Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/b0da06-1ba7-49f0-a569-909fe7c80d98/1/hfJ_zgTpGHrM2uzUgD1UApsdnro.roa
File: hfJ_zgTpGHrM2uzUgD1UApsdnro.roa (raw, json)
Hash identifier: mlVWUKga+3Y2NDRBpwT4nj6v2wEqp+44yZIpWmjBH1o=
Subject key identifier: 85:F2:7F:CE:04:E9:18:7A:CC:DA:EC:D4:80:3D:54:02:9B:1D:9E:BA
Certificate issuer: /CN=294bfb4ac4886011f06d9dc4efd45533264ed788
Certificate serial: 015E39C3
Authority key identifier: 29:4B:FB:4A:C4:88:60:11:F0:6D:9D:C4:EF:D4:55:33:26:4E:D7:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUv7SsSIYBHwbZ3E79RVMyZO14g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/b0da06-1ba7-49f0-a569-909fe7c80d98/1/hfJ_zgTpGHrM2uzUgD1UApsdnro.roa
Signing time: Sat 01 Jan 2022 14:07:15 +0000
ROA not before: Sat 01 Jan 2022 14:07:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44615
IP address blocks: 91.202.64.0/24 maxlen: 24
91.202.67.0/24 maxlen: 24
91.202.66.0/24 maxlen: 24
91.202.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22952387 (0x15e39c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=294bfb4ac4886011f06d9dc4efd45533264ed788
Validity
Not Before: Jan 1 14:07:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85f27fce04e9187accdaecd4803d54029b1d9eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ac:35:95:e5:00:47:a4:4e:d8:f9:99:4e:7e:
24:55:72:d0:fb:f2:7f:a0:60:df:28:df:fd:1d:e8:
29:f6:09:d3:dc:2d:ab:f5:35:62:62:7a:54:31:d7:
ab:26:6f:7b:2a:d4:4f:a6:23:c6:e4:64:24:a3:51:
d4:30:0b:88:fe:1c:b4:26:04:9a:55:3b:50:07:01:
3c:a2:e1:e9:c6:1f:12:97:21:14:61:0d:9b:09:52:
0b:67:bc:e1:4f:43:35:68:14:a2:26:28:fe:f2:4a:
61:e1:ad:da:60:df:6f:08:60:b5:a7:ef:1b:d3:d2:
44:2e:52:ac:2f:da:6c:eb:77:7e:83:1b:49:c3:42:
84:76:15:de:58:2a:b7:01:4b:c1:77:62:f7:e5:bc:
10:c8:c8:b4:57:45:35:e3:04:a8:21:d4:3b:6c:1e:
39:a5:90:94:22:d3:d9:ce:03:07:25:f2:22:57:b4:
b1:39:47:d1:a8:2a:c2:de:5f:55:95:f0:a7:f8:36:
db:34:bb:ff:b1:75:94:67:0d:03:3a:cf:71:43:46:
14:7f:3a:49:43:19:9b:21:0e:ef:07:2c:67:39:61:
e0:06:db:69:9b:04:b3:67:c7:79:bb:c2:30:3f:d2:
7d:0d:bd:92:9c:bd:36:96:bd:4f:d5:06:c6:71:c1:
9e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F2:7F:CE:04:E9:18:7A:CC:DA:EC:D4:80:3D:54:02:9B:1D:9E:BA
X509v3 Authority Key Identifier:
keyid:29:4B:FB:4A:C4:88:60:11:F0:6D:9D:C4:EF:D4:55:33:26:4E:D7:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUv7SsSIYBHwbZ3E79RVMyZO14g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/b0da06-1ba7-49f0-a569-909fe7c80d98/1/hfJ_zgTpGHrM2uzUgD1UApsdnro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/b0da06-1ba7-49f0-a569-909fe7c80d98/1/KUv7SsSIYBHwbZ3E79RVMyZO14g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.64.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:88:85:7a:41:fc:42:db:d9:d4:05:be:a8:a9:57:84:d0:cb:
b6:b5:84:12:37:ea:08:78:e4:fd:9d:04:2c:37:d5:0d:32:1f:
4e:b2:ca:32:a7:d1:1b:25:ee:e1:70:6d:34:b9:d0:a2:ec:41:
25:9c:7a:79:ca:a1:bb:67:ff:63:7b:fb:92:9d:a6:6b:ad:b7:
92:ff:5f:76:b2:7d:07:16:7a:e9:f1:03:f0:75:b9:63:c2:61:
c2:4c:51:70:ec:28:d9:20:19:a6:6c:99:48:c5:ef:f6:a5:ba:
c1:48:a5:d4:d9:9f:67:cf:11:38:fc:fe:b1:c0:2b:a7:07:94:
4a:ba:34:34:15:51:cb:e1:3b:a6:32:37:cf:31:32:ed:8e:9a:
e7:ae:f4:26:66:80:dd:f2:b4:d1:ce:d5:3d:a8:fa:84:a7:82:
9a:27:8b:94:37:ae:35:b7:19:5e:df:2c:3e:d6:c5:5c:d0:5b:
3e:a9:f7:f2:db:24:69:70:f6:b2:32:24:68:42:92:ac:2a:ab:
79:bb:49:d2:c1:fb:6b:65:a3:68:0e:3d:9a:fc:46:8c:ae:b8:
d4:bc:fc:f4:e4:44:12:57:a5:6e:f1:f8:23:b0:81:f3:8d:b0:
62:f7:f9:3f:71:a9:5a:1a:86:21:00:50:0b:7a:a3:61:82:c3:
19:6a:58:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:03 2024 by rpki-client on console-ams.rpki-client.org