Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/1-w2-VcmVT_mqKvPMEmcEFUG8goM.roa
File: 1-w2-VcmVT_mqKvPMEmcEFUG8goM.roa (raw, json)
Hash identifier: ggSdZavHA3ZwUE6ghe/IS+D8/B2LSY9btQNE11hOfzg=
Subject key identifier: FB:0D:BE:55:C9:95:4F:F9:AA:2A:F3:CC:12:67:04:15:41:BC:82:83
Certificate issuer: /CN=ec2e821d88de7a011341704202346f7c2bb9ebcf
Certificate serial: 0448CEDF
Authority key identifier: EC:2E:82:1D:88:DE:7A:01:13:41:70:42:02:34:6F:7C:2B:B9:EB:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7C6CHYjeegETQXBCAjRvfCu5688.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/1-w2-VcmVT_mqKvPMEmcEFUG8goM.roa
Signing time: Sat 01 Jan 2022 09:01:26 +0000
ROA not before: Sat 01 Jan 2022 09:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50599
IP address blocks: 91.219.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71880415 (0x448cedf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec2e821d88de7a011341704202346f7c2bb9ebcf
Validity
Not Before: Jan 1 09:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb0dbe55c9954ff9aa2af3cc1267041541bc8283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:50:a8:12:79:8f:3b:e7:9e:b2:9f:d9:80:5f:
a3:d2:a7:37:97:98:5a:1e:d7:25:69:cd:2b:1f:12:
4c:04:38:15:9b:7b:08:a3:7b:06:9e:79:a7:f5:d7:
81:9c:1e:f8:4c:9d:ba:7e:11:87:29:71:0d:f7:26:
31:2f:43:c2:44:83:fa:a9:8b:4f:74:0c:fa:27:4c:
77:2a:dd:77:6d:45:97:c5:e9:e2:30:27:40:47:0a:
0a:cd:c3:4f:a5:ff:f3:bc:d5:08:57:13:a6:cc:b7:
c8:52:b2:30:4f:d0:e3:6b:45:69:ac:e0:25:35:a1:
05:9a:46:9c:81:8e:73:74:f8:f8:a6:d9:25:ef:ee:
45:d4:34:bb:34:a4:09:f8:d4:af:f7:7e:7f:69:16:
ff:01:c9:e9:a4:9e:6a:47:a9:54:8d:07:2a:f8:9a:
c5:45:15:f5:b1:ca:7f:54:7d:97:f3:51:c1:c8:a6:
ad:30:67:34:a4:b9:76:48:9d:e7:04:2f:b0:17:bf:
f5:a4:36:ba:62:d7:bf:ae:e1:82:46:a5:8e:1b:4e:
1f:07:12:15:63:5e:61:ad:6f:81:1d:b0:3e:33:d6:
ba:5e:1f:a8:1e:73:95:b0:0b:34:85:b7:71:53:75:
21:d7:c9:c4:f1:3a:9f:4e:3a:86:8e:af:f2:a0:1f:
c3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:0D:BE:55:C9:95:4F:F9:AA:2A:F3:CC:12:67:04:15:41:BC:82:83
X509v3 Authority Key Identifier:
keyid:EC:2E:82:1D:88:DE:7A:01:13:41:70:42:02:34:6F:7C:2B:B9:EB:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7C6CHYjeegETQXBCAjRvfCu5688.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/1-w2-VcmVT_mqKvPMEmcEFUG8goM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/7C6CHYjeegETQXBCAjRvfCu5688.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.184.0/22
Signature Algorithm: sha256WithRSAEncryption
01:3e:5b:d9:82:77:27:eb:bf:c7:0f:51:4c:6d:94:ee:21:49:
6a:75:f5:4a:1a:9a:91:33:32:71:55:8b:ad:a4:29:26:3f:7b:
14:6a:a7:1a:e8:7f:b1:94:1e:2c:db:0d:98:64:07:c5:ac:2d:
54:56:a7:a5:93:0f:e7:3b:33:9a:c4:0b:eb:25:cc:23:ef:fd:
f8:8a:57:d0:d5:b3:ef:e0:68:a1:39:68:50:09:87:e6:36:11:
4a:7a:4a:87:ae:95:0d:b0:74:21:5d:be:10:8b:cb:15:e1:0c:
68:f4:8d:1e:83:38:f5:be:0a:87:46:fc:3b:0e:98:e8:35:7b:
0c:bd:50:99:6c:f3:1b:a1:71:9d:33:56:91:15:00:31:99:9d:
a6:4c:c0:52:65:d2:3b:3b:16:b5:e4:91:07:28:7a:9d:86:db:
4a:5f:69:e1:90:60:23:14:27:d7:96:48:0e:16:31:b2:45:a2:
0a:4e:5d:27:96:e0:1e:f3:f6:36:70:11:06:0a:52:aa:b8:80:
a0:8a:a3:5e:15:48:74:00:d5:94:15:6b:9c:90:01:ac:a9:eb:
9f:a0:d8:ec:05:19:d4:f3:73:10:96:e8:f6:45:8f:9b:64:a8:
a2:ea:90:fe:91:61:e5:70:fa:e5:fd:70:ca:7f:b2:47:ba:14:
92:19:3e:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:22 2023 by rpki-client on console-ams.rpki-client.org