:cd:d7:4e:16:8c:8e:09:6b:83:8c:89:21:bf:d1:30:0e:e2:
da:20:d8:19:49:ad:f8:9e:ad:c3:0a:9b:75:13:60:63:90:1c:
a2:91:af:7b:24:26:fb:7f:21:3f:0f:dd:f5:a2:fd:0a:54:d5:
cf:94:af:c5:aa:3f:79:97:47:45:a8:ca:24:79:31:39:57:c9:
61:c6:76:77:1a:be:87:46:6e:5d:e9:73:d0:0c:6e:ce:33:56:
de:b4:ae:0a:02:e7:81:cd:b0:ab:7a:1e:f3:78:ac:ae:b1:c5:
d3:c9:c1:a7:e4:15:7a:51:1f:e5:bb:de:4d:94:71:15:d9:2c:
e5:33:df:89:ce:11:c0:97:fe:c6:c9:c0:28:c8:ed:67:b5:bf:
a5:b3:be:f7:a7:db:e1:b0:fa:c6:8e:70:62:54:12:ff:d3:8d:
a8:7b:70:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:59 2024 by rpki-client on console-ams.rpki-client.org