Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/c852b5-acc4-4d70-aeeb-24515a14c456/1/0n5GVmu9PYEGvCJlOaP7d1h0dvY.roa
File: 0n5GVmu9PYEGvCJlOaP7d1h0dvY.roa (raw, json)
Hash identifier: KSz2QUnxFFFWRnW8bhE1HnI9ekFNSpB2OY6xrZm8zA0=
Subject key identifier: D2:7E:46:56:6B:BD:3D:81:06:BC:22:65:39:A3:FB:77:58:74:76:F6
Certificate issuer: /CN=dac633a14cac7c7a0922ffd980de5f278a3be267
Certificate serial: 01824B7EE3E8CEE9A19E5F9EB2FF110C1DCB
Authority key identifier: DA:C6:33:A1:4C:AC:7C:7A:09:22:FF:D9:80:DE:5F:27:8A:3B:E2:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2sYzoUysfHoJIv_ZgN5fJ4o74mc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/c852b5-acc4-4d70-aeeb-24515a14c456/1/0n5GVmu9PYEGvCJlOaP7d1h0dvY.roa
Signing time: Fri 29 Jul 2022 19:46:23 +0000
ROA not before: Fri 29 Jul 2022 19:46:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 213.5.226.0/24 maxlen: 24
91.233.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4b:7e:e3:e8:ce:e9:a1:9e:5f:9e:b2:ff:11:0c:1d:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dac633a14cac7c7a0922ffd980de5f278a3be267
Validity
Not Before: Jul 29 19:46:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d27e46566bbd3d8106bc226539a3fb77587476f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3d:49:e7:3b:b9:49:5d:e0:e9:71:fa:2b:74:
75:8a:e9:f4:95:44:a6:a3:65:1b:c5:3d:21:3f:11:
44:52:48:eb:10:9c:3f:9b:ab:da:77:c1:3b:cf:4c:
3e:e3:04:02:f5:8d:af:1e:dc:61:0f:55:8a:b6:4c:
da:79:ec:92:16:4e:d2:ab:a2:ac:d6:72:aa:68:85:
58:f7:2c:bb:10:51:3b:05:57:51:d0:a1:8d:f6:ed:
5d:e0:a3:7d:ef:83:e8:88:f7:f2:63:32:7c:61:c7:
94:2c:1e:6f:bc:ff:9d:1f:a8:c5:f3:ed:3e:97:1a:
17:77:fa:55:f9:9d:3b:26:2f:70:94:b9:1d:b4:62:
bf:54:07:e5:71:cc:0d:7d:45:fd:9b:09:98:c9:87:
7b:35:6d:6b:c2:2a:f9:58:0c:5e:9b:b2:8a:8a:7a:
08:d6:b1:a6:f4:d7:f8:83:54:fb:cd:34:0d:a2:60:
2f:0e:d3:68:57:a9:50:be:b2:4b:05:31:26:2f:e8:
a9:93:82:71:af:55:41:f4:44:59:e3:31:8d:db:2c:
79:2a:6c:13:16:f9:03:ca:0a:db:21:95:90:05:f2:
91:ab:42:c1:00:d3:de:4d:f2:91:c5:9c:0d:17:02:
e4:bb:51:75:44:51:8f:6a:5d:c6:2f:b6:a5:43:09:
6a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7E:46:56:6B:BD:3D:81:06:BC:22:65:39:A3:FB:77:58:74:76:F6
X509v3 Authority Key Identifier:
keyid:DA:C6:33:A1:4C:AC:7C:7A:09:22:FF:D9:80:DE:5F:27:8A:3B:E2:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2sYzoUysfHoJIv_ZgN5fJ4o74mc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/c852b5-acc4-4d70-aeeb-24515a14c456/1/0n5GVmu9PYEGvCJlOaP7d1h0dvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/c852b5-acc4-4d70-aeeb-24515a14c456/1/2sYzoUysfHoJIv_ZgN5fJ4o74mc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.61.0/24
213.5.226.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:61:2c:f5:84:04:de:1c:15:b1:07:d1:af:8d:92:41:f0:96:
dd:83:3b:61:32:da:37:63:7a:04:66:ae:f6:fc:76:c7:8c:d4:
07:ee:d0:90:90:10:88:c4:c2:b7:ab:04:82:14:e5:93:5e:d1:
d2:27:ee:05:c0:ea:18:bd:35:26:c1:f3:0d:44:09:2c:01:a7:
90:1f:0d:e6:5d:4c:6b:47:c9:aa:db:83:83:61:64:19:ce:01:
2b:cb:d3:ee:25:9d:fb:ce:e6:80:1f:b1:31:99:fe:98:05:ce:
69:37:31:ea:88:ac:e5:ce:7b:60:d4:5f:3c:72:87:b4:69:c9:
39:db:ba:01:79:9d:cc:23:b5:db:26:27:6e:79:99:23:d2:f0:
e2:f7:11:32:79:c9:71:8d:d7:08:80:03:c3:a5:86:d5:8f:ba:
50:23:b6:e9:7d:ef:1b:ce:c4:41:69:08:85:b2:ce:82:eb:71:
77:60:7c:f7:a8:18:2a:c4:e0:49:a8:76:87:15:9f:60:a4:16:
d8:20:d9:ef:d9:ab:df:62:c9:59:ad:1a:da:4c:7f:c4:a0:f7:
be:74:2a:99:cc:8b:a7:78:ec:32:b6:cd:d0:15:79:ab:91:0d:
5a:a0:fa:2f:63:81:f7:e9:d2:7d:a2:91:fa:3a:e2:66:52:96:
f9:3f:a8:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:30 2023 by rpki-client on console-ams.rpki-client.org