Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/db7qDlRbg_7gro5xM4ufPn3typk.roa
File: db7qDlRbg_7gro5xM4ufPn3typk.roa (raw, json)
Hash identifier: ExOmvpCdpUVKnjK3pSd4qpKvuYdR0qF0+tHqIQug9SQ=
Subject key identifier: 75:BE:EA:0E:54:5B:83:FE:E0:AE:8E:71:33:8B:9F:3E:7D:ED:CA:99
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0C9F1757
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/db7qDlRbg_7gro5xM4ufPn3typk.roa
Signing time: Tue 31 May 2022 15:19:15 +0000
ROA not before: Tue 31 May 2022 15:19:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212337
IP address blocks: 91.220.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211752791 (0xc9f1757)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: May 31 15:19:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75beea0e545b83fee0ae8e71338b9f3e7dedca99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ef:32:55:51:5f:e1:ab:d4:c0:7b:27:80:64:
cf:66:67:6a:08:32:79:90:2b:fe:87:f6:02:5a:cb:
9f:d4:86:08:4f:14:fa:f9:40:68:2d:8c:85:1a:58:
ad:7f:18:04:72:df:da:12:bc:62:e1:19:20:17:d7:
d8:03:39:06:bb:d7:5a:75:f6:d8:bb:20:98:a5:d1:
b4:82:de:e5:43:07:dc:e0:d9:36:fd:5d:96:c3:08:
29:90:75:b5:08:4f:0f:c6:2a:e6:ff:93:84:a9:e2:
4e:ce:2e:6d:20:d0:13:c3:90:fc:84:f6:12:c0:92:
86:ba:e2:a3:6b:c7:9b:d2:ba:25:45:f3:47:05:44:
d4:e6:30:df:87:b8:4f:a0:4a:57:db:01:5b:c9:76:
61:9a:57:0a:63:21:67:4d:1c:3f:e7:51:ea:9f:9c:
4c:41:92:0b:cd:19:a6:44:32:67:ed:d3:6f:04:ef:
89:97:97:05:42:e5:f8:84:92:0e:36:7c:4e:4a:bd:
ca:0e:9a:f7:0a:94:9a:18:90:ad:f1:66:7b:4b:59:
89:7e:9a:82:b6:9b:2e:7b:5a:08:64:af:47:84:28:
0a:b6:13:8b:74:3f:92:ba:dc:28:07:a3:32:a5:a2:
19:d3:26:69:8e:61:bc:bb:03:9d:d2:ac:d2:cc:40:
4a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BE:EA:0E:54:5B:83:FE:E0:AE:8E:71:33:8B:9F:3E:7D:ED:CA:99
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/db7qDlRbg_7gro5xM4ufPn3typk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.171.0/24
Signature Algorithm: sha256WithRSAEncryption
59:11:73:cc:cd:ea:c0:1b:72:aa:72:c1:21:65:5c:b7:7b:a6:
38:b9:78:f5:47:90:a5:d4:ef:0c:10:c2:bf:a8:14:42:7e:4b:
24:cb:77:a9:1e:27:ae:f4:be:7c:de:57:3c:51:f3:af:ff:d4:
ad:3e:9e:f1:85:12:af:11:44:bb:99:48:4f:7d:6d:e8:35:43:
9e:26:bf:44:dd:3c:9f:a1:6e:ea:ac:e3:8a:4f:33:a8:fb:89:
2a:68:d2:a9:8e:46:34:9d:0f:68:a7:65:1a:da:fd:12:e5:28:
dd:1c:89:e8:cb:db:aa:f2:06:a5:20:d1:6b:ee:f1:f7:ee:72:
83:3b:21:af:76:d7:f6:ef:96:26:b7:3b:8c:c7:c1:56:0e:86:
39:b0:0a:f2:e9:28:a5:eb:c4:99:19:dd:5c:e1:12:ad:ba:20:
e0:eb:08:1e:50:1e:3d:5a:fe:82:6d:5e:fd:e2:57:39:c1:a3:
62:2c:b0:aa:9c:c5:fb:9d:38:96:75:aa:7a:32:b1:40:6a:13:
be:85:c0:33:cf:7f:cf:d7:36:52:01:c0:55:cf:1e:79:43:3b:
37:15:b6:03:05:a7:e9:68:58:a2:69:49:1a:90:d4:5b:a0:1d:
c7:24:7c:e8:00:7a:27:90:8f:fb:fd:df:51:37:f5:92:0c:ee:
83:3e:3c:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:30 2024 by rpki-client on console-fra.rpki-client.org