Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a3bfe9-dc56-4c1f-97a7-6b31a7360f0f/1/D3eRKJ3skTbIhd3_CMGLCvJXfP0.roa
File: D3eRKJ3skTbIhd3_CMGLCvJXfP0.roa (raw, json)
Hash identifier: eOPjtLMN+/0WaO2VIOKDPr55lPcCYaBtWcrTgg8wsx0=
Subject key identifier: 0F:77:91:28:9D:EC:91:36:C8:85:DD:FF:08:C1:8B:0A:F2:57:7C:FD
Certificate issuer: /CN=1b3029634ea8ed54681ba84d14990b00b864ddb8
Certificate serial: 03C46781
Authority key identifier: 1B:30:29:63:4E:A8:ED:54:68:1B:A8:4D:14:99:0B:00:B8:64:DD:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GzApY06o7VRoG6hNFJkLALhk3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a3bfe9-dc56-4c1f-97a7-6b31a7360f0f/1/D3eRKJ3skTbIhd3_CMGLCvJXfP0.roa
Signing time: Sat 01 Jan 2022 14:05:31 +0000
ROA not before: Sat 01 Jan 2022 14:05:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51776
IP address blocks: 91.199.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63203201 (0x3c46781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b3029634ea8ed54681ba84d14990b00b864ddb8
Validity
Not Before: Jan 1 14:05:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f7791289dec9136c885ddff08c18b0af2577cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f4:08:18:f2:29:3f:6c:89:72:96:cd:9e:3b:
57:36:c1:ad:04:b7:54:0a:97:e5:04:94:e5:30:d3:
a9:72:61:ce:a0:20:0b:35:77:aa:d6:b7:84:5e:22:
98:72:4c:42:e7:6f:b6:6b:58:1c:21:cf:3b:3a:b1:
ac:fa:b6:aa:c5:92:66:0c:28:a5:87:ac:84:d7:a2:
56:75:ca:89:c4:ef:c8:79:7d:eb:94:66:75:6f:99:
5e:cc:dd:93:26:44:0c:7e:5d:ee:28:8f:16:fc:3a:
0c:be:1e:66:8d:56:86:d0:74:2f:aa:bd:e0:e0:90:
2d:58:64:03:80:3c:19:2c:1a:a3:ee:78:f7:cf:91:
18:0c:46:dc:0f:8a:3f:1f:76:41:15:bd:67:8d:bd:
c7:34:c9:f8:63:9f:05:e9:80:f3:ff:1c:e7:64:a0:
68:ed:44:82:9c:c4:f8:b6:c6:bc:da:37:b3:b2:fe:
f4:9d:4b:67:d0:a9:7a:2c:74:19:05:01:cf:84:3c:
6f:ad:6c:c0:ba:9c:45:de:c8:e7:3d:ec:e4:a7:f3:
ba:a2:bf:f8:08:b9:f2:09:50:79:79:2a:5d:f2:3f:
8d:2e:e5:06:77:70:fd:36:d0:c5:62:79:a7:9d:ff:
0b:da:13:e5:2b:88:3a:ef:9d:6c:bc:c4:ad:f0:4b:
a7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:77:91:28:9D:EC:91:36:C8:85:DD:FF:08:C1:8B:0A:F2:57:7C:FD
X509v3 Authority Key Identifier:
keyid:1B:30:29:63:4E:A8:ED:54:68:1B:A8:4D:14:99:0B:00:B8:64:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GzApY06o7VRoG6hNFJkLALhk3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a3bfe9-dc56-4c1f-97a7-6b31a7360f0f/1/D3eRKJ3skTbIhd3_CMGLCvJXfP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a3bfe9-dc56-4c1f-97a7-6b31a7360f0f/1/GzApY06o7VRoG6hNFJkLALhk3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.175.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:60:4c:fb:17:81:b5:22:bc:99:25:50:79:c9:19:bf:91:1b:
f7:53:a1:5f:13:cc:cb:71:b8:45:be:b5:aa:69:8a:91:d3:c6:
38:06:1d:0e:3e:9f:65:7a:8d:e1:38:19:d6:2b:bf:12:e9:57:
e0:d8:69:a8:c3:9c:39:b7:e2:74:af:f5:22:36:3f:50:f2:0f:
ff:74:3f:27:0f:2a:17:e2:84:41:48:35:84:b0:a2:50:12:e9:
40:2e:14:69:61:87:be:41:1c:21:e3:2e:b0:14:da:08:5b:74:
5b:0b:31:69:03:6d:d5:94:d9:f4:b4:3c:3a:0e:e0:64:7a:bf:
2b:f3:d3:f7:5a:81:38:87:a9:70:fa:95:73:4c:de:05:33:1d:
bf:9c:74:9f:a6:47:61:77:f0:66:fd:81:48:02:a0:b3:3a:99:
79:bd:98:fc:15:44:3d:d6:86:44:27:89:90:ed:6d:df:2b:85:
b8:f5:f6:6e:98:97:22:98:2e:a6:c6:c6:47:6f:c0:6a:05:54:
18:d7:fa:8a:78:93:2b:da:49:ac:6c:1a:80:19:19:b7:58:d8:
97:d3:d7:e4:e3:1c:84:f7:29:ef:93:cf:27:fd:4c:5a:d2:43:
40:16:8d:b5:9d:b9:65:27:5b:e3:b8:87:59:80:37:e8:60:5b:
e8:99:b6:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:50 2023 by rpki-client on console-ams.rpki-client.org