Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a80963-3089-4ac4-af4f-3c8717414d80/1/fSi1XZs9pMkxncdAVh8dq_E3f3U.roa
File: fSi1XZs9pMkxncdAVh8dq_E3f3U.roa (raw, json)
Hash identifier: Xn54b3tFnwxUSGh9KgM/9nKQfMjFbnPAGVM6WvG+cGo=
Subject key identifier: 7D:28:B5:5D:9B:3D:A4:C9:31:9D:C7:40:56:1F:1D:AB:F1:37:7F:75
Certificate issuer: /CN=2213007596493802fb93a326731fd3329eae2dac
Certificate serial: 0A947635
Authority key identifier: 22:13:00:75:96:49:38:02:FB:93:A3:26:73:1F:D3:32:9E:AE:2D:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhMAdZZJOAL7k6Mmcx_TMp6uLaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a80963-3089-4ac4-af4f-3c8717414d80/1/fSi1XZs9pMkxncdAVh8dq_E3f3U.roa
Signing time: Sat 01 Jan 2022 09:06:28 +0000
ROA not before: Sat 01 Jan 2022 09:06:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58186
IP address blocks: 91.192.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177501749 (0xa947635)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2213007596493802fb93a326731fd3329eae2dac
Validity
Not Before: Jan 1 09:06:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d28b55d9b3da4c9319dc740561f1dabf1377f75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bf:b6:0f:73:72:c8:d6:b3:c7:79:4a:aa:19:
ef:0e:6d:2b:fd:99:91:ae:4d:28:28:d7:83:c9:9f:
65:82:0a:46:bc:79:58:6d:77:8f:41:9f:4e:74:f7:
01:95:0f:ac:38:af:a4:46:22:b4:51:3f:53:98:98:
cd:23:56:fd:31:16:89:db:05:d6:88:47:e3:93:aa:
7b:79:9e:1b:e5:7e:15:e5:cd:ca:35:d0:de:aa:3b:
9e:fb:b6:41:97:a4:86:19:31:01:dd:bc:2a:02:3f:
f7:14:cc:57:5d:1f:21:09:eb:37:a5:d1:cc:e0:ad:
6c:78:8c:76:07:b1:19:e6:ec:22:b5:ad:7e:08:11:
d3:45:7a:36:e5:85:af:a9:d5:63:f4:b4:f0:83:4d:
12:4b:82:4d:c5:f8:63:f1:93:fc:48:a6:63:25:08:
ac:9f:61:72:6d:5e:a0:df:a6:19:e0:34:74:07:f9:
bf:84:9a:13:6e:19:04:18:a7:f8:2f:8b:93:a6:dd:
99:1f:a2:ae:d8:b3:b0:d1:a7:57:1f:d5:90:b5:f0:
58:95:a1:7e:0a:c1:aa:2c:53:3c:b3:ed:a3:72:09:
c2:21:a6:b0:9e:9c:3b:11:e0:c5:68:d2:ee:77:ba:
30:c4:ce:d2:a7:a9:ad:c5:64:7e:bf:64:32:90:52:
7d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:28:B5:5D:9B:3D:A4:C9:31:9D:C7:40:56:1F:1D:AB:F1:37:7F:75
X509v3 Authority Key Identifier:
keyid:22:13:00:75:96:49:38:02:FB:93:A3:26:73:1F:D3:32:9E:AE:2D:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhMAdZZJOAL7k6Mmcx_TMp6uLaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a80963-3089-4ac4-af4f-3c8717414d80/1/fSi1XZs9pMkxncdAVh8dq_E3f3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a80963-3089-4ac4-af4f-3c8717414d80/1/IhMAdZZJOAL7k6Mmcx_TMp6uLaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.226.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:44:31:81:42:1a:8d:fc:f7:c0:91:aa:78:33:e1:e7:2a:94:
2a:88:6f:e7:d3:f7:61:01:bc:5f:4c:3c:74:5c:33:a3:57:97:
c1:14:08:3e:df:9d:f0:f4:5a:12:39:6b:02:4f:1b:2e:d1:a9:
97:80:a3:c7:3d:4f:92:5a:01:a1:3b:2f:11:4a:92:03:0d:6c:
89:1b:ad:48:33:ab:c4:ee:51:f8:62:e5:34:63:37:2f:fb:61:
d8:98:51:6b:0a:34:64:fc:fa:a3:6e:0e:91:9e:33:39:32:9b:
03:70:45:17:ca:31:f5:ec:a3:fb:56:ca:dc:38:16:88:59:10:
0b:37:63:cd:14:6c:d0:ea:08:38:75:18:3d:47:c9:4d:74:63:
a2:2f:2b:da:35:98:6f:d7:11:a9:00:40:91:d4:3e:a0:5a:6a:
85:f8:b9:c3:5e:40:b6:a5:88:31:cf:4d:ac:95:1b:74:be:51:
df:d1:f7:e5:b5:bf:0b:7e:9c:5b:77:ca:fc:bd:93:c8:76:9b:
30:31:30:0a:49:3c:44:01:a1:d6:c9:dd:78:47:fe:69:a7:7e:
63:bc:63:28:fc:6c:0c:90:58:d3:06:a5:03:05:bc:3c:f7:a0:
21:df:95:1b:59:61:80:eb:c2:47:f1:63:88:03:27:75:34:1e:
69:b5:c9:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:34 2023 by rpki-client on console-fra.rpki-client.org