Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/982f1d-4121-46b5-add0-d41bcc928375/1/8IzwKAkvA3i2JbwhFVKu_ts2UpI.roa
File: 8IzwKAkvA3i2JbwhFVKu_ts2UpI.roa (raw, json)
Hash identifier: +9LpOY960H8dS5GY+sOR7KR5q4hlzas8xHdtwPN/62Y=
Subject key identifier: F0:8C:F0:28:09:2F:03:78:B6:25:BC:21:15:52:AE:FE:DB:36:52:92
Certificate issuer: /CN=13ec4731f102c30cc13e2fb5a7f9758cea963452
Certificate serial: 03D69B09
Authority key identifier: 13:EC:47:31:F1:02:C3:0C:C1:3E:2F:B5:A7:F9:75:8C:EA:96:34:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-xHMfECwwzBPi-1p_l1jOqWNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/982f1d-4121-46b5-add0-d41bcc928375/1/8IzwKAkvA3i2JbwhFVKu_ts2UpI.roa
Signing time: Sat 01 Jan 2022 14:06:28 +0000
ROA not before: Sat 01 Jan 2022 14:06:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25229
IP address blocks: 91.194.40.0/23 maxlen: 23
91.203.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64396041 (0x3d69b09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ec4731f102c30cc13e2fb5a7f9758cea963452
Validity
Not Before: Jan 1 14:06:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f08cf028092f0378b625bc211552aefedb365292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:55:e5:ca:5f:62:85:e3:94:ad:fa:56:27:a0:
8d:19:32:1e:79:a1:0a:94:4b:ce:2d:20:23:81:9e:
cb:67:12:2c:93:ca:c4:68:14:dd:5c:21:d3:83:f9:
ad:64:6f:e9:aa:03:52:cb:d2:c8:57:72:1e:d4:af:
d2:66:21:e6:a8:b9:11:0f:00:9e:1d:25:8a:d5:8c:
cc:61:31:9d:f8:79:6f:9c:e7:00:d0:ec:8e:d3:fd:
92:a7:aa:89:51:cf:e1:8a:2a:e2:41:b4:95:d2:fc:
07:36:5e:0b:11:b0:c9:43:9b:5a:db:8b:60:15:82:
89:52:03:c0:ce:a2:55:91:96:ab:b7:ae:83:3b:38:
d6:1c:e2:fa:14:f4:d2:ba:ed:be:2a:30:91:c9:77:
1f:44:6f:c6:e8:f6:62:aa:78:2c:9b:03:cd:24:c8:
4d:6b:b0:01:7a:37:97:ec:57:33:02:d9:91:b8:b1:
99:01:f3:b1:dc:ff:b6:6a:15:a0:f0:aa:f8:f6:26:
b4:b9:a9:89:c7:e4:0f:3c:b2:87:bb:40:b5:fc:ff:
9a:43:68:b7:75:92:05:ae:9f:1d:67:8a:69:34:a6:
14:33:78:6d:2d:35:29:46:90:7e:17:28:dc:77:e6:
d6:c0:d7:05:6d:a6:34:2e:05:3d:9d:1c:1b:c7:d6:
9c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8C:F0:28:09:2F:03:78:B6:25:BC:21:15:52:AE:FE:DB:36:52:92
X509v3 Authority Key Identifier:
keyid:13:EC:47:31:F1:02:C3:0C:C1:3E:2F:B5:A7:F9:75:8C:EA:96:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-xHMfECwwzBPi-1p_l1jOqWNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/982f1d-4121-46b5-add0-d41bcc928375/1/8IzwKAkvA3i2JbwhFVKu_ts2UpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/982f1d-4121-46b5-add0-d41bcc928375/1/E-xHMfECwwzBPi-1p_l1jOqWNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.40.0/23
91.203.4.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:20:ec:d5:20:6d:79:a0:b2:d2:9e:0e:e2:a3:f6:04:b3:cf:
2a:18:1b:2d:33:dc:5f:95:85:87:87:ab:01:6e:6a:8c:f3:d4:
f3:45:e3:18:43:b9:35:17:db:76:fa:99:00:1a:a7:b1:c5:00:
e0:c1:e9:af:08:78:ce:c9:2c:4e:1a:d4:f2:7d:23:e9:48:7a:
ef:65:c1:f8:57:01:5f:61:8a:4a:41:00:49:05:02:86:48:ac:
dc:ad:aa:92:6f:3c:61:ab:69:d4:85:8d:77:54:37:b1:92:06:
52:a4:ef:3d:f0:03:ea:61:64:65:e0:82:b3:90:75:47:d2:01:
6b:6a:9d:7f:fe:30:fa:3b:b4:29:84:e4:04:2c:3d:72:ff:86:
c5:a6:4f:30:42:da:b1:4e:a2:f3:88:08:2d:1b:4d:38:89:04:
5a:21:5e:91:77:c9:13:ab:7b:8d:92:51:8a:05:84:74:7b:c0:
6a:4c:0c:88:52:c3:c8:6b:82:c7:0e:9a:d8:bd:44:22:60:2b:
69:00:0e:56:5d:51:b6:32:66:7a:ac:90:1a:eb:ad:fa:1b:07:
07:53:88:54:c4:dc:3b:1f:ea:f6:81:ee:6a:91:27:71:08:2e:
ff:0d:fc:64:14:2a:ad:d0:25:11:6c:d9:43:a3:e8:a3:6f:48:
2f:3d:75:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:55 2023 by rpki-client on console-ams.rpki-client.org