Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/f6iC0wI8BjBWauxA6iX2ystV0I4.roa
File: f6iC0wI8BjBWauxA6iX2ystV0I4.roa (raw, json)
Hash identifier: wzPVIRS2NHAFeuex/Ul23jOI4MWH+5PggtzgfwbUIQ0=
Subject key identifier: 7F:A8:82:D3:02:3C:06:30:56:6A:EC:40:EA:25:F6:CA:CB:55:D0:8E
Certificate issuer: /CN=90620638ca1d835650e08ddcf363f10789b53057
Certificate serial: 22AFC61E
Authority key identifier: 90:62:06:38:CA:1D:83:56:50:E0:8D:DC:F3:63:F1:07:89:B5:30:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGIGOModg1ZQ4I3c82PxB4m1MFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/f6iC0wI8BjBWauxA6iX2ystV0I4.roa
Signing time: Sat 01 Jan 2022 12:03:06 +0000
ROA not before: Sat 01 Jan 2022 12:03:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56440
IP address blocks: 91.224.158.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 581944862 (0x22afc61e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90620638ca1d835650e08ddcf363f10789b53057
Validity
Not Before: Jan 1 12:03:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7fa882d3023c0630566aec40ea25f6cacb55d08e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cb:9e:1d:93:f4:17:1f:1d:86:c8:26:2d:fc:
6a:ca:3b:ad:c6:38:f6:86:5c:3e:a7:6d:1c:25:aa:
99:4a:91:57:eb:95:d3:45:7a:86:7c:05:69:c9:62:
cd:05:0c:65:ee:ec:7d:3f:02:06:16:7a:04:b0:18:
00:97:67:41:9e:8e:bd:51:f9:2e:92:19:1d:c6:41:
f2:5e:d7:b9:bd:f3:ee:ca:06:49:ea:7b:1b:d7:65:
c7:77:02:65:77:83:4d:de:49:7b:dc:cb:ce:27:37:
ee:33:9f:cf:60:34:85:66:48:29:78:06:6a:79:fe:
e8:90:e1:55:81:d0:d3:fe:c3:a5:c8:33:0e:6d:ba:
f5:d3:12:ee:be:e7:be:17:9c:3a:80:85:8d:14:11:
96:5b:bf:e2:67:5f:cc:9a:46:01:23:12:83:8a:a7:
24:68:6b:ba:21:bf:1b:98:fa:f2:00:66:82:e3:3a:
75:fc:9f:7e:89:b8:49:52:d3:80:57:34:c8:8c:2b:
a0:3e:1e:51:b4:ff:c4:80:a8:a1:26:cc:3d:33:aa:
42:53:eb:ed:a8:1b:fe:43:e1:e3:08:2f:ed:03:27:
e2:22:3b:a4:d9:db:a3:12:83:cc:7c:6d:86:27:d7:
ea:69:63:42:f3:b9:e9:a2:00:5e:39:89:28:a3:27:
e4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:A8:82:D3:02:3C:06:30:56:6A:EC:40:EA:25:F6:CA:CB:55:D0:8E
X509v3 Authority Key Identifier:
keyid:90:62:06:38:CA:1D:83:56:50:E0:8D:DC:F3:63:F1:07:89:B5:30:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGIGOModg1ZQ4I3c82PxB4m1MFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/f6iC0wI8BjBWauxA6iX2ystV0I4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/41af2d-f3de-45d5-941c-c43ac429e53f/1/kGIGOModg1ZQ4I3c82PxB4m1MFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.158.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:9b:e3:40:b0:36:79:8e:7f:ed:28:4a:57:9b:38:55:b8:5f:
2d:b4:d5:36:cd:bf:26:8e:8c:6d:8d:e3:3a:cc:1a:6f:26:a5:
38:fe:d7:35:16:06:ed:2f:de:60:52:e2:a0:fe:71:79:07:2d:
e9:25:85:33:7b:d5:5d:f1:b5:b0:37:c0:88:ae:50:c8:70:e4:
90:e4:24:88:6e:f8:03:44:d0:6e:75:d2:ee:cf:d9:ae:93:82:
c8:b8:78:5a:73:86:82:e7:c8:b5:91:5d:f4:81:20:6f:44:6f:
42:d0:93:b7:53:fb:4d:a3:ba:2d:22:14:94:4c:a4:e0:0c:84:
15:42:7b:fe:db:31:e9:b5:65:69:ac:37:eb:51:d5:af:88:fe:
85:8b:fb:a3:4c:90:de:c2:ff:67:31:60:98:a3:f0:16:1c:1f:
be:04:24:59:d8:3e:b2:6c:9e:33:6b:79:2d:2a:7b:84:e7:30:
6a:be:56:c3:46:b9:ae:ac:ab:ee:4c:0c:b7:e5:8e:55:9e:d3:
ec:95:f8:84:b1:5f:65:d8:e4:3a:1a:ac:92:50:86:3b:ad:0d:
49:48:d6:e3:64:b8:1f:59:2e:b5:f8:7c:ed:c2:8a:5c:47:ee:
6f:21:76:02:09:1a:1a:ad:76:4b:cd:e9:4c:f7:cf:4b:56:7b:
77:00:a2:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:45 2024 by rpki-client on console-ams.rpki-client.org