Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/P9xwKhb2Ww-AejizTRZD1LRLA8Y.roa
File: P9xwKhb2Ww-AejizTRZD1LRLA8Y.roa (raw, json)
Hash identifier: 8RxpfLoj6LaNDvOq4Od0M4pCysgbSwGlIuAlenATjvs=
Subject key identifier: 3F:DC:70:2A:16:F6:5B:0F:80:7A:38:B3:4D:16:43:D4:B4:4B:03:C6
Certificate issuer: /CN=99a2c2ecf58c44b35a0da2957ff4dca2e60b686a
Certificate serial: 0D5BD826
Authority key identifier: 99:A2:C2:EC:F5:8C:44:B3:5A:0D:A2:95:7F:F4:DC:A2:E6:0B:68:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maLC7PWMRLNaDaKVf_TcouYLaGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/P9xwKhb2Ww-AejizTRZD1LRLA8Y.roa
Signing time: Sat 01 Jan 2022 02:54:01 +0000
ROA not before: Sat 01 Jan 2022 02:54:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8315
IP address blocks: 185.194.84.0/23 maxlen: 24
91.230.170.0/23 maxlen: 24
91.230.176.0/22 maxlen: 24
91.230.178.0/24 maxlen: 24
194.213.114.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 224122918 (0xd5bd826)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99a2c2ecf58c44b35a0da2957ff4dca2e60b686a
Validity
Not Before: Jan 1 02:54:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fdc702a16f65b0f807a38b34d1643d4b44b03c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1d:5f:16:df:2f:3b:61:ad:2a:45:85:7b:27:
8d:12:7e:05:5e:87:b6:f1:cf:e2:a8:e5:f4:79:30:
57:fb:d3:c2:87:b7:a6:ab:dc:dd:18:6e:df:45:cf:
54:74:05:d4:86:c5:6f:45:28:e5:fc:78:f7:6c:ac:
97:10:76:1d:2e:ca:ca:71:56:ca:a2:0b:7c:93:98:
f7:60:09:dd:21:33:07:89:17:11:56:7c:93:49:2c:
20:d7:97:15:2c:54:5b:45:dd:cd:87:2e:00:72:51:
06:b3:96:9d:af:d6:8f:0e:41:c6:b0:2b:3c:07:8d:
24:64:e0:13:8e:4f:a4:f0:bc:38:6f:cf:a4:fd:c2:
45:20:51:a2:e3:1d:5c:1d:ce:31:80:38:22:80:7b:
93:1c:b9:30:79:d9:52:a8:52:77:d6:b3:e3:08:61:
48:6e:c2:2c:11:99:ff:0b:6b:51:a8:6f:dd:52:c6:
79:ed:82:a9:b4:eb:98:d9:c3:ab:40:0a:0a:f4:42:
08:2b:1d:f8:34:2a:22:1b:4a:9e:fe:2b:5d:3c:0e:
c3:1d:ec:5b:1d:f8:09:b5:75:5b:31:4e:00:c4:69:
4f:87:1d:bd:68:c0:37:17:80:5e:5e:49:e0:96:9e:
18:8e:a9:9c:38:4b:5f:fe:cc:4c:67:4e:9c:6a:e9:
bf:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:DC:70:2A:16:F6:5B:0F:80:7A:38:B3:4D:16:43:D4:B4:4B:03:C6
X509v3 Authority Key Identifier:
keyid:99:A2:C2:EC:F5:8C:44:B3:5A:0D:A2:95:7F:F4:DC:A2:E6:0B:68:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maLC7PWMRLNaDaKVf_TcouYLaGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/P9xwKhb2Ww-AejizTRZD1LRLA8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/ba9674-e571-4e35-ab20-e5d507a826bf/1/maLC7PWMRLNaDaKVf_TcouYLaGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.170.0/23
91.230.176.0/22
185.194.84.0/23
194.213.114.0/23
Signature Algorithm: sha256WithRSAEncryption
82:01:57:64:8d:cc:ea:ea:65:f0:c8:ee:f5:52:91:da:2b:14:
39:98:9b:80:a3:23:26:94:60:2d:f5:5e:a8:ff:23:da:64:a7:
39:f2:c3:b4:95:e7:7f:d2:19:ca:e4:07:0a:9c:a7:05:7e:a5:
2e:0c:14:9d:dd:9b:87:68:5c:22:42:b9:79:9d:08:87:e6:9c:
88:c7:bb:ca:09:be:ba:76:12:43:0f:29:49:2c:1f:62:50:08:
2a:ac:ef:ae:63:a7:2c:cb:2c:2c:96:26:76:67:3f:34:a5:f5:
32:2e:99:09:d6:b1:c5:4a:cf:f9:b3:f6:22:dd:80:ce:91:f4:
d2:50:81:7f:90:08:79:94:63:ca:79:84:f2:43:c9:ba:3f:76:
c8:17:f1:9a:3b:d5:5a:98:91:77:8d:0b:ab:71:5a:d8:3c:65:
63:c3:7a:22:ff:60:1e:e8:79:e0:ba:b9:fb:e8:9c:8a:4c:94:
8e:98:75:52:69:01:80:86:ca:2c:87:3a:66:3d:d8:08:00:f6:
27:3c:35:15:10:6f:6e:74:06:50:3d:b8:3a:5c:80:f1:5b:15:
07:9c:4c:84:42:7d:a1:d4:5e:51:ed:c2:b9:55:9e:d3:a2:d6:
15:cc:16:89:85:b9:11:17:97:48:cc:a4:16:c4:44:71:2f:55:
f9:56:8c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:00 2024 by rpki-client on console-fra.rpki-client.org