Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/SY2zQUIaBDUOMUfn4E7aHL5Zunc.roa
File: SY2zQUIaBDUOMUfn4E7aHL5Zunc.roa (raw, json)
Hash identifier: 759c6+3iFCKyxc4oztQj27I2ZtiTHgGFqa7/oFHhpOA=
Subject key identifier: 49:8D:B3:41:42:1A:04:35:0E:31:47:E7:E0:4E:DA:1C:BE:59:BA:77
Certificate issuer: /CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Certificate serial: 098FA089
Authority key identifier: DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/SY2zQUIaBDUOMUfn4E7aHL5Zunc.roa
Signing time: Sat 01 Jan 2022 11:56:20 +0000
ROA not before: Sat 01 Jan 2022 11:56:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15598
IP address blocks: 91.206.152.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160407689 (0x98fa089)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Validity
Not Before: Jan 1 11:56:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=498db341421a04350e3147e7e04eda1cbe59ba77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bd:b3:32:26:67:0e:40:0d:5c:60:0e:5e:9c:
54:dd:e9:88:ca:fa:14:a2:15:04:d8:75:98:d1:6c:
77:e3:b3:da:a1:1d:82:82:c4:c1:eb:d5:57:f0:f4:
26:7e:cc:3b:1b:16:49:1b:f2:57:de:ad:43:d9:c6:
97:f1:36:ce:24:ae:93:4e:06:87:88:6d:a1:7d:ef:
05:cd:71:62:1c:fa:2d:ec:a6:ef:57:59:7d:fe:8f:
06:5d:38:87:5f:55:c6:73:77:85:f7:6f:f6:f9:29:
18:6c:60:ac:f6:7d:92:b7:f3:b7:76:02:1b:ac:77:
d4:5b:f7:50:1e:50:d7:22:a1:57:a4:7f:b1:ff:98:
53:79:2c:82:3f:91:51:60:84:ed:54:8a:5c:3c:4e:
9c:8f:3e:a3:31:8d:0c:df:51:d8:87:19:3a:94:54:
db:e3:34:53:d4:df:f7:bd:b5:ea:90:f3:b2:f8:01:
c7:d4:90:71:5d:8d:d4:aa:61:c2:14:6a:84:37:94:
c0:1a:46:fa:88:f9:8a:97:59:f9:18:18:59:e4:3b:
aa:89:0f:04:a0:58:75:a9:97:60:3b:d7:91:c3:dd:
ec:0a:42:73:d1:d9:09:8b:d2:68:be:67:9f:40:de:
00:63:83:98:8f:ce:ab:48:b0:06:5c:d1:67:59:79:
ad:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8D:B3:41:42:1A:04:35:0E:31:47:E7:E0:4E:DA:1C:BE:59:BA:77
X509v3 Authority Key Identifier:
keyid:DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/SY2zQUIaBDUOMUfn4E7aHL5Zunc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.152.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:52:bc:15:d1:b6:6c:33:5c:3e:63:7c:d1:04:a0:39:9d:ab:
af:81:26:f9:30:6d:20:73:33:3a:cd:07:d1:53:3d:54:45:80:
29:db:ae:b4:16:2c:69:3d:81:ad:e3:32:33:ad:4c:52:9c:be:
7e:2a:eb:3b:ad:f0:62:d4:48:ed:b7:9c:af:f6:64:c9:eb:5e:
40:9e:17:2e:db:77:8d:5a:b4:b7:45:6a:8b:08:6d:97:4a:70:
29:6b:51:a6:53:3e:96:4f:74:df:0f:35:75:74:6f:91:f2:ea:
8f:de:6d:df:52:eb:1d:10:31:a2:5b:97:2e:6f:13:a3:1a:e9:
29:d6:e9:9a:0f:2f:02:73:bc:66:a2:f0:7c:27:bd:88:83:60:
5e:50:e5:0d:c9:6d:1b:bc:22:2a:78:4a:6f:a3:83:c8:db:6f:
26:08:10:99:f2:25:2a:42:71:c2:40:7b:c0:2e:19:06:45:08:
a3:b6:a0:2f:ec:05:05:15:04:a8:f6:98:ed:a8:38:7c:ae:a0:
57:09:03:8b:d6:20:f8:15:90:74:e5:90:90:23:db:26:0d:ea:
fd:b8:fc:91:22:e0:75:6f:77:54:a7:f7:e8:ae:81:95:a4:4e:
6c:6c:0f:36:ab:98:03:04:88:7a:1b:da:6c:15:c8:e5:0a:0c:
1f:44:72:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:47 2023 by rpki-client on console-ams.rpki-client.org