Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/fkIkCQMMo8YWmNWeE8V7qZ-b3hk.roa
File: fkIkCQMMo8YWmNWeE8V7qZ-b3hk.roa (raw, json)
Hash identifier: Y82JG6ICkjFuiiPK+VYzWbJjlEYsdDrpxRZQAyvWv80=
Subject key identifier: 7E:42:24:09:03:0C:A3:C6:16:98:D5:9E:13:C5:7B:A9:9F:9B:DE:19
Certificate issuer: /CN=d3d56f07be184cba52f6fdc049e8114d2616c32a
Certificate serial: 0A42994E
Authority key identifier: D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/fkIkCQMMo8YWmNWeE8V7qZ-b3hk.roa
Signing time: Sat 01 Jan 2022 15:03:26 +0000
ROA not before: Sat 01 Jan 2022 15:03:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50607
IP address blocks: 176.126.56.0/22 maxlen: 22
91.198.97.0/24 maxlen: 24
2001:67c:778::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172136782 (0xa42994e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3d56f07be184cba52f6fdc049e8114d2616c32a
Validity
Not Before: Jan 1 15:03:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e422409030ca3c61698d59e13c57ba99f9bde19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8e:61:e5:75:dc:ac:5e:0f:6a:c4:56:bf:80:
a4:8c:51:a9:e2:49:60:ba:e3:57:4e:4e:24:2e:17:
39:b3:b9:06:f5:b7:e0:f1:80:31:44:1a:5a:20:f2:
5a:d5:d5:3b:a2:77:19:d9:bc:fc:ec:fb:9a:8e:5a:
86:4b:a9:be:e8:42:e9:7f:32:6a:27:0f:9e:9b:d6:
d2:1a:45:a6:77:71:35:60:fe:2e:a4:ed:9a:4d:e3:
50:1a:9d:4b:9b:15:2e:b2:ff:c7:41:f5:62:ff:f8:
6e:82:17:3e:7c:eb:1f:46:97:2a:29:1f:bf:36:b8:
60:b4:3c:70:53:22:48:9a:1f:81:f6:71:11:f2:54:
ca:06:9d:08:72:df:74:53:43:87:47:c1:9c:c9:e3:
8c:2d:2f:fd:0e:26:ee:93:4b:db:e0:ed:68:eb:11:
26:9b:11:74:83:bc:d5:a9:79:bf:a0:53:e2:4e:20:
d4:f8:48:5b:a4:24:b9:57:d8:1b:a5:5f:f4:93:71:
2b:18:69:2c:95:44:84:d0:6c:c0:65:58:76:89:2f:
8e:49:a7:f6:b5:01:c5:f7:ac:a6:ea:31:b7:03:f9:
59:4d:a0:3b:b9:59:51:e5:c3:ea:69:d3:58:bd:7b:
78:4d:ae:0c:25:8b:66:d8:30:66:4d:8f:b0:ac:65:
98:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:42:24:09:03:0C:A3:C6:16:98:D5:9E:13:C5:7B:A9:9F:9B:DE:19
X509v3 Authority Key Identifier:
keyid:D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/fkIkCQMMo8YWmNWeE8V7qZ-b3hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/09VvB74YTLpS9v3ASegRTSYWwyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.97.0/24
176.126.56.0/22
IPv6:
2001:67c:778::/48
Signature Algorithm: sha256WithRSAEncryption
8b:77:94:21:d3:b4:6d:85:e3:f4:89:08:f9:77:88:39:c9:0c:
5a:10:6c:6e:be:f4:21:4a:da:27:2a:57:cf:ee:24:f1:62:89:
e3:b2:a0:96:65:94:31:72:7d:e4:79:0c:11:4b:b9:eb:6c:16:
77:fe:76:40:fa:ea:9b:9e:b4:73:dd:80:30:5c:ba:cf:6a:eb:
92:ed:b0:f1:6f:59:a4:fd:23:4d:6e:13:c2:64:7d:2e:29:f1:
b8:af:25:9e:cd:b5:a1:3e:07:5b:58:d0:72:aa:6c:49:6a:cf:
2a:6a:89:1d:f8:0b:23:6b:a9:a2:d5:23:fe:a3:b2:bd:e7:ab:
31:8a:28:4a:9e:11:50:12:10:e1:90:24:5c:4c:6d:ac:2c:fd:
29:63:14:df:50:f3:fc:5c:74:0e:16:19:27:eb:a6:87:30:c8:
b2:1d:de:e6:c8:74:bc:b2:7a:44:64:f6:59:e7:b4:44:b3:a6:
33:b8:e4:cb:ea:23:65:bd:45:14:5c:74:d3:60:f1:01:c9:e6:
08:31:bc:eb:54:2d:07:4e:b7:88:65:8f:cb:1c:07:3c:d8:92:
8d:83:6d:b7:1c:47:8f:6a:f2:a0:44:41:e7:80:9e:79:02:0a:
c3:26:03:4d:99:84:83:8f:99:ae:81:05:2e:41:f5:6a:aa:e0:
24:d2:14:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:47 2023 by rpki-client on console-ams.rpki-client.org