Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/uZZ9MkAr5cDb67laTSEY9nxZTm4.roa
File: uZZ9MkAr5cDb67laTSEY9nxZTm4.roa (raw, json)
Hash identifier: HX8l9cariZj3uDRI/fQrJY2W4PMt3Ev38Zl4VkJQCtE=
Subject key identifier: B9:96:7D:32:40:2B:E5:C0:DB:EB:B9:5A:4D:21:18:F6:7C:59:4E:6E
Certificate issuer: /CN=eb57a2c600b69e0bbaee2c68996792f6286abfe7
Certificate serial: 01835F3A75D704A9D9B78708A1A1678B85EA
Authority key identifier: EB:57:A2:C6:00:B6:9E:0B:BA:EE:2C:68:99:67:92:F6:28:6A:BF:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/61eixgC2ngu67ixomWeS9ihqv-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/uZZ9MkAr5cDb67laTSEY9nxZTm4.roa
Signing time: Wed 21 Sep 2022 08:46:50 +0000
ROA not before: Wed 21 Sep 2022 08:46:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3214
IP address blocks: 91.212.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5f:3a:75:d7:04:a9:d9:b7:87:08:a1:a1:67:8b:85:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb57a2c600b69e0bbaee2c68996792f6286abfe7
Validity
Not Before: Sep 21 08:46:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9967d32402be5c0dbebb95a4d2118f67c594e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b1:1d:e7:bb:8b:ea:77:f0:35:29:35:2f:08:
f0:db:11:d1:34:70:1a:48:69:cf:7e:a2:3d:78:b2:
c1:6c:fb:15:fa:c1:d4:71:d2:eb:e5:71:da:12:dd:
f6:4e:6c:07:5d:e5:f7:c2:ca:07:a5:e6:c0:3f:3e:
20:e5:af:44:b6:81:44:df:1b:8e:8a:07:38:d6:06:
20:49:19:26:2f:06:22:6c:46:9e:31:85:8f:af:82:
fa:56:8d:ae:de:ef:50:68:51:0a:91:0c:ca:0b:85:
16:1a:37:6c:a0:d3:b8:2c:c8:0d:b3:88:44:61:67:
b0:a2:42:0c:58:b4:b4:66:63:b6:88:88:d9:de:f4:
75:74:1b:da:35:ce:f2:75:20:49:1e:00:83:e0:b0:
9c:e8:ab:e7:41:f1:3c:bd:f2:a9:4e:c7:a5:2a:4f:
4f:44:2a:7b:92:16:b3:83:bd:b5:23:28:b6:44:19:
27:ef:88:44:cb:4f:83:15:05:50:9b:01:9a:61:49:
8a:e3:9b:14:26:2a:cb:de:f6:87:8f:86:e7:fc:78:
d5:51:09:fa:7e:ab:6a:d3:94:37:3c:d7:99:6e:29:
67:93:f2:fc:30:6f:ba:5a:1d:83:0a:d3:d9:b6:98:
3e:e4:25:0c:40:e7:1d:e8:6c:8b:20:2c:67:fe:17:
28:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:96:7D:32:40:2B:E5:C0:DB:EB:B9:5A:4D:21:18:F6:7C:59:4E:6E
X509v3 Authority Key Identifier:
keyid:EB:57:A2:C6:00:B6:9E:0B:BA:EE:2C:68:99:67:92:F6:28:6A:BF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/61eixgC2ngu67ixomWeS9ihqv-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/uZZ9MkAr5cDb67laTSEY9nxZTm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/77c2db-f7d3-4a8a-9e50-6d0af460fcea/1/61eixgC2ngu67ixomWeS9ihqv-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.216.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:fb:3b:65:10:bc:3d:04:8a:5e:64:c5:da:b6:9f:8f:88:70:
30:1c:cb:7a:a1:c0:26:12:27:0d:79:6b:d9:b6:5b:80:8c:de:
53:57:ac:90:56:09:35:67:3e:8f:4e:e5:02:40:90:1b:15:d7:
41:f1:ee:c9:a9:1d:c6:dc:50:43:68:dd:f5:3d:0c:48:7a:ca:
46:d6:98:ee:50:c7:3c:b9:41:38:aa:6a:ab:37:0c:44:18:67:
d7:9f:14:04:f7:97:d7:9a:18:8e:8d:9f:68:9e:65:45:06:b6:
7b:85:7a:34:b1:52:1c:a2:2c:fe:c0:26:30:18:d6:a9:bf:e1:
7b:94:1d:cc:3f:e5:3e:c0:66:e8:93:e5:37:85:bf:ee:90:59:
bb:fb:27:d5:cc:09:9b:5e:b8:a4:67:8c:ed:45:74:72:e8:c1:
70:b3:89:1d:7d:77:50:be:a3:89:a4:9b:93:a3:8f:1f:81:8b:
4d:b6:df:d5:45:e5:a2:4d:07:eb:86:42:af:90:cd:fc:86:61:
45:e0:d4:63:20:e2:49:a7:0a:db:b4:27:75:0e:49:f8:79:36:
7a:83:a3:3f:85:d0:04:23:aa:13:c2:c9:aa:59:f8:32:4c:63:
28:84:b9:76:20:be:3b:c1:03:2b:cc:95:9f:51:85:19:58:6d:
c6:bc:ac:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:53 2023 by rpki-client on console-ams.rpki-client.org