Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/33_dyzSlwejlE4FgIBgzEflWOow.roa
File: 33_dyzSlwejlE4FgIBgzEflWOow.roa (raw, json)
Hash identifier: XWHZhjmFuJ1tg2QFAtctg86q5KB4jjoDV+a9FPXmzEM=
Subject key identifier: DF:7F:DD:CB:34:A5:C1:E8:E5:13:81:60:20:18:33:11:F9:56:3A:8C
Certificate issuer: /CN=12caad11c5d8981d983c301e86a1acf2d811aac1
Certificate serial: 015759AE
Authority key identifier: 12:CA:AD:11:C5:D8:98:1D:98:3C:30:1E:86:A1:AC:F2:D8:11:AA:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/33_dyzSlwejlE4FgIBgzEflWOow.roa
Signing time: Sat 01 Jan 2022 05:03:32 +0000
ROA not before: Sat 01 Jan 2022 05:03:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198307
IP address blocks: 91.226.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22501806 (0x15759ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12caad11c5d8981d983c301e86a1acf2d811aac1
Validity
Not Before: Jan 1 05:03:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df7fddcb34a5c1e8e513816020183311f9563a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:79:84:3d:f2:53:f8:16:be:e5:90:bc:0a:35:
23:e0:86:6b:6d:b4:b8:b2:dd:63:7c:b4:53:35:8e:
3a:e7:3f:9d:4d:fc:76:59:18:47:98:36:8b:50:5f:
60:c1:40:d6:36:3d:3e:92:ab:a9:fe:23:78:a8:7d:
55:ed:93:22:f5:0e:c3:66:8a:0a:4c:b0:02:30:a0:
ad:c2:cc:be:2a:18:c6:b6:30:8e:b3:14:17:8b:05:
27:01:f3:aa:2d:26:50:49:4e:2c:15:37:92:6e:be:
e7:95:67:b7:22:c6:22:5e:3e:ff:be:b2:95:d0:32:
c9:19:94:6c:81:8e:66:97:33:40:e7:6a:a0:f3:45:
69:70:e6:12:52:64:d1:b2:96:09:b9:69:f4:55:06:
db:58:ab:ce:52:78:98:16:97:75:42:2a:96:4c:e1:
e6:8f:6f:a8:d3:2f:ac:2a:29:1b:8e:43:98:0a:bc:
62:8d:a5:c5:e4:0a:90:26:a8:09:4c:90:dc:1c:51:
f4:cd:3c:16:b6:59:98:6f:b7:df:95:fd:f6:a0:1a:
0c:4c:c0:c9:87:8d:cb:01:8c:ad:5e:1f:07:d8:ef:
c4:c8:7a:01:0b:d0:70:27:4d:0b:e4:fb:8c:98:34:
fb:74:df:15:a4:58:45:6d:09:36:9b:01:a3:35:2d:
ec:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:7F:DD:CB:34:A5:C1:E8:E5:13:81:60:20:18:33:11:F9:56:3A:8C
X509v3 Authority Key Identifier:
keyid:12:CA:AD:11:C5:D8:98:1D:98:3C:30:1E:86:A1:AC:F2:D8:11:AA:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsqtEcXYmB2YPDAehqGs8tgRqsE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/33_dyzSlwejlE4FgIBgzEflWOow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/6c3fa1-63b5-4bdc-94be-eb7b9590e303/1/EsqtEcXYmB2YPDAehqGs8tgRqsE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.77.0/24
Signature Algorithm: sha256WithRSAEncryption
23:9b:2e:ba:e0:76:d8:69:14:92:d7:3c:88:60:62:37:6c:0d:
9c:00:56:f6:67:1e:c5:7b:99:ac:42:1d:51:29:b9:4c:06:dc:
1d:32:69:c7:a5:51:ad:d4:49:3b:23:fe:63:f7:d3:5f:c9:47:
94:79:84:1d:08:c7:98:22:16:0d:1b:a2:ff:75:bf:06:f9:29:
03:1e:aa:0e:10:f3:a2:78:b2:cc:6c:32:92:35:04:27:2e:b1:
ed:9d:1d:f7:49:9e:b2:19:d2:b1:60:01:70:00:9e:1a:16:04:
1f:66:42:39:43:4a:ed:9f:c0:fe:9f:09:61:1b:b3:e4:d4:f9:
2f:30:63:dd:05:5f:e3:e9:72:3f:e1:98:ae:27:7e:c7:5c:29:
8c:0a:70:73:03:6f:1f:4b:bc:b7:41:fb:11:e0:ff:a8:f0:3a:
87:d6:62:58:1a:8f:7a:34:b3:0e:3c:ed:93:56:a1:e6:2c:9e:
bf:f9:ae:53:88:e9:a6:8d:2d:bc:8e:25:34:92:e1:f1:b9:92:
55:7c:6b:86:14:aa:7f:51:0b:09:1a:0c:81:2f:ed:aa:27:84:
62:1c:e0:86:f9:54:2d:57:47:a6:07:90:44:f1:c7:22:ba:d5:
75:95:51:ed:3a:06:ae:02:0c:d9:6f:2b:4e:f1:5d:a8:9d:4b:
cf:41:7e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:30 2023 by rpki-client on console-ams.rpki-client.org