Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/yOHb83ke1JCMrR3ZPVSm9e3Qxxs.roa
File: yOHb83ke1JCMrR3ZPVSm9e3Qxxs.roa (raw, json)
Hash identifier: F9b1vQ2STJCRqUOofHzgDawdua4B/Pp7Zkhr9STgTQo=
Subject key identifier: C8:E1:DB:F3:79:1E:D4:90:8C:AD:1D:D9:3D:54:A6:F5:ED:D0:C7:1B
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 018382B735D271F7AAAA18157AB8622E2BCE
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/yOHb83ke1JCMrR3ZPVSm9e3Qxxs.roa
Signing time: Wed 28 Sep 2022 06:09:48 +0000
ROA not before: Wed 28 Sep 2022 06:09:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136258
IP address blocks: 91.148.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:82:b7:35:d2:71:f7:aa:aa:18:15:7a:b8:62:2e:2b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Sep 28 06:09:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8e1dbf3791ed4908cad1dd93d54a6f5edd0c71b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:66:6c:19:90:cf:85:52:99:1c:6a:fd:59:5e:
b3:d9:83:ff:4c:63:80:77:f2:85:fd:c7:eb:d7:c8:
54:27:a2:2f:e0:d6:0f:11:19:1f:ca:b5:ae:96:e7:
4b:93:dc:5e:69:c0:6e:d5:b9:78:09:6b:66:a8:fe:
35:49:47:c5:7b:35:0f:d0:59:11:a9:19:49:ba:fb:
f1:26:f7:28:17:9b:97:b2:77:fb:e6:60:b9:ea:c2:
dc:17:f4:b1:98:62:87:a7:d9:d7:fb:ad:e2:3b:3a:
e3:35:13:05:fb:a4:b3:8f:52:3b:e8:5d:14:c7:60:
fb:bc:ba:1e:7a:55:cb:3b:b4:55:f9:eb:b0:6b:58:
1f:89:e7:95:e3:c5:fd:18:68:27:6c:b3:38:49:56:
40:13:31:e4:2e:00:48:42:ed:54:bb:3d:e8:92:0b:
b6:e5:15:a0:be:a4:d3:55:88:f2:68:b5:72:e8:f5:
c7:3a:8b:1d:86:5d:30:5e:e6:64:8e:82:8c:b0:69:
88:93:04:a6:e8:7f:00:f4:f6:a5:ce:2d:29:67:59:
12:d5:66:57:cd:3e:82:10:b8:94:09:71:41:7c:2e:
99:28:cf:5c:bb:20:39:4f:68:25:31:d4:85:fc:04:
d1:a0:c5:f2:de:1b:d4:e1:2a:5d:43:4d:c1:39:72:
b4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E1:DB:F3:79:1E:D4:90:8C:AD:1D:D9:3D:54:A6:F5:ED:D0:C7:1B
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/yOHb83ke1JCMrR3ZPVSm9e3Qxxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.148.134.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:40:e2:e6:98:a0:15:f1:33:0b:1e:16:71:5c:b4:a1:66:40:
47:08:f6:c3:dc:3b:e4:c3:fa:2d:85:38:42:44:22:4f:be:97:
47:c1:0b:9a:ef:d1:7d:62:c0:83:8b:66:ae:ff:5d:cc:b2:60:
3f:29:9f:15:a6:fb:24:4b:09:b5:fb:ce:a3:75:5a:eb:8f:65:
44:e2:a6:5e:59:e5:92:97:32:9e:63:08:7a:e1:84:a1:11:63:
68:02:04:97:cd:4a:27:a3:f4:ba:27:c9:d3:f4:d5:b5:7a:1f:
ad:d7:04:84:c1:b4:46:a2:8d:1b:af:c9:3a:02:bf:b0:b3:58:
41:a5:bc:74:cc:38:a0:a9:4c:64:bf:05:70:8f:8c:73:0f:41:
d0:cc:36:84:1d:ba:a9:a3:e5:52:3d:b4:e0:74:c9:92:d4:9e:
0e:0a:9f:f7:d3:30:f6:d7:02:96:b5:49:f7:85:49:b0:1d:5c:
84:d1:c3:f5:b1:fb:e3:3d:b0:c8:17:e2:ef:3e:05:63:e7:45:
10:67:80:df:0c:8a:b6:22:94:b8:3b:12:69:77:0b:15:88:29:
f8:67:cc:ea:9e:94:4d:26:f7:9b:58:6c:87:17:f2:fe:55:b4:
e2:a0:5c:8c:82:d9:4d:67:23:69:5f:87:79:b0:b5:a8:cf:e9:
b4:a8:44:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-ams.rpki-client.org