Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/Meo9OPFd5g2ishvq6Z2FKWPyTpQ.roa
File: Meo9OPFd5g2ishvq6Z2FKWPyTpQ.roa (raw, json)
Hash identifier: 8IXxzIOy3qjl8LtHafn4GIiwgn6UiS6CwgvMev4ZY7M=
Subject key identifier: 31:EA:3D:38:F1:5D:E6:0D:A2:B2:1B:EA:E9:9D:85:29:63:F2:4E:94
Certificate issuer: /CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Certificate serial: 0B0F5240
Authority key identifier: 60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/Meo9OPFd5g2ishvq6Z2FKWPyTpQ.roa
Signing time: Wed 27 Apr 2022 06:04:08 +0000
ROA not before: Wed 27 Apr 2022 06:04:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57354
IP address blocks: 91.231.218.0/23 maxlen: 32
185.228.132.0/22 maxlen: 32
2a0d:1600::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 185553472 (0xb0f5240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Validity
Not Before: Apr 27 06:04:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31ea3d38f15de60da2b21beae99d852963f24e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8d:5f:fb:f2:3d:c2:e9:62:4a:9f:d2:62:ff:
b4:c1:f7:33:38:20:77:09:68:cd:7b:28:e4:ef:60:
3f:89:87:9c:10:57:47:44:2b:3b:ef:67:8a:75:71:
0e:5a:e5:01:68:5c:cf:d1:8d:1d:4c:18:32:e5:30:
a1:92:27:04:3b:3c:5b:ae:8d:84:41:ac:42:47:b9:
74:4f:ca:eb:72:02:f9:d3:05:ad:3a:3a:2c:03:11:
23:02:13:43:bd:dc:34:d0:f8:09:6b:44:b9:0a:9b:
fd:11:1d:1f:e7:08:e2:58:b5:22:71:d0:b3:61:47:
35:6f:f5:c1:b5:a8:d6:2e:8e:d2:7a:89:49:33:54:
fd:e2:0b:8e:7a:37:d6:23:5c:0c:83:fa:96:a2:8b:
5d:c9:24:bb:88:de:91:8d:43:37:68:55:1e:d4:41:
f5:99:7b:8b:b3:0c:cc:bf:a3:38:5a:7e:66:70:a6:
87:38:a6:ca:37:85:7e:ae:df:11:4b:12:4f:11:e6:
f2:dc:6f:af:c7:8b:dc:73:3c:f4:5a:85:49:5a:02:
4a:bb:07:0b:4a:a3:ff:54:6f:35:f7:0e:c8:e1:92:
77:e5:5b:59:52:05:a4:0c:9f:55:f7:03:a5:f3:25:
2f:b8:17:e9:d3:ff:cf:fe:80:ba:71:65:63:43:26:
84:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:EA:3D:38:F1:5D:E6:0D:A2:B2:1B:EA:E9:9D:85:29:63:F2:4E:94
X509v3 Authority Key Identifier:
keyid:60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/Meo9OPFd5g2ishvq6Z2FKWPyTpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.218.0/23
185.228.132.0/22
IPv6:
2a0d:1600::/32
Signature Algorithm: sha256WithRSAEncryption
9f:9c:73:19:43:4e:30:22:68:bd:07:6d:31:04:e4:89:25:e7:
fc:65:ab:97:de:ea:cc:2e:fa:cb:af:2f:c7:e4:93:a4:04:3d:
a2:ff:d9:a0:d8:fe:49:b6:8e:fc:b2:b3:42:0a:44:8c:fd:44:
07:a7:eb:82:33:f5:1f:06:b1:61:c2:d6:03:de:8d:c5:3d:94:
17:e2:36:4f:2d:0b:60:e6:9f:e4:49:44:ad:20:d5:fd:95:ae:
72:83:29:36:e4:23:2f:bb:4a:82:48:15:81:94:01:b0:d4:31:
06:e3:f4:8f:a2:0d:b8:ee:55:a4:19:92:b7:06:a7:78:05:56:
88:10:08:fb:a9:a3:d6:ad:1f:25:f1:7f:ff:e4:9b:70:1f:5b:
80:70:cc:fa:57:c0:95:e9:ff:80:ea:8b:ae:c8:92:47:83:2d:
dc:86:80:d0:ef:66:45:f3:a2:af:77:e5:19:d0:06:c4:15:9f:
81:71:b0:79:bb:37:b0:d3:8d:b8:10:bd:8a:ee:58:6f:be:90:
14:2f:d4:61:68:02:b0:77:b4:dc:9f:e9:1f:5a:61:d3:37:c7:
2b:62:d7:5d:9c:39:04:e2:e0:63:10:b1:3b:7e:cf:a2:fb:4c:
06:e3:8d:a8:81:b9:35:e0:0f:48:f7:ef:f7:f7:83:bd:d4:48:
54:a5:23:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:20 2024 by rpki-client on console-fra.rpki-client.org