Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/9SnYffN6uFcXiGJQVsSz96vXJvM.roa
File: 9SnYffN6uFcXiGJQVsSz96vXJvM.roa (raw, json)
Hash identifier: kz4bkpEw1AXVXbgN0p4kE+Sg+qOR/SrRJgERjOFEeAA=
Subject key identifier: F5:29:D8:7D:F3:7A:B8:57:17:88:62:50:56:C4:B3:F7:AB:D7:26:F3
Certificate issuer: /CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Certificate serial: 02A0AFDE
Authority key identifier: 89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/9SnYffN6uFcXiGJQVsSz96vXJvM.roa
Signing time: Sat 01 Jan 2022 14:55:57 +0000
ROA not before: Sat 01 Jan 2022 14:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56439
IP address blocks: 91.223.152.0/24 maxlen: 24
2001:678:564::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44085214 (0x2a0afde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896f35c5e0321acd02167def8807f0bb6f71c28d
Validity
Not Before: Jan 1 14:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f529d87df37ab8571788625056c4b3f7abd726f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b6:01:82:a9:ac:04:1c:c4:c8:15:7f:f0:86:
10:49:b8:61:64:c3:bb:34:ee:d3:a7:99:2d:20:53:
99:3d:34:01:9f:ff:00:4f:86:85:2a:c0:22:02:cd:
a2:5e:d2:a8:b5:34:5c:8f:36:3f:8c:a3:57:fc:b6:
a7:41:80:c5:00:fa:16:c8:4a:87:78:7e:d4:0c:0a:
46:e8:9f:c9:58:57:dc:f6:b4:db:46:b8:23:80:4f:
28:63:5e:e2:bf:44:2f:1d:c9:98:ce:07:57:cb:1f:
4f:a2:36:ff:80:50:ef:f8:a7:9a:40:0b:d1:59:e3:
9a:19:50:e2:e6:b2:3a:43:d7:bf:50:24:07:e8:b8:
6e:2e:06:71:23:39:95:1c:f7:07:e2:f7:13:00:8c:
da:63:fd:b8:d1:6d:2c:3a:a7:4f:9f:fd:da:7d:9d:
17:c1:b8:c4:75:11:88:cc:6c:35:c7:0c:cd:19:68:
58:b0:5a:8c:46:0b:f7:7c:0f:dc:91:f9:12:05:9a:
ad:f9:83:c2:59:4b:9d:80:a5:8f:31:eb:08:b5:4f:
80:3d:71:d6:30:88:db:91:bb:3f:5a:ef:2a:d0:e0:
64:28:af:28:84:7c:c5:85:22:e6:b7:68:34:e9:c2:
3e:1c:94:b4:eb:1c:b4:64:68:c1:27:ff:09:55:63:
76:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:29:D8:7D:F3:7A:B8:57:17:88:62:50:56:C4:B3:F7:AB:D7:26:F3
X509v3 Authority Key Identifier:
keyid:89:6F:35:C5:E0:32:1A:CD:02:16:7D:EF:88:07:F0:BB:6F:71:C2:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW81xeAyGs0CFn3viAfwu29xwo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/9SnYffN6uFcXiGJQVsSz96vXJvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/80c4c0-c729-418e-80af-2299a67e6001/1/iW81xeAyGs0CFn3viAfwu29xwo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.152.0/24
IPv6:
2001:678:564::/48
Signature Algorithm: sha256WithRSAEncryption
09:eb:9c:a8:8b:a5:2a:a1:c1:be:09:dc:37:22:f9:95:aa:ad:
5e:e1:03:64:c0:70:7d:e4:11:8b:b1:0c:1d:6d:10:5e:c9:5c:
80:f4:55:3a:8e:ab:8b:1c:1c:54:ec:d1:36:0b:af:ad:b1:00:
2a:e7:65:2a:0d:80:47:52:f3:93:52:55:a3:85:78:14:cd:65:
67:3e:bc:e7:79:d1:43:ae:45:f1:f4:fc:1c:f6:36:41:67:44:
fa:f6:87:b4:9d:57:49:5e:a8:13:a9:83:db:24:8d:ba:71:37:
af:58:51:38:bd:c9:fd:45:84:ae:f6:94:f2:11:59:4d:a2:5c:
b1:57:45:5b:31:3e:93:bb:8c:64:6f:46:0f:91:2c:17:7c:99:
ef:ab:19:87:72:b0:cd:ee:45:75:7a:7b:8f:05:d2:10:06:a6:
78:3c:da:f2:68:21:0c:b7:d9:bc:54:41:2d:f7:7e:47:14:04:
ea:d5:df:8f:38:ec:09:e9:01:bd:e4:20:d9:b3:d4:97:c8:30:
0d:50:98:e5:6d:93:3d:1a:1c:38:10:d2:bf:f0:ad:32:ba:24:
8e:4b:1f:78:5e:1b:b5:7c:d6:a9:57:db:0b:82:8b:d7:13:9f:
56:0d:01:d3:8a:7b:1f:9f:15:ca:1d:a1:a2:d5:20:8d:38:d8:
47:e0:06:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:24 2023 by rpki-client on console.sobornost.net