Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f80dd4-f184-45a8-b58d-66517a3ac19d/1/SnbNV3wo4brui853cUvEk-51sGs.roa
File: SnbNV3wo4brui853cUvEk-51sGs.roa (raw, json)
Hash identifier: riGxVBqaYDgYHhhgdnSyMzbR4/ZLgx383/HUM0PWRTg=
Subject key identifier: 4A:76:CD:57:7C:28:E1:BA:EE:8B:CE:77:71:4B:C4:93:EE:75:B0:6B
Certificate issuer: /CN=d330dcad1e35324549c1c9a19417ab6a4d09ade0
Certificate serial: E25B
Authority key identifier: D3:30:DC:AD:1E:35:32:45:49:C1:C9:A1:94:17:AB:6A:4D:09:AD:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zDcrR41MkVJwcmhlBerak0JreA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f80dd4-f184-45a8-b58d-66517a3ac19d/1/SnbNV3wo4brui853cUvEk-51sGs.roa
Signing time: Mon 02 May 2022 12:16:17 +0000
ROA not before: Mon 02 May 2022 12:16:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51195
IP address blocks: 91.216.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57947 (0xe25b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d330dcad1e35324549c1c9a19417ab6a4d09ade0
Validity
Not Before: May 2 12:16:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a76cd577c28e1baee8bce77714bc493ee75b06b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:5b:0f:ea:a3:88:76:e0:e4:ae:e8:d7:ed:ba:
6a:26:38:bb:29:87:df:dc:c5:cf:6f:3b:2f:c0:6c:
e1:f5:9f:cf:68:63:81:6e:d0:b9:6c:56:24:c5:5b:
2e:36:98:17:df:2e:39:99:07:da:f7:ac:23:d5:29:
f2:c9:49:6e:3d:d1:ac:ef:3d:ae:27:91:ef:da:f6:
16:eb:d8:cc:b5:ee:8b:43:a7:ac:1a:f7:24:5e:6d:
36:a0:37:b5:34:a3:60:6d:d7:6d:e8:66:0e:9d:38:
97:1b:da:b6:81:86:fd:12:c6:12:4b:8d:ad:4f:b9:
d1:08:f5:f8:99:57:9c:f2:2a:b4:25:c9:f9:4b:6b:
08:17:a4:4a:a2:69:8d:39:01:50:24:8c:4c:38:58:
7a:a1:69:4c:6c:b7:04:c6:0a:25:12:61:37:db:0e:
c6:ef:2d:36:44:15:26:57:bb:84:34:d1:40:17:93:
70:3b:22:90:02:92:1c:fe:cc:26:e6:dd:ac:c1:02:
dc:da:51:cb:fa:dd:5c:10:98:f9:d6:47:d1:c0:d7:
b6:21:6e:20:56:d9:e2:64:61:74:db:df:76:c5:d1:
bf:08:7b:72:3c:3c:d6:0c:43:3a:99:92:64:fe:d6:
54:b0:9a:5d:83:31:8c:09:80:98:86:84:be:c5:0e:
d6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:76:CD:57:7C:28:E1:BA:EE:8B:CE:77:71:4B:C4:93:EE:75:B0:6B
X509v3 Authority Key Identifier:
keyid:D3:30:DC:AD:1E:35:32:45:49:C1:C9:A1:94:17:AB:6A:4D:09:AD:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zDcrR41MkVJwcmhlBerak0JreA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f80dd4-f184-45a8-b58d-66517a3ac19d/1/SnbNV3wo4brui853cUvEk-51sGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f80dd4-f184-45a8-b58d-66517a3ac19d/1/0zDcrR41MkVJwcmhlBerak0JreA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.199.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:9c:f7:09:7b:55:1e:f7:52:3c:79:87:e7:57:6e:2f:26:55:
74:1d:1c:0e:df:3b:f9:db:92:78:34:75:83:d4:95:4f:2a:35:
e4:8d:8a:03:cd:8a:18:ba:ae:59:fe:cf:d0:54:b4:72:c2:bf:
5a:a0:7f:ad:45:10:d9:98:31:cd:29:86:2e:04:41:39:46:0e:
be:db:b5:2d:a9:0c:b2:59:28:04:3a:bc:0b:86:1f:fa:93:10:
be:b9:14:4c:eb:68:98:a9:a9:9a:80:27:7e:65:6c:83:9c:48:
6e:6e:e7:10:7c:8a:79:46:bc:e7:ab:20:b8:eb:38:f7:a6:f8:
d2:e0:ee:b6:26:3a:7f:2b:7b:de:aa:b7:4c:f5:01:e1:96:f4:
1a:fa:71:13:f7:d7:1d:2f:aa:52:b1:51:90:5b:d0:6a:cb:b8:
1b:f1:02:43:7c:29:f4:d8:34:d0:7c:dc:45:b4:3b:5d:cc:37:
45:a0:b3:0e:74:46:23:4a:07:60:11:a9:6b:cc:81:83:fc:46:
44:f8:df:23:7c:12:dd:5c:2d:78:5e:df:57:5a:8b:f1:bc:ce:
52:3b:b0:47:ce:f3:87:c8:d4:be:9b:83:ca:05:16:64:ef:99:
9a:2d:cb:57:8c:a7:67:51:c2:b4:66:65:52:46:ac:c7:5f:ed:
8b:89:97:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:19 2023 by rpki-client on console-ams.rpki-client.org