Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/s7BIAzIvv6ghAsmhDeXa7r18ZNY.roa
File: s7BIAzIvv6ghAsmhDeXa7r18ZNY.roa (raw, json)
Hash identifier: YRPrYq9enbnGpK904GKlFNPVdCHwqWgy2WdCD6gaZEw=
Subject key identifier: B3:B0:48:03:32:2F:BF:A8:21:02:C9:A1:0D:E5:DA:EE:BD:7C:64:D6
Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Certificate serial: 8CCA
Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/s7BIAzIvv6ghAsmhDeXa7r18ZNY.roa
Signing time: Wed 15 Jun 2022 07:17:41 +0000
ROA not before: Wed 15 Jun 2022 07:17:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49282
IP address blocks: 91.194.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36042 (0x8cca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f
Validity
Not Before: Jun 15 07:17:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3b04803322fbfa82102c9a10de5daeebd7c64d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:86:6f:97:52:56:76:08:a4:a4:9c:21:09:3c:
5d:4d:3d:1e:96:0d:4c:c8:cf:b5:b0:ff:57:c5:63:
07:82:9f:a9:f0:a5:7d:b1:2d:e3:64:ad:b6:a0:73:
e0:49:78:c4:45:26:2c:dd:3f:51:c5:2e:63:8b:0e:
c9:04:a2:3e:d4:75:05:20:a7:ea:de:7e:d4:8e:51:
0d:f7:8a:38:0d:be:0e:c5:e5:84:48:37:db:d0:50:
c2:dd:70:59:2a:c9:f4:6f:9b:1f:8b:c9:89:61:da:
11:eb:cb:a4:e4:71:5b:44:02:0b:4d:92:40:2d:8c:
41:8d:4f:66:0c:ce:16:12:dc:97:91:79:3a:1e:d8:
dd:50:52:bd:3d:bf:80:3b:2a:45:4b:82:31:b9:8a:
35:98:17:70:a8:e6:47:0c:78:a5:32:3c:67:87:23:
ee:b8:7e:de:13:11:46:8b:39:10:f2:1b:87:66:d6:
7e:b8:29:54:0b:1a:15:c5:5e:df:8b:c0:17:66:87:
aa:3d:5b:05:e5:09:78:00:eb:21:ff:ac:b9:8e:af:
f4:f2:0a:81:20:73:e8:87:0a:b3:fa:88:8d:b7:75:
50:35:4c:c4:4c:4b:d0:04:75:c0:e0:b7:5c:37:96:
d6:4a:3d:dc:84:90:5d:be:ab:ec:8d:40:bc:3b:85:
32:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B0:48:03:32:2F:BF:A8:21:02:C9:A1:0D:E5:DA:EE:BD:7C:64:D6
X509v3 Authority Key Identifier:
keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/s7BIAzIvv6ghAsmhDeXa7r18ZNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.27.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:1f:46:e5:d7:d4:29:8a:a6:f8:24:6f:c7:e0:d6:76:91:8d:
ca:66:23:18:68:0d:74:64:e4:08:f4:28:3e:24:9d:00:fa:e4:
d2:bb:7a:c6:cb:ce:3f:96:cf:1d:08:dc:3f:a0:39:91:5d:c7:
e7:00:2b:87:a6:a2:31:04:65:d6:1b:bc:6e:0f:ec:af:c3:36:
be:c3:d1:ec:0f:c4:3f:76:db:7a:fb:06:5d:15:af:70:0b:78:
f9:f4:b3:1c:4e:32:dc:14:d7:e0:76:1b:1a:1a:0e:3f:bf:51:
e8:3b:ff:e8:a1:eb:81:6b:e9:c1:c6:9f:ce:2d:af:39:42:ba:
f3:65:43:00:7b:13:62:62:98:6f:3b:0c:76:4d:10:4f:49:6d:
bd:77:24:53:0c:73:b7:74:e4:34:5b:c9:4c:41:8c:c0:ca:a7:
27:e8:1d:a0:fb:57:ff:16:77:c3:fc:3e:09:79:47:7b:17:8b:
03:fb:81:7c:d2:6e:aa:c2:3a:29:01:3f:99:70:30:15:06:10:
a0:34:dd:a3:ba:37:f0:3a:ac:c1:2c:9c:f1:24:4a:5c:8b:a7:
cb:86:5c:25:1c:67:18:8e:3b:dd:f8:47:09:f5:1d:ce:e1:d9:
fe:34:0c:cf:d7:2a:72:67:52:9b:99:8d:37:40:49:b1:f0:23:
c6:6a:cd:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:28 2023 by rpki-client on console.sobornost.net