Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/18d059-3cb2-46bf-a588-fe95a9af3adc/1/pB50NxOpRHF8xOb4V3pL6wt1FAk.roa
File: pB50NxOpRHF8xOb4V3pL6wt1FAk.roa (raw, json)
Hash identifier: S1KNk21Hf5zP+dQjxSkPmfiBsMVUTlOLaZpP2mIeINc=
Subject key identifier: A4:1E:74:37:13:A9:44:71:7C:C4:E6:F8:57:7A:4B:EB:0B:75:14:09
Certificate issuer: /CN=d57c7db04e78c221f3df2a2af082b518d962a8f0
Certificate serial: 044D4A3E
Authority key identifier: D5:7C:7D:B0:4E:78:C2:21:F3:DF:2A:2A:F0:82:B5:18:D9:62:A8:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Xx9sE54wiHz3yoq8IK1GNliqPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/18d059-3cb2-46bf-a588-fe95a9af3adc/1/pB50NxOpRHF8xOb4V3pL6wt1FAk.roa
Signing time: Sat 01 Jan 2022 09:58:33 +0000
ROA not before: Sat 01 Jan 2022 09:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43380
IP address blocks: 91.206.3.0/24 maxlen: 24
2a0f:f4c0::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72174142 (0x44d4a3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d57c7db04e78c221f3df2a2af082b518d962a8f0
Validity
Not Before: Jan 1 09:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a41e743713a944717cc4e6f8577a4beb0b751409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9f:8c:76:96:11:4a:f0:ab:4c:7d:50:2b:00:
77:de:ba:4d:ad:02:21:41:b5:d4:43:61:ae:79:39:
9a:2d:60:32:28:64:19:e8:92:a8:63:64:a2:be:c7:
8b:98:f0:e4:24:e4:b7:b5:79:27:34:09:41:55:27:
2f:a2:af:1a:93:d7:9a:d7:f5:44:e0:ee:aa:3e:86:
13:cc:62:e9:33:1a:5a:55:8e:49:5e:a1:4b:ee:0a:
18:19:0b:db:18:bc:fd:9c:f7:fd:79:10:1a:84:e4:
eb:39:d6:64:53:d4:6d:a3:3a:2e:05:86:e0:b7:2a:
a7:98:70:99:77:e7:db:6c:d7:86:5b:56:47:22:eb:
48:95:d6:e4:0c:39:e1:cf:d5:5f:fc:32:b1:97:18:
bf:ed:94:6e:41:fa:19:9e:4a:c3:53:a6:c8:93:61:
75:d1:20:ec:f4:fc:49:f1:88:38:2f:74:6d:7e:b5:
44:8b:8f:aa:00:47:df:06:38:06:d2:77:12:e9:99:
54:1e:2d:ef:57:88:49:7f:53:0d:08:ed:00:fd:75:
9a:a8:d3:a9:ae:79:08:b5:72:f7:aa:da:5d:3d:59:
68:fc:9a:68:cb:d4:da:8a:5a:2c:63:82:57:b2:c7:
a8:64:c7:e4:ea:bd:33:1e:22:bc:12:90:26:94:1b:
06:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:1E:74:37:13:A9:44:71:7C:C4:E6:F8:57:7A:4B:EB:0B:75:14:09
X509v3 Authority Key Identifier:
keyid:D5:7C:7D:B0:4E:78:C2:21:F3:DF:2A:2A:F0:82:B5:18:D9:62:A8:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Xx9sE54wiHz3yoq8IK1GNliqPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/18d059-3cb2-46bf-a588-fe95a9af3adc/1/pB50NxOpRHF8xOb4V3pL6wt1FAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/18d059-3cb2-46bf-a588-fe95a9af3adc/1/1Xx9sE54wiHz3yoq8IK1GNliqPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.3.0/24
IPv6:
2a0f:f4c0::/32
Signature Algorithm: sha256WithRSAEncryption
01:31:e2:11:27:01:f1:1e:70:65:fd:05:3c:13:29:71:38:7f:
a3:b0:77:97:53:28:24:ed:24:42:78:18:a8:0a:33:8f:70:d9:
c5:8d:eb:15:90:39:ee:a9:e9:71:b7:9f:15:a7:0d:d0:ed:fb:
8e:f3:23:d5:59:06:14:88:a6:f0:d7:7e:bf:9a:1e:aa:dd:2b:
7b:4a:c6:20:f3:21:e2:fe:00:6d:95:71:41:88:b5:ca:91:64:
be:c1:9d:a8:be:44:13:2b:05:9d:10:48:85:aa:d5:e9:ec:7b:
45:89:a0:2f:6e:3d:f1:9e:a5:a2:12:f8:5b:85:08:fc:ab:3e:
1c:a6:76:14:ed:2a:4d:22:d3:bb:c2:7f:f2:6f:01:b4:ea:48:
93:e1:ce:f1:60:bd:84:1e:d4:1b:43:7f:f9:5f:b1:87:9a:16:
0e:da:70:c2:29:21:02:fb:88:6b:48:a9:93:e3:53:f5:5b:e4:
47:60:2e:bb:b2:1e:35:5a:34:9b:fe:0c:3f:9b:11:b6:08:48:
33:2c:7c:00:07:2e:ce:28:2f:cd:7d:59:b5:26:a5:b5:ec:c1:
b2:1c:5e:b1:9d:4c:6d:80:36:7c:b8:95:e2:82:10:03:1d:6f:
7b:47:ea:76:64:45:46:e1:49:22:e6:d3:aa:fd:a9:74:a7:00:
33:66:fa:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:02 2023 by rpki-client on console-fra.rpki-client.org