Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/7nOUlxURvm_jvAVVr4niLiNWgfU.roa
File: 7nOUlxURvm_jvAVVr4niLiNWgfU.roa (raw, json)
Hash identifier: Mta+UGxtSt/2HHGaCl9fPlvYyOQYwFlnvIS1I6/iImE=
Subject key identifier: EE:73:94:97:15:11:BE:6F:E3:BC:05:55:AF:89:E2:2E:23:56:81:F5
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 01853947A5CC7F0D4F7B6F612996E49EE33F
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/7nOUlxURvm_jvAVVr4niLiNWgfU.roa
Signing time: Thu 22 Dec 2022 10:01:14 +0000
ROA not before: Thu 22 Dec 2022 10:01:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212442
IP address blocks: 91.236.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:47:a5:cc:7f:0d:4f:7b:6f:61:29:96:e4:9e:e3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Dec 22 10:01:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee7394971511be6fe3bc0555af89e22e235681f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cc:17:c8:9c:78:ba:8a:ae:fe:58:ec:83:df:
b8:55:fb:48:d8:08:cb:37:1e:a5:80:d2:89:0b:b4:
e1:1d:18:be:de:dc:29:32:0f:27:bb:10:15:c4:f7:
12:e3:05:70:95:c5:cb:a4:a0:c2:c4:b9:53:30:71:
d9:bc:87:c3:21:08:71:ae:aa:92:6e:f1:5b:ca:a7:
dd:e3:f1:96:2e:ae:59:4b:0c:b3:ab:a6:63:ed:94:
2d:af:5e:22:37:b6:ce:bc:bf:05:33:ea:94:09:b7:
1e:6a:e4:22:f0:82:b8:3f:12:49:c4:97:4b:eb:7a:
17:78:30:f2:7d:0f:b3:c5:ec:b3:6e:bd:43:09:22:
b0:c0:eb:40:4e:bd:7f:19:24:93:52:11:ea:f3:e6:
0e:02:b0:03:f1:91:a0:10:89:26:c7:02:08:3c:8b:
bd:8f:9b:16:5d:b0:27:7a:60:96:1a:a3:33:ad:d0:
b8:fd:b2:8f:4d:45:9f:ae:c2:af:fe:e1:4d:d9:64:
9a:84:5c:ca:be:17:1a:c4:33:8a:29:1c:84:0e:0b:
38:ac:14:60:a4:aa:dc:3d:a5:8c:ba:6f:ad:20:fa:
34:7a:3a:b1:71:67:08:01:56:2c:0e:1f:95:45:ab:
41:49:1a:f1:60:a7:29:24:1d:02:9c:da:bf:b2:89:
df:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:73:94:97:15:11:BE:6F:E3:BC:05:55:AF:89:E2:2E:23:56:81:F5
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/7nOUlxURvm_jvAVVr4niLiNWgfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.74.0/24
Signature Algorithm: sha256WithRSAEncryption
35:c1:d9:50:37:d9:63:3b:33:9e:ef:b7:ea:20:bf:d8:47:12:
cd:81:b4:19:22:09:35:9f:0c:ec:ff:ad:6c:f3:82:33:eb:83:
82:52:b5:f7:62:b5:8e:44:2c:27:ff:02:26:5e:4d:18:91:43:
ef:85:09:97:5f:45:8c:d8:9c:e8:54:50:5e:81:bc:ba:8a:be:
ba:73:f7:5b:6d:c9:d0:4e:60:b4:e2:94:e9:35:38:9d:38:74:
b6:5a:08:44:6b:bb:10:8a:cc:76:01:a4:8e:dd:57:c4:57:ae:
19:ed:e5:48:c8:d8:90:c1:7e:ba:38:b5:05:45:8d:4e:42:82:
89:b2:01:9f:15:c9:e9:92:77:bd:fc:ac:b7:d3:f1:84:56:8f:
e2:c2:ca:6a:9c:e2:1f:d3:aa:09:89:91:08:df:4e:9a:26:3d:
e7:d4:0e:7f:13:b2:9e:2b:df:84:36:9f:1e:0a:96:ae:34:c7:
d9:cd:37:4f:b1:65:6d:94:d3:37:be:51:ad:dd:14:74:98:56:
67:12:6d:12:8d:f8:f9:20:48:3a:51:92:ac:09:5d:49:3c:dc:
bb:8e:59:2a:9d:44:e1:0a:70:65:5d:fc:5b:6a:aa:e4:4d:2b:
5c:86:f0:b6:30:79:e6:81:4b:09:f6:46:e1:37:e4:17:cf:22:
a2:8e:f0:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-fra.rpki-client.org