Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/ebe137-0cf3-4962-8a1b-e80c729ed19f/1/iTmRC6CeCpOFaaz9uOlFIKjm6tk.roa
File: iTmRC6CeCpOFaaz9uOlFIKjm6tk.roa (raw, json)
Hash identifier: NXA2XvvwnBrR/CVXqOlwkxJ1RJg36f2XPTldeKf136w=
Subject key identifier: 89:39:91:0B:A0:9E:0A:93:85:69:AC:FD:B8:E9:45:20:A8:E6:EA:D9
Certificate issuer: /CN=d0174be426ca4511343754dea37d6a360a34a9b8
Certificate serial: 07B41ED1
Authority key identifier: D0:17:4B:E4:26:CA:45:11:34:37:54:DE:A3:7D:6A:36:0A:34:A9:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BdL5CbKRRE0N1Teo31qNgo0qbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/ebe137-0cf3-4962-8a1b-e80c729ed19f/1/iTmRC6CeCpOFaaz9uOlFIKjm6tk.roa
Signing time: Sat 01 Jan 2022 16:04:59 +0000
ROA not before: Sat 01 Jan 2022 16:04:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197071
IP address blocks: 91.217.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129244881 (0x7b41ed1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0174be426ca4511343754dea37d6a360a34a9b8
Validity
Not Before: Jan 1 16:04:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8939910ba09e0a938569acfdb8e94520a8e6ead9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2b:bb:b1:6d:9c:68:d5:7e:17:4e:1a:db:e7:
63:fc:e9:0a:ec:b2:80:6c:fc:d3:85:53:a9:12:bb:
20:4d:2e:5e:5e:ae:df:ea:ab:47:a7:55:cd:3c:b8:
9f:04:a1:56:83:ba:ad:b1:c7:30:70:bd:03:2d:4e:
f0:4b:41:80:d6:5c:29:0f:63:4e:d0:45:8a:ef:19:
60:e4:df:26:4b:38:f7:05:ea:61:6b:67:c0:aa:c9:
26:6e:73:a0:00:d1:33:a9:d7:57:32:43:db:d2:8b:
c4:8f:35:d5:a3:75:0d:c0:61:57:0c:b5:8a:f7:f1:
04:33:57:6f:9b:b1:35:0d:22:5a:7c:8e:cb:8c:6d:
39:b0:bc:a0:49:b2:82:75:76:fc:f7:54:1f:ac:ec:
d8:b1:55:92:e1:12:4c:c6:8e:58:e4:d2:5f:a6:e8:
a2:fd:62:b5:7d:ee:bb:2e:a8:54:57:41:5f:d7:fb:
8b:df:81:02:d1:4f:36:c8:d7:2b:9b:d9:ae:ec:67:
07:7c:1b:0e:6c:fd:d2:82:59:49:37:42:0c:32:42:
17:71:87:bf:a6:be:55:e7:20:28:81:25:b6:c4:2f:
68:74:0f:4a:40:a5:44:aa:98:4d:05:c4:ad:b1:11:
c4:1d:13:0a:bd:e4:6c:4a:26:01:67:74:7a:f5:43:
6d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:39:91:0B:A0:9E:0A:93:85:69:AC:FD:B8:E9:45:20:A8:E6:EA:D9
X509v3 Authority Key Identifier:
keyid:D0:17:4B:E4:26:CA:45:11:34:37:54:DE:A3:7D:6A:36:0A:34:A9:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BdL5CbKRRE0N1Teo31qNgo0qbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/ebe137-0cf3-4962-8a1b-e80c729ed19f/1/iTmRC6CeCpOFaaz9uOlFIKjm6tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/ebe137-0cf3-4962-8a1b-e80c729ed19f/1/0BdL5CbKRRE0N1Teo31qNgo0qbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.251.0/24
Signature Algorithm: sha256WithRSAEncryption
55:99:23:9e:61:d7:d6:d2:02:0b:90:c2:7f:17:5e:aa:59:c1:
15:fe:e5:d9:43:41:98:20:81:8a:8a:47:df:32:d9:a4:3d:3e:
31:a1:a2:7a:0d:20:a2:5a:18:07:6d:55:c1:4e:92:94:bf:e0:
8a:c4:6f:4f:fe:0b:45:58:14:ea:73:0e:eb:78:a5:1f:59:e8:
d3:9d:4a:81:b3:6e:30:71:57:06:74:a7:19:3b:51:61:b3:42:
1f:78:b4:c2:8d:a0:7d:b7:dc:d4:d5:a2:14:4c:fd:22:5b:1c:
83:2f:4f:fb:5b:68:eb:8b:6b:4f:cc:6b:49:9e:1e:66:77:2b:
61:1e:20:e0:af:94:36:7b:09:02:84:bd:42:85:7e:16:bc:9a:
d0:47:b9:3a:ca:fb:49:57:4b:3c:0f:f8:41:6e:86:0e:6b:21:
98:9a:08:dd:ae:06:da:23:58:b3:e2:c1:77:4b:c4:32:9c:db:
87:be:03:11:2f:42:f0:f8:1a:86:d7:0c:80:28:99:fb:8c:01:
47:bf:bf:7e:3c:12:92:45:ca:c9:c2:04:55:52:7d:2e:82:09:
83:21:d9:4f:f9:80:89:c3:cf:83:3e:f9:1f:14:82:7f:37:14:
9d:f4:43:73:3c:1b:a7:8d:be:6e:eb:67:fa:00:f6:20:36:2d:
7e:0e:d1:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:40 2023 by rpki-client on console-fra.rpki-client.org