Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/350f54-f50b-458e-ac8a-dd558da69bd7/1/9Up7ysKiIgt8bZCsTYSzDsjgfs4.roa
File: 9Up7ysKiIgt8bZCsTYSzDsjgfs4.roa (raw, json)
Hash identifier: /vSVA1GJiu+Dm5z1DqX9ezEzKNbP59yOg5QpBY12R2o=
Subject key identifier: F5:4A:7B:CA:C2:A2:22:0B:7C:6D:90:AC:4D:84:B3:0E:C8:E0:7E:CE
Certificate issuer: /CN=f2b1dafc45588242bf9ae105c91ae883a1c403b3
Certificate serial: C9BA
Authority key identifier: F2:B1:DA:FC:45:58:82:42:BF:9A:E1:05:C9:1A:E8:83:A1:C4:03:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8rHa_EVYgkK_muEFyRrog6HEA7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/350f54-f50b-458e-ac8a-dd558da69bd7/1/9Up7ysKiIgt8bZCsTYSzDsjgfs4.roa
Signing time: Wed 23 Mar 2022 21:46:54 +0000
ROA not before: Wed 23 Mar 2022 21:46:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60889
IP address blocks: 91.212.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51642 (0xc9ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2b1dafc45588242bf9ae105c91ae883a1c403b3
Validity
Not Before: Mar 23 21:46:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f54a7bcac2a2220b7c6d90ac4d84b30ec8e07ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:70:7b:0c:e2:73:9a:cf:1c:93:c9:38:42:a3:
12:b2:ca:6a:57:b2:8b:71:10:82:6f:c9:94:c1:eb:
49:3f:67:e9:1c:58:03:50:2e:88:57:a4:74:7d:8a:
6e:a2:a3:3d:58:a1:d9:34:d2:3c:0e:c9:30:87:06:
05:8e:f7:22:a7:69:b2:d2:be:1a:b1:7a:8f:81:dd:
0d:d8:bd:90:e5:fd:cc:cc:1c:f1:76:28:71:9b:59:
fb:f9:0e:84:73:fd:77:63:01:d0:c5:0c:b5:92:eb:
23:95:60:a5:9c:0f:ec:14:c2:ef:da:77:62:6d:0b:
27:bc:41:fb:79:47:ad:d3:f5:8a:14:ab:48:e7:fb:
70:52:c8:02:59:f8:6d:d2:40:f9:12:c8:9f:0a:41:
48:17:25:95:58:a8:70:b5:72:1c:c4:b9:e9:d6:ff:
44:30:c0:b5:2f:a5:ba:40:51:5b:1a:12:28:8f:49:
e7:9e:44:62:0b:99:f8:8e:18:be:c4:cc:26:d7:9b:
ad:03:36:20:79:fd:cf:67:3a:92:8d:61:22:1f:2d:
8e:97:36:3c:8f:4f:d0:dd:bc:58:6a:b5:6d:5e:33:
13:6e:86:ad:b9:e7:97:64:ed:8c:ac:fc:64:5a:aa:
d2:66:df:70:34:a1:10:e9:1e:d6:0f:49:93:f0:45:
82:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:4A:7B:CA:C2:A2:22:0B:7C:6D:90:AC:4D:84:B3:0E:C8:E0:7E:CE
X509v3 Authority Key Identifier:
keyid:F2:B1:DA:FC:45:58:82:42:BF:9A:E1:05:C9:1A:E8:83:A1:C4:03:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8rHa_EVYgkK_muEFyRrog6HEA7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/350f54-f50b-458e-ac8a-dd558da69bd7/1/9Up7ysKiIgt8bZCsTYSzDsjgfs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/350f54-f50b-458e-ac8a-dd558da69bd7/1/8rHa_EVYgkK_muEFyRrog6HEA7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:33:31:77:7e:09:50:ba:b9:72:2c:66:e3:2a:b6:17:01:81:
7f:18:85:5f:86:92:f7:2e:23:73:0e:b4:67:2b:40:18:96:80:
5f:45:62:d0:7f:c7:5b:ac:7e:64:3c:3e:c6:1a:5c:ac:b8:2e:
d4:2f:d9:4d:85:1f:ee:71:99:f5:24:0d:bc:89:41:70:b0:e8:
5a:2b:93:35:2b:ed:53:8d:dc:bf:11:de:39:fb:82:2d:5c:94:
9d:42:36:8c:ec:fb:f9:6b:96:9a:54:0d:0d:bc:bf:94:9e:92:
b1:c8:6b:86:0c:76:ec:46:30:13:97:ee:62:9e:11:cf:b7:0d:
ed:76:8f:36:83:e6:b4:30:e6:3b:49:a1:07:01:d9:5f:d7:e2:
75:42:02:fd:58:b8:4d:74:19:d2:dc:ee:70:a7:7a:4b:54:f7:
22:66:34:40:ca:a6:d5:b2:8e:67:4b:f5:a3:a5:18:53:16:47:
31:a4:83:ff:d4:cf:c7:5b:94:43:b4:15:01:d8:70:5d:e0:d6:
b3:15:d7:3c:08:02:30:4c:62:d3:f0:dc:1a:1b:90:32:eb:d5:
de:31:e7:a5:f5:68:f0:90:67:37:53:51:3e:58:df:0a:53:e2:
8c:06:66:ab:15:5d:06:b5:77:38:e8:59:34:30:fa:b7:78:ba:
99:90:eb:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:00 2023 by rpki-client on console-fra.rpki-client.org