Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/arI7GDmmI2HWJoiS_DW8s2DozlY.roa
File: arI7GDmmI2HWJoiS_DW8s2DozlY.roa (raw, json)
Hash identifier: 6crEPPeQ3yLfVOA8mNy7UZWgPKl//a/3tbvAVASNgYA=
Subject key identifier: 6A:B2:3B:18:39:A6:23:61:D6:26:88:92:FC:35:BC:B3:60:E8:CE:56
Certificate issuer: /CN=79bb370b0c9a06fd82cb7100d903859b09f50333
Certificate serial: 039EC73C
Authority key identifier: 79:BB:37:0B:0C:9A:06:FD:82:CB:71:00:D9:03:85:9B:09:F5:03:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/arI7GDmmI2HWJoiS_DW8s2DozlY.roa
Signing time: Sat 01 Jan 2022 13:02:12 +0000
ROA not before: Sat 01 Jan 2022 13:02:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62344
IP address blocks: 91.216.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60737340 (0x39ec73c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79bb370b0c9a06fd82cb7100d903859b09f50333
Validity
Not Before: Jan 1 13:02:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ab23b1839a62361d6268892fc35bcb360e8ce56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:38:51:48:4f:ff:e1:7e:a2:02:6b:b1:fe:98:
72:de:33:94:ef:6e:4c:4e:d5:e2:6d:6e:cc:ea:18:
be:a5:3d:38:40:48:36:45:1e:91:db:52:85:bf:77:
68:d7:e7:f8:92:33:fc:37:18:0a:4d:c6:6e:59:c2:
34:ef:0a:03:01:af:b2:fa:0e:d6:59:f4:c8:b6:88:
16:c2:ab:38:f3:13:64:13:07:b0:8c:32:b2:9f:4c:
4b:7d:88:54:59:c5:2e:8e:18:1a:52:33:53:92:1c:
f9:50:4e:ce:b1:d5:18:bb:51:bf:d9:d5:86:9e:1a:
23:97:65:81:64:ba:0a:00:42:21:58:70:95:6e:89:
fb:49:ab:e4:23:4c:33:2d:a1:bb:75:a3:0f:f1:2a:
f4:9d:9f:6f:42:39:bc:ab:2d:c2:61:1e:9b:89:46:
5c:f9:b7:e3:9c:b5:87:e5:2b:db:bc:50:a1:8e:64:
e1:90:43:0b:04:cf:03:6f:56:c1:7a:c7:8a:41:0c:
1f:8f:be:40:3f:7b:d0:ea:7e:ae:18:70:2d:bb:1d:
b8:ef:f9:4e:a3:78:e9:9c:6b:a3:1f:44:76:ac:2c:
3d:c4:55:f3:9d:30:c1:e1:f9:02:cf:bf:5e:df:ed:
bb:44:3c:36:38:34:1e:0d:cf:93:87:b2:24:b8:d8:
c1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:B2:3B:18:39:A6:23:61:D6:26:88:92:FC:35:BC:B3:60:E8:CE:56
X509v3 Authority Key Identifier:
keyid:79:BB:37:0B:0C:9A:06:FD:82:CB:71:00:D9:03:85:9B:09:F5:03:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/arI7GDmmI2HWJoiS_DW8s2DozlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.130.0/24
Signature Algorithm: sha256WithRSAEncryption
88:37:1b:a4:6d:0d:7c:1f:d8:f7:c5:97:7e:38:01:00:7c:ab:
71:3b:6d:73:b7:60:4e:56:f9:72:e9:d4:bc:7e:8d:9e:36:f8:
7a:56:72:15:70:bd:ae:ca:79:55:9a:35:09:a2:95:1b:33:ed:
92:cc:0a:18:0f:ca:bf:a1:f5:2f:5d:c0:86:b1:3f:66:da:8a:
96:ed:ac:71:30:02:3e:f5:1d:3d:25:9d:b5:4d:51:d8:11:bb:
68:85:75:41:46:fd:49:42:22:ac:d6:9c:7a:12:5e:41:97:fd:
50:a8:79:22:a5:40:02:a9:d6:96:92:61:3c:d4:e8:5e:c7:56:
b5:8b:24:ba:e8:7a:0f:7a:7b:5a:d4:8a:87:59:82:80:32:d6:
d0:69:a6:ba:bf:7e:00:33:7e:ff:fa:a1:0e:88:5f:97:d5:8f:
dc:c8:c2:94:90:67:98:51:22:84:43:b4:3e:d1:a9:00:aa:12:
9a:8d:34:11:45:be:bc:67:33:a0:e8:c7:75:3c:90:d2:67:71:
a2:79:a8:18:16:42:2e:b1:6d:e0:b2:94:c5:6f:39:41:c7:1b:
14:b9:43:92:48:37:d9:e2:05:d2:c1:63:f6:7e:a3:44:b8:d3:
6a:44:95:08:70:fb:3b:bc:11:0c:45:00:bd:2f:b4:2b:12:f7:
ca:3b:d3:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-ams.rpki-client.org