Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/3dfc14-e6ab-48ca-9613-495a501c6998/1/aTI6T9sDhZ3Xjnyyga16AXOdhWU.roa
File: aTI6T9sDhZ3Xjnyyga16AXOdhWU.roa (raw, json)
Hash identifier: xFjYGZYtpAGVuh78dqkbKy4Qmv33ZVQeXpMMo4dqhoU=
Subject key identifier: 69:32:3A:4F:DB:03:85:9D:D7:8E:7C:B2:81:AD:7A:01:73:9D:85:65
Certificate issuer: /CN=b3ba47605cf367626263e57f16d0d87916ceddc8
Certificate serial: 01856597718D19F6403A5BE0351BDCDC14D9
Authority key identifier: B3:BA:47:60:5C:F3:67:62:62:63:E5:7F:16:D0:D8:79:16:CE:DD:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7pHYFzzZ2JiY-V_FtDYeRbO3cg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/3dfc14-e6ab-48ca-9613-495a501c6998/1/aTI6T9sDhZ3Xjnyyga16AXOdhWU.roa
Signing time: Sat 31 Dec 2022 00:31:41 +0000
ROA not before: Sat 31 Dec 2022 00:31:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5413
IP address blocks: 91.220.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:65:97:71:8d:19:f6:40:3a:5b:e0:35:1b:dc:dc:14:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3ba47605cf367626263e57f16d0d87916ceddc8
Validity
Not Before: Dec 31 00:31:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69323a4fdb03859dd78e7cb281ad7a01739d8565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c8:20:46:b8:2b:70:ad:9b:fe:a0:90:c0:61:
df:c4:d6:a7:22:d2:67:21:fa:8c:01:30:f6:dd:94:
5c:14:06:8c:56:1b:ee:34:9f:54:31:e7:ed:29:d1:
4f:8a:fe:80:50:37:d1:86:d1:24:b9:52:b2:6a:ea:
62:6b:16:79:49:10:ca:a1:e2:2c:6f:9f:94:bc:38:
3b:52:08:55:01:4d:ab:07:f2:15:a5:61:e7:43:45:
93:07:88:e4:e6:65:48:3a:a6:c7:6b:8d:4c:4a:9b:
2f:43:f8:9c:0c:ec:15:5a:5d:30:48:87:7f:1e:7f:
f3:58:03:5e:6b:88:61:2a:f6:26:3d:db:ff:0d:de:
39:c6:86:69:a3:2e:3a:a5:c2:32:af:0e:d3:bd:54:
20:8b:e0:59:c0:46:83:eb:8b:04:79:e6:6b:7d:53:
3e:4b:f2:aa:7a:c6:e9:fe:ee:d5:a6:f7:22:8b:4f:
fc:c0:26:b2:48:ca:52:a8:0b:cc:77:94:6e:fb:62:
bb:7e:52:b6:17:6b:4f:47:e7:9d:42:49:1f:78:73:
71:15:56:fb:8e:cb:8a:21:f1:04:d3:63:3a:99:b9:
99:c1:8f:85:98:f7:09:1a:09:4d:f9:a0:a1:50:9d:
dd:a9:b9:7b:46:37:36:2d:83:c9:fc:6d:08:c9:55:
73:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:32:3A:4F:DB:03:85:9D:D7:8E:7C:B2:81:AD:7A:01:73:9D:85:65
X509v3 Authority Key Identifier:
keyid:B3:BA:47:60:5C:F3:67:62:62:63:E5:7F:16:D0:D8:79:16:CE:DD:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7pHYFzzZ2JiY-V_FtDYeRbO3cg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3dfc14-e6ab-48ca-9613-495a501c6998/1/aTI6T9sDhZ3Xjnyyga16AXOdhWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/3dfc14-e6ab-48ca-9613-495a501c6998/1/s7pHYFzzZ2JiY-V_FtDYeRbO3cg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.141.0/24
Signature Algorithm: sha256WithRSAEncryption
39:4a:f1:78:9a:65:aa:53:cd:32:8b:a7:ab:0a:04:98:12:dd:
7c:61:e9:a4:f8:15:5d:f1:1a:3c:b5:44:c5:71:6a:21:a6:4f:
50:51:e6:37:5d:92:b9:5b:8b:3b:56:47:81:e1:1c:17:a8:2b:
f1:7f:b1:8e:3c:17:3c:e7:49:18:a5:cd:a9:91:1a:e2:f1:70:
49:4c:e4:bc:81:ab:7b:55:e8:02:ef:ed:f8:e2:5b:36:bb:70:
05:f7:7a:89:7c:54:ef:85:5b:15:d3:6e:1b:69:c9:56:11:ca:
9c:91:d9:f3:dd:4e:8c:8f:59:25:5c:39:b9:ba:15:dd:79:23:
61:11:06:2d:4d:c7:50:c0:a3:10:55:be:9a:77:6d:18:75:a9:
6a:63:2e:49:fc:b7:f2:f6:1c:be:1b:3d:86:cf:8b:a2:e6:45:
f5:19:2c:4c:60:b1:7b:aa:fd:af:38:7b:20:f8:b0:8d:0e:b3:
01:ed:29:79:98:5b:7b:33:e7:8a:7e:ff:f5:77:42:9b:cc:5f:
df:62:b8:5a:5d:2e:4a:b2:f3:48:87:de:38:94:6d:22:c2:eb:
5c:d8:a4:35:98:6c:77:63:54:ba:86:0f:1c:01:f0:69:0b:68:
07:b7:52:d5:f3:84:6d:a8:f1:07:95:c2:2a:7d:42:8b:57:db:
54:83:8a:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:35 2023 by rpki-client on console-fra.rpki-client.org