Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/273bHBnVyeFzvwrpOhbyUnAYhzY.roa
File: 273bHBnVyeFzvwrpOhbyUnAYhzY.roa (raw, json)
Hash identifier: uKIAbf+5Mg/gj7gntrHcS7177QITUUlbq44YQdgC734=
Subject key identifier: DB:BD:DB:1C:19:D5:C9:E1:73:BF:0A:E9:3A:16:F2:52:70:18:87:36
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 0C46B556
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/273bHBnVyeFzvwrpOhbyUnAYhzY.roa
Signing time: Wed 01 Jun 2022 07:53:20 +0000
ROA not before: Wed 01 Jun 2022 07:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211694
IP address blocks: 91.229.132.0/24 maxlen: 24
91.229.132.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 205960534 (0xc46b556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jun 1 07:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbbddb1c19d5c9e173bf0ae93a16f25270188736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:85:b4:25:da:b0:45:d3:df:48:84:eb:b2:a6:
77:a5:56:ed:6e:92:c7:35:9e:2f:d7:96:ac:ed:e4:
bd:b2:2d:43:8d:87:1f:8f:26:0a:88:f7:4a:3b:5e:
9c:f1:e2:5d:d3:94:34:54:23:3a:cf:4b:ff:d4:44:
85:0e:c4:cf:a3:f9:45:1e:5d:73:94:9c:21:f5:ab:
e0:3e:bb:2f:63:60:13:3a:1b:b0:6b:f1:05:77:09:
8d:b7:1d:6e:6c:22:43:ec:4e:60:cb:b2:f3:47:3d:
29:90:bf:ec:f2:69:48:3f:62:49:4e:42:30:e5:51:
58:70:6e:76:ab:41:f7:7b:bb:be:b8:02:81:77:f8:
86:bc:89:89:f4:92:07:d9:d4:9e:00:71:07:fc:82:
3e:bf:18:fa:7e:70:26:1a:12:e5:52:49:2e:cd:80:
25:92:a1:df:b4:98:78:95:97:29:2a:46:99:6c:82:
04:43:20:f5:71:ed:92:64:4f:02:54:20:b4:1c:d5:
28:83:c9:9d:0b:2f:1a:16:38:5a:9e:5d:64:d3:d1:
a0:41:c0:ca:f7:68:35:42:93:53:34:72:06:8d:96:
92:75:9b:7a:22:e8:fc:1a:4f:46:95:18:af:9d:11:
2f:68:d3:ce:14:82:f0:13:79:a8:5a:71:67:ab:e3:
d2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BD:DB:1C:19:D5:C9:E1:73:BF:0A:E9:3A:16:F2:52:70:18:87:36
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/273bHBnVyeFzvwrpOhbyUnAYhzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.132.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:eb:56:5d:f1:ae:86:1f:4b:0f:95:93:9b:ee:bd:3e:19:de:
31:4d:2d:ca:2e:04:f1:da:38:31:8c:18:2d:dc:c0:de:04:1e:
48:b0:3c:14:5f:45:a7:3c:df:b4:05:de:a0:0b:5e:f8:0e:47:
85:59:46:8b:3c:f5:82:1d:6b:aa:9c:e7:32:a6:bb:b7:3d:8d:
19:b8:6e:cc:9b:96:93:e4:46:53:44:8e:c2:c0:9d:43:57:3e:
c1:d6:73:cf:16:2a:06:69:57:5b:f9:d9:cc:dd:42:37:40:3c:
41:0d:74:bc:66:d2:1d:4e:03:34:9e:8d:16:43:98:fc:5a:95:
49:46:5a:36:56:5e:8c:ee:da:08:87:27:ec:73:45:fd:d7:2f:
af:66:90:30:8f:1f:70:78:4e:5c:c0:c1:f7:ca:3e:0f:b8:9a:
70:12:19:07:35:a4:46:f6:61:b1:26:ef:92:a5:a0:16:13:42:
36:6d:e0:99:98:3e:5c:a6:e9:18:b5:05:5d:44:0d:4b:d6:37:
95:94:c5:b0:d3:b5:09:b5:1e:59:d8:ef:c9:e5:1e:19:4d:3a:
2c:56:49:da:dd:bf:91:ff:90:0c:5a:ac:9e:fe:ea:d8:4f:68:
c0:4e:36:b5:6e:5a:68:e6:c7:9b:a5:f8:f0:99:1f:45:e9:af:
52:03:8f:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org