Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/76d082-ac32-4738-99e6-b2f6086368c7/1/TDT_sD-v4uzqrwMNIQye4XJF4EY.roa
File: TDT_sD-v4uzqrwMNIQye4XJF4EY.roa (raw, json)
Hash identifier: IwU2yPCxai2W1c4EIDsy6/vC5urKUvJf/5rAsGF2yhM=
Subject key identifier: 4C:34:FF:B0:3F:AF:E2:EC:EA:AF:03:0D:21:0C:9E:E1:72:45:E0:46
Certificate issuer: /CN=0bd4ad95f17f397207a3fc0d186f2913df38eb93
Certificate serial: 03A83DBD
Authority key identifier: 0B:D4:AD:95:F1:7F:39:72:07:A3:FC:0D:18:6F:29:13:DF:38:EB:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C9StlfF_OXIHo_wNGG8pE98465M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/76d082-ac32-4738-99e6-b2f6086368c7/1/TDT_sD-v4uzqrwMNIQye4XJF4EY.roa
Signing time: Sat 01 Jan 2022 16:02:35 +0000
ROA not before: Sat 01 Jan 2022 16:02:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48440
IP address blocks: 91.210.188.0/24 maxlen: 24
91.210.188.0/22 maxlen: 22
91.210.191.0/24 maxlen: 24
91.210.190.0/24 maxlen: 24
91.210.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61357501 (0x3a83dbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bd4ad95f17f397207a3fc0d186f2913df38eb93
Validity
Not Before: Jan 1 16:02:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c34ffb03fafe2eceaaf030d210c9ee17245e046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:79:66:63:93:f3:62:d2:96:a9:c9:c9:10:9b:
16:be:59:3d:a4:8d:57:41:03:48:79:36:5d:f2:f8:
68:be:d8:ef:3a:a6:92:9b:9c:20:81:3a:dc:be:33:
16:be:92:4c:ec:71:13:ce:19:86:61:a8:13:79:8f:
94:e5:7b:42:bb:92:ab:ed:cf:39:96:a9:ed:f9:60:
4a:74:e9:6b:90:21:82:93:d5:0c:a3:d6:2a:a7:72:
a1:ec:a2:24:75:17:c4:a8:63:fb:16:10:f1:af:71:
93:86:fc:af:25:0b:6b:16:c4:ff:9f:c0:37:18:29:
b6:c7:cb:b7:7b:07:db:96:6b:4b:38:b2:27:85:ca:
64:dc:af:f8:53:0e:4b:80:1b:d3:03:d9:d2:15:35:
50:df:9e:9d:21:e1:e2:05:52:bf:aa:7f:7a:44:e4:
44:35:2d:a4:40:e7:7a:31:74:da:d3:b2:c8:e0:f3:
cc:9d:80:df:37:0d:89:f2:f5:d0:fd:30:79:97:f4:
24:b6:4c:11:91:3f:f5:ac:6c:14:ad:c3:0c:ca:2a:
f5:68:0f:03:8b:cb:da:cb:a8:1e:77:0e:9f:24:c2:
0e:47:1a:33:46:0e:40:a4:05:51:73:76:af:2c:6e:
b6:e6:1b:26:9f:6a:bd:fa:58:3e:56:69:df:2a:72:
73:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:34:FF:B0:3F:AF:E2:EC:EA:AF:03:0D:21:0C:9E:E1:72:45:E0:46
X509v3 Authority Key Identifier:
keyid:0B:D4:AD:95:F1:7F:39:72:07:A3:FC:0D:18:6F:29:13:DF:38:EB:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C9StlfF_OXIHo_wNGG8pE98465M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/76d082-ac32-4738-99e6-b2f6086368c7/1/TDT_sD-v4uzqrwMNIQye4XJF4EY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/76d082-ac32-4738-99e6-b2f6086368c7/1/C9StlfF_OXIHo_wNGG8pE98465M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.188.0/22
Signature Algorithm: sha256WithRSAEncryption
52:82:e4:47:e0:68:7b:e3:49:1d:70:a7:f0:d3:82:1a:f4:3e:
ed:c9:06:77:04:f0:55:80:ae:70:e0:10:22:68:e0:ab:06:3e:
53:da:b7:4a:91:35:81:41:4c:d2:c7:7d:db:54:80:d0:4d:f0:
8b:40:31:ad:90:40:b2:3c:d0:78:fa:c4:40:7d:61:48:1f:8c:
58:5c:dc:e9:a2:6e:9c:37:07:1e:2a:9c:5b:b8:e3:2c:fd:ee:
b6:5c:0e:bb:3d:08:29:93:68:3e:69:0e:8e:49:42:a2:2a:a4:
54:ea:d7:2c:10:02:07:7e:ee:b2:da:7d:5b:1c:89:e7:72:97:
b1:fa:c9:45:a1:4b:7a:44:e6:1e:03:ad:17:5c:8e:a3:11:eb:
0b:d2:ba:5c:20:9f:d0:8b:b1:37:db:5d:54:e6:8b:60:0e:e7:
3e:78:94:ca:16:f5:0c:50:5c:f1:12:c1:48:fb:73:b4:dc:2f:
cb:99:63:bc:9d:9d:38:42:40:87:c7:3e:7c:23:a8:fc:bb:0c:
14:93:e1:39:ae:1e:ae:34:ab:f9:4a:d4:71:62:f7:e8:ef:7e:
73:4d:cc:b8:6e:74:93:0a:98:bf:80:87:65:e9:c8:fe:3a:77:
9e:60:22:06:6b:01:c2:90:e1:4e:83:0a:ec:5f:5d:74:fc:7f:
76:ac:05:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:29 2023 by rpki-client on console-ams.rpki-client.org