Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/9170e3-e9b3-4d6d-8787-e46ea89bf849/1/t0Vn_KfRJI8lF5eD5LS-0ohDUN0.roa
File: t0Vn_KfRJI8lF5eD5LS-0ohDUN0.roa (raw, json)
Hash identifier: 7C4f42t4PAOAywjz5Mp+ARVZ6F0JV8Y6KqyYxIqC8xI=
Subject key identifier: B7:45:67:FC:A7:D1:24:8F:25:17:97:83:E4:B4:BE:D2:88:43:50:DD
Certificate issuer: /CN=59a06c187953cfc8133b2beee5f01a15e45da078
Certificate serial: C9DCA9
Authority key identifier: 59:A0:6C:18:79:53:CF:C8:13:3B:2B:EE:E5:F0:1A:15:E4:5D:A0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WaBsGHlTz8gTOyvu5fAaFeRdoHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/9170e3-e9b3-4d6d-8787-e46ea89bf849/1/t0Vn_KfRJI8lF5eD5LS-0ohDUN0.roa
Signing time: Sat 01 Jan 2022 12:57:36 +0000
ROA not before: Sat 01 Jan 2022 12:57:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 91.233.120.0/24 maxlen: 24
194.104.235.0/24 maxlen: 24
2a11:6740::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13229225 (0xc9dca9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59a06c187953cfc8133b2beee5f01a15e45da078
Validity
Not Before: Jan 1 12:57:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b74567fca7d1248f25179783e4b4bed2884350dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b8:c5:d7:c1:dc:51:24:84:ca:13:12:b2:51:
7a:f9:07:61:ff:71:bd:84:44:53:89:fb:fa:e0:44:
15:b4:f0:78:ab:db:8b:3e:88:56:5e:66:6e:ab:da:
97:1a:90:b9:a8:6e:bf:64:7f:12:48:1a:b9:63:48:
6b:61:15:77:80:c5:5c:ef:59:3c:af:2e:76:24:32:
47:55:ef:34:10:af:b8:80:03:4f:09:5b:6b:46:2f:
b2:77:7e:71:e0:dd:3c:c7:21:1e:26:11:dd:ac:3e:
b0:5c:23:5a:16:b5:8b:56:96:ed:eb:16:b4:78:1b:
41:ad:2b:2e:79:af:3d:d1:99:9a:18:80:57:5c:25:
cb:97:d5:65:52:96:16:90:62:e3:ee:fb:ac:e3:e4:
56:2a:d4:e6:e9:b2:72:48:49:80:9c:db:f7:0d:ee:
75:7d:a8:23:50:f7:14:21:60:37:68:ee:73:2e:d5:
50:09:2c:06:d9:5d:9c:51:67:9b:ed:9b:a2:31:80:
ea:11:c1:51:00:d2:6c:aa:6e:25:de:b7:c8:9f:0a:
33:32:be:67:f0:4f:a1:86:13:75:fd:b1:8a:13:bf:
63:05:9a:98:26:7a:83:d2:2c:1d:17:32:14:40:f1:
7a:e5:94:b1:63:f8:82:ac:ad:0b:65:96:7e:98:ef:
ab:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:45:67:FC:A7:D1:24:8F:25:17:97:83:E4:B4:BE:D2:88:43:50:DD
X509v3 Authority Key Identifier:
keyid:59:A0:6C:18:79:53:CF:C8:13:3B:2B:EE:E5:F0:1A:15:E4:5D:A0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WaBsGHlTz8gTOyvu5fAaFeRdoHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/9170e3-e9b3-4d6d-8787-e46ea89bf849/1/t0Vn_KfRJI8lF5eD5LS-0ohDUN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/9170e3-e9b3-4d6d-8787-e46ea89bf849/1/WaBsGHlTz8gTOyvu5fAaFeRdoHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.120.0/24
194.104.235.0/24
IPv6:
2a11:6740::/29
Signature Algorithm: sha256WithRSAEncryption
1c:51:18:74:b1:15:4f:bc:90:e7:b5:f2:72:db:38:5c:ba:3f:
07:d8:83:b0:ac:96:71:be:0e:8f:bb:28:fa:6a:83:44:c4:68:
f7:ea:b0:40:c5:c0:eb:21:16:6a:07:22:ab:fd:2c:43:96:07:
03:30:1e:bc:b9:e0:de:05:2d:51:66:a3:0c:89:f2:5e:be:32:
77:45:56:7b:82:35:66:1e:e4:17:41:7f:6e:f3:8d:17:dd:ab:
26:8d:b3:33:02:01:2a:b0:71:78:36:cb:9e:2d:eb:61:48:e8:
b6:5b:43:5b:fe:c7:f6:6c:b8:14:53:19:63:4f:61:3c:92:19:
1a:dc:54:eb:4f:a6:f7:47:2d:08:92:da:b4:bf:81:0b:77:fb:
99:2c:a8:cb:fa:8f:8d:8e:f7:84:dc:c2:8c:85:36:42:fe:53:
d7:34:0c:14:02:1d:c8:55:ca:22:7e:19:07:64:44:4d:9f:c6:
47:61:0b:81:e1:fd:ef:bf:10:68:4d:c4:69:16:12:0b:98:93:
a2:f7:f9:b6:de:1e:a7:0c:f7:b5:cf:57:d0:49:48:8a:77:bc:
6b:93:48:6a:bd:00:17:77:f0:7d:9b:b2:21:e8:9b:e1:ba:73:
f7:35:e1:cb:e9:16:85:ff:b7:e3:3b:80:71:f5:8b:33:53:c3:
47:cd:65:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:22 2024 by rpki-client on console-ams.rpki-client.org