Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/4923e9-4764-411c-8596-9f4429f3381e/1/vobwB7XvqrgGvxfTecdLiWgRmU8.roa
File: vobwB7XvqrgGvxfTecdLiWgRmU8.roa (raw, json)
Hash identifier: CQa+nAOxf04nMHC//FyesxnYzeHI5UX19dW7l5Hcld0=
Subject key identifier: BE:86:F0:07:B5:EF:AA:B8:06:BF:17:D3:79:C7:4B:89:68:11:99:4F
Certificate issuer: /CN=39ce4c0abe2785d46a5571852170370423b5c59a
Certificate serial: AC6DA4
Authority key identifier: 39:CE:4C:0A:BE:27:85:D4:6A:55:71:85:21:70:37:04:23:B5:C5:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oc5MCr4nhdRqVXGFIXA3BCO1xZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/4923e9-4764-411c-8596-9f4429f3381e/1/vobwB7XvqrgGvxfTecdLiWgRmU8.roa
Signing time: Thu 24 Mar 2022 09:29:39 +0000
ROA not before: Thu 24 Mar 2022 09:29:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206276
IP address blocks: 91.103.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11300260 (0xac6da4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ce4c0abe2785d46a5571852170370423b5c59a
Validity
Not Before: Mar 24 09:29:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be86f007b5efaab806bf17d379c74b896811994f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:80:8c:12:86:05:c3:74:30:fd:45:64:0b:17:
80:a7:a7:0e:4c:75:2d:27:52:15:34:da:8e:05:3d:
a8:d2:ea:a5:ec:ef:4b:9b:e5:ea:d7:e2:9f:5a:25:
49:7f:29:d7:2d:76:8f:b5:c0:18:e5:53:e5:72:8d:
23:6f:1f:75:86:82:1e:a7:a7:95:dc:d7:de:69:cb:
00:ca:86:e4:bd:62:93:a5:69:39:f7:ad:d4:5a:65:
0d:04:9d:2e:b3:af:b3:10:59:20:c5:40:26:37:9f:
e3:64:ff:19:05:3b:8a:8a:46:71:54:5e:73:91:6c:
5d:9e:f7:4f:c5:98:ab:6f:eb:12:ce:58:c0:d9:df:
b7:54:37:65:db:ce:20:a4:67:bb:11:9d:09:a2:08:
08:1f:92:74:eb:9e:8c:4d:ff:40:38:dc:77:de:d3:
5c:f1:f2:cb:23:7b:c8:69:77:97:01:85:18:25:7c:
53:3d:b8:c2:b5:9e:ac:8d:9c:17:e4:0d:7b:e3:23:
d2:4b:3e:5f:0f:ab:8a:97:fe:1d:e7:7f:f7:5c:8e:
ce:c3:35:29:a2:10:aa:5d:9e:88:5d:5e:e2:57:12:
41:f2:50:47:9f:86:70:b8:dc:78:7d:00:15:f2:eb:
ca:89:57:27:c0:8a:de:18:2c:92:92:1e:a3:88:3b:
13:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:86:F0:07:B5:EF:AA:B8:06:BF:17:D3:79:C7:4B:89:68:11:99:4F
X509v3 Authority Key Identifier:
keyid:39:CE:4C:0A:BE:27:85:D4:6A:55:71:85:21:70:37:04:23:B5:C5:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oc5MCr4nhdRqVXGFIXA3BCO1xZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/4923e9-4764-411c-8596-9f4429f3381e/1/vobwB7XvqrgGvxfTecdLiWgRmU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/4923e9-4764-411c-8596-9f4429f3381e/1/Oc5MCr4nhdRqVXGFIXA3BCO1xZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.151.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:bd:88:bd:bf:fb:8a:ed:90:11:d4:8b:48:29:23:19:a7:fa:
7d:c9:bf:d1:1c:65:e4:ba:27:a6:a0:a2:f6:09:86:00:7d:5e:
13:65:6a:2d:8b:18:6b:72:5f:aa:5f:70:3c:7d:d4:fe:fe:42:
fe:0d:c0:9b:bb:32:02:ac:e3:76:70:0e:1d:c6:c1:6f:6d:45:
7f:7e:ef:90:47:42:3e:b5:38:53:49:4b:c9:b3:87:eb:8c:1c:
1c:91:6f:64:dd:a7:bd:df:16:6d:20:7c:62:3c:4b:9c:ea:2e:
bd:fb:8b:7c:d6:48:30:c5:71:ed:49:cf:81:69:aa:0b:93:58:
ea:9a:42:2e:d0:cd:96:a1:ee:57:e4:e5:f0:b4:41:b6:4a:2a:
05:3a:7f:7c:43:50:1f:71:14:18:c0:05:df:66:19:f8:8d:d9:
e4:d7:e7:56:14:3f:9e:e5:d7:b5:2d:81:36:66:e7:31:ce:ab:
72:a5:96:fc:dd:4c:46:96:18:36:b1:02:a1:9c:2f:89:77:27:
98:72:24:e7:df:66:7a:70:63:74:2a:eb:09:f3:2b:e6:f3:ed:
ce:d7:c4:f6:2d:78:ef:5b:2b:39:50:35:06:bd:cd:07:ee:7d:
91:c7:36:86:83:62:05:dd:b1:af:59:b2:ec:86:9f:c9:13:84:
ad:f3:00:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:33 2023 by rpki-client on console-ams.rpki-client.org