Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/nwUET7loj_d7lwz1xG0Go2nq7Fk.roa
File: nwUET7loj_d7lwz1xG0Go2nq7Fk.roa (raw, json)
Hash identifier: geBOP5HCDgRgsyHVzmTBXEuJsZ82STGaj6qrRkLDPPo=
Subject key identifier: 9F:05:04:4F:B9:68:8F:F7:7B:97:0C:F5:C4:6D:06:A3:69:EA:EC:59
Certificate issuer: /CN=9520bf8c77226a3fa88ebe11cc8f1169cc560a79
Certificate serial: 7F65
Authority key identifier: 95:20:BF:8C:77:22:6A:3F:A8:8E:BE:11:CC:8F:11:69:CC:56:0A:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/nwUET7loj_d7lwz1xG0Go2nq7Fk.roa
Signing time: Sat 09 Apr 2022 11:27:28 +0000
ROA not before: Sat 09 Apr 2022 11:27:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57265
IP address blocks: 91.216.41.0/24 maxlen: 24
2001:678:71c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32613 (0x7f65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9520bf8c77226a3fa88ebe11cc8f1169cc560a79
Validity
Not Before: Apr 9 11:27:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f05044fb9688ff77b970cf5c46d06a369eaec59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4b:41:2c:31:04:11:d8:df:01:7f:7a:90:25:
ab:4d:9a:d9:a8:a7:9f:f8:de:d2:48:08:4a:63:c1:
ea:aa:15:cd:0d:4f:03:41:47:48:6b:87:f7:e9:88:
c4:52:d5:b2:25:f5:0b:6f:45:db:32:6d:01:5e:d5:
19:45:4b:d5:18:16:24:c7:2a:2d:9c:43:ed:45:b3:
d9:e3:0b:58:8a:d5:53:54:15:da:d9:7c:9a:b3:ab:
bf:7d:31:a6:96:40:99:cb:9c:69:07:04:fd:41:0c:
2d:d7:6c:66:31:1e:75:dc:f1:05:9b:17:e9:4c:37:
0c:6d:1a:8f:ef:9a:d8:cf:e1:ba:7a:50:cd:35:27:
a7:c7:52:f0:19:14:20:db:99:c6:80:f1:19:03:ab:
a2:a0:0a:e3:77:7b:77:04:02:af:0b:b9:d1:e4:ee:
15:3d:2d:18:3f:7e:71:07:40:6e:09:e6:f1:76:07:
56:a9:66:84:79:ca:72:d5:df:8b:73:92:84:cb:87:
9d:9e:47:2c:e9:dd:b9:40:6f:2a:11:c0:e8:85:2f:
b1:c6:99:b4:2d:cc:60:20:93:71:59:d4:ea:20:66:
11:0f:33:f4:19:22:5a:e0:6a:5c:d7:dd:73:d6:e7:
bb:34:2a:2f:b3:dc:e1:79:3c:d7:00:fc:b9:fa:6e:
5e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:05:04:4F:B9:68:8F:F7:7B:97:0C:F5:C4:6D:06:A3:69:EA:EC:59
X509v3 Authority Key Identifier:
keyid:95:20:BF:8C:77:22:6A:3F:A8:8E:BE:11:CC:8F:11:69:CC:56:0A:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lSC_jHciaj-ojr4RzI8RacxWCnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/nwUET7loj_d7lwz1xG0Go2nq7Fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f09a7f-5761-45a7-9ccb-1f3ed6d881b8/1/lSC_jHciaj-ojr4RzI8RacxWCnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.41.0/24
IPv6:
2001:678:71c::/48
Signature Algorithm: sha256WithRSAEncryption
86:3a:d8:45:d1:32:a4:e5:92:c1:69:0c:3b:39:77:16:ef:53:
87:e3:19:63:1e:80:fe:f1:0b:9f:44:d6:f9:1b:60:3a:ca:44:
58:08:49:72:4f:19:68:e8:e5:61:06:37:fa:88:ee:3e:51:8c:
01:13:a6:47:1b:a3:28:bc:cb:3e:d5:61:9a:c4:9b:49:82:c7:
53:f0:b5:33:cd:e0:5d:7e:ea:f8:c0:e9:d0:d6:17:3f:76:3e:
c1:79:05:fc:6c:c0:eb:04:22:3e:96:8c:e3:2a:c1:db:b5:98:
2b:71:3e:9b:eb:de:d7:a4:b0:39:ad:8b:b1:3d:c9:39:3b:8f:
b5:9a:04:24:8b:7e:7c:87:e9:73:37:44:69:b2:0c:03:9e:c7:
14:9c:b6:2a:31:5a:2a:28:a2:2a:b9:ad:f4:fc:20:de:67:8f:
68:f1:01:e0:5c:e3:f3:92:73:c5:20:67:0d:5e:09:55:a2:fd:
4e:f9:07:39:da:46:d1:54:f3:fa:d8:47:04:dd:fb:ce:40:f3:
0f:7c:f3:84:03:0b:fe:8b:bf:5d:5e:8c:bf:fc:72:db:e6:6c:
32:d3:b2:22:be:b7:c2:57:2d:70:90:2d:ae:ac:29:f9:cf:3c:
3d:9d:30:c5:89:1c:50:0b:fa:38:2a:a2:10:87:99:ca:fb:f6:
79:90:87:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:40 2024 by rpki-client on console-ams.rpki-client.org