Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/1-TTywfiz6Xa9tTy6dnVJaGxKZgU.roa
File: 1-TTywfiz6Xa9tTy6dnVJaGxKZgU.roa (raw, json)
Hash identifier: wRxltdXllB5YeWOEWJAd2buAduUUW9lcH8OlGCMT2P8=
Subject key identifier: F9:34:F2:C1:F8:B3:E9:76:BD:B5:3C:BA:76:75:49:68:6C:4A:66:05
Certificate issuer: /CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Certificate serial: 0184C3C1FAA44F1C25018B446583E538B9FF
Authority key identifier: DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/1-TTywfiz6Xa9tTy6dnVJaGxKZgU.roa
Signing time: Tue 29 Nov 2022 14:19:40 +0000
ROA not before: Tue 29 Nov 2022 14:19:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49773
IP address blocks: 91.218.80.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c3:c1:fa:a4:4f:1c:25:01:8b:44:65:83:e5:38:b9:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Validity
Not Before: Nov 29 14:19:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f934f2c1f8b3e976bdb53cba767549686c4a6605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:76:4e:91:09:57:de:0e:1a:d8:c1:56:82:52:
c1:7a:df:2e:a3:86:68:36:a8:cf:b6:f7:f6:d1:7f:
e0:0a:5d:94:d4:12:b3:a7:53:1f:19:64:b5:3f:9d:
c4:20:be:d9:08:ac:42:32:db:36:b8:cd:50:20:e7:
59:7d:8f:8b:f4:e6:6d:50:ae:4a:87:8a:54:43:0b:
50:90:c3:cc:a3:39:46:27:d9:c6:ee:b0:18:6e:9c:
20:e3:da:65:35:77:72:f8:8b:16:d9:b5:59:4f:a8:
a1:e3:0b:c0:8a:a8:a8:e8:54:20:af:9b:bd:77:36:
80:ea:17:12:bd:c1:3d:e4:24:e8:af:51:48:22:76:
03:2b:7e:52:f4:ac:19:48:4f:22:78:62:9e:4e:0d:
d2:bf:12:51:7f:77:28:54:58:fd:7a:25:25:7b:92:
17:06:b7:23:dd:8b:b2:82:1d:a3:61:c9:4e:8f:48:
5c:e9:2e:b8:24:42:c6:ee:a2:97:3f:4b:51:5c:b1:
dd:e2:63:8a:5e:f7:31:8d:a1:cd:a5:c8:fe:76:29:
98:6b:89:19:22:21:92:7a:35:2c:6f:23:88:97:7a:
ca:00:c4:53:80:91:7f:c3:ae:c9:06:ff:50:6d:cd:
e2:9c:b1:06:65:a2:88:ec:e2:54:99:42:f9:28:d7:
62:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:34:F2:C1:F8:B3:E9:76:BD:B5:3C:BA:76:75:49:68:6C:4A:66:05
X509v3 Authority Key Identifier:
keyid:DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/1-TTywfiz6Xa9tTy6dnVJaGxKZgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.80.0/22
Signature Algorithm: sha256WithRSAEncryption
e7:61:57:18:1f:28:e9:ba:9a:39:7b:f0:be:1a:70:ab:d5:87:
bb:70:5d:78:af:7c:07:9e:4b:b7:89:f5:07:a0:1b:b7:49:cb:
79:dd:75:07:e0:8b:76:4d:e9:4c:0a:fb:4d:68:9d:ef:8c:8b:
2f:9e:a3:c7:29:ae:94:2f:ca:8d:5e:3a:bb:96:dd:39:67:c2:
68:30:4d:82:57:9e:23:4e:20:21:20:6c:44:c8:18:c8:c3:8d:
d3:76:7d:9a:99:4d:eb:5c:44:20:87:45:37:05:af:21:26:9c:
25:17:8b:5d:52:15:5d:51:f7:54:d3:85:0f:15:70:ad:b4:f5:
5c:51:c6:99:4e:11:9a:2b:b6:23:3e:88:de:79:24:1b:d2:0f:
26:14:4f:55:b1:79:05:fc:9f:0a:e1:8a:87:a2:37:5e:84:76:
f2:3f:c3:b8:f4:bc:59:8d:fb:33:46:d3:6c:bf:c3:b8:21:32:
3f:0c:d4:8c:dd:f1:fa:21:08:65:ff:d0:35:c1:1b:46:e3:cf:
62:68:7f:5e:60:1d:19:6c:32:1a:bf:83:d0:1f:c0:05:a5:38:
a7:d4:56:61:75:d7:3b:2e:c5:97:44:27:c5:88:75:49:ce:2b:
f2:0d:32:92:3a:6a:e9:22:d4:d3:9e:f5:de:4f:dc:1c:6b:94:
a8:4d:e6:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:35 2023 by rpki-client on console-ams.rpki-client.org