Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/CoplsVlY2HMMpZo9YZfmJYAl83U.roa
File: CoplsVlY2HMMpZo9YZfmJYAl83U.roa (raw, json)
Hash identifier: x6TBMYsmpD5w1sZNR/BEuHIdGUnp/MOa3jgOpOFjJ6Y=
Subject key identifier: 0A:8A:65:B1:59:58:D8:73:0C:A5:9A:3D:61:97:E6:25:80:25:F3:75
Certificate issuer: /CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Certificate serial: 01835F06470F3D6C42B0BFDC0E2285899930
Authority key identifier: 1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/CoplsVlY2HMMpZo9YZfmJYAl83U.roa
Signing time: Wed 21 Sep 2022 07:49:50 +0000
ROA not before: Wed 21 Sep 2022 07:49:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 91.207.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5f:06:47:0f:3d:6c:42:b0:bf:dc:0e:22:85:89:99:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Validity
Not Before: Sep 21 07:49:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a8a65b15958d8730ca59a3d6197e6258025f375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:44:46:26:cd:13:b6:f2:9c:2c:d7:56:be:0f:
0d:cb:29:c5:b0:9d:52:77:2f:23:a7:c9:28:aa:59:
9f:2e:dd:0d:53:8b:62:51:1f:4c:5a:61:41:b7:b9:
87:28:08:98:86:3a:f8:24:e3:5a:18:8a:6a:3b:77:
ff:8a:c4:4f:2b:cd:43:59:9b:64:60:5a:2f:5a:27:
f8:e8:eb:13:6f:f7:e9:7a:73:5f:77:d5:88:88:95:
5a:f5:e8:ef:89:ae:14:42:32:8f:eb:7f:ea:de:38:
97:45:fb:c7:1b:37:c3:59:03:70:f0:0d:f9:8e:a6:
51:9e:e3:42:a6:de:70:e8:5a:5c:26:c1:c3:8d:8b:
c5:ad:a2:0a:e3:bb:ad:13:7a:49:1b:0b:2a:a6:dd:
65:d7:92:aa:e8:be:b3:29:2d:a6:d2:a7:fe:36:22:
58:35:97:8e:a9:7b:29:20:3f:8d:72:a6:d7:2c:87:
50:af:4d:bd:ff:fe:94:a6:89:de:e2:52:1c:1c:67:
58:2f:80:a1:48:4d:a4:68:c4:b0:c6:2e:cb:9f:9a:
3c:29:1b:11:37:37:2b:f9:c7:ce:2c:da:b3:1d:4b:
cc:c5:d5:ed:2d:0f:c9:aa:86:bc:39:87:14:fd:ec:
44:09:59:6e:a5:45:a7:de:7b:5a:55:98:97:63:55:
2b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:8A:65:B1:59:58:D8:73:0C:A5:9A:3D:61:97:E6:25:80:25:F3:75
X509v3 Authority Key Identifier:
keyid:1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/CoplsVlY2HMMpZo9YZfmJYAl83U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/HFGW3tW6XWhucJXG1cY4xrj4uto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.1.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:f5:2f:c9:3f:69:5a:30:00:f6:1c:9c:39:4d:b6:f9:95:01:
c6:c9:2a:31:4f:05:ac:0c:d9:be:72:4f:67:0b:29:fd:67:df:
6b:e7:67:d9:87:c1:03:12:61:b6:b7:36:67:bf:fb:8d:a8:b8:
20:53:09:91:59:e9:28:47:f5:11:ec:72:2d:9f:b1:3f:f2:ae:
1a:9c:68:7d:40:a8:cb:1c:5a:14:dc:56:e7:d3:48:11:04:71:
31:c0:7d:5e:5b:8d:38:40:2d:c7:a0:4f:e8:a4:13:fd:57:5c:
40:c9:5d:52:8a:1e:f3:66:4d:ee:e6:d6:c2:45:13:a0:a7:b7:
7b:ef:28:4f:d8:f1:e0:a7:7d:28:e2:71:80:8e:52:1c:51:0b:
76:05:cc:31:c2:45:48:7e:7d:66:e6:ff:5b:32:d7:08:a3:b6:
f9:f7:6d:20:f8:6e:88:8a:11:a0:72:99:cb:60:3a:4c:0d:26:
d9:91:0d:c5:b4:b6:e4:fd:ca:30:3e:78:92:e2:34:37:dc:8d:
8c:a9:23:ba:bc:90:d8:f7:4d:e5:f3:e6:e0:54:71:91:6d:6f:
80:ba:16:c8:7b:8a:b2:fe:dc:cc:16:92:4b:e9:80:fd:ea:a4:
fa:4b:74:bd:20:30:38:1d:89:25:97:05:10:ec:f5:f6:f9:a4:
b6:54:2a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:39 2023 by rpki-client on console-ams.rpki-client.org