Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/91RcfvwIlFRgos1K_fkDLzjPPLg.roa
File: 91RcfvwIlFRgos1K_fkDLzjPPLg.roa (raw, json)
Hash identifier: qgZuUa3H7bhcR68bWMtAofca3wngknioJdfQsM56rSQ=
Subject key identifier: F7:54:5C:7E:FC:08:94:54:60:A2:CD:4A:FD:F9:03:2F:38:CF:3C:B8
Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28
Certificate serial: 0184C4C514371354744F0BD22675D1D81CC6
Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/91RcfvwIlFRgos1K_fkDLzjPPLg.roa
Signing time: Tue 29 Nov 2022 19:02:40 +0000
ROA not before: Tue 29 Nov 2022 19:02:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29275
IP address blocks: 195.137.196.0/24 maxlen: 24
195.137.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c4:c5:14:37:13:54:74:4f:0b:d2:26:75:d1:d8:1c:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28
Validity
Not Before: Nov 29 19:02:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7545c7efc08945460a2cd4afdf9032f38cf3cb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:67:da:51:c5:2c:3a:ba:fc:a6:20:a4:98:08:
75:62:b8:31:e6:ec:e5:5e:9f:db:36:05:cc:a8:6c:
58:48:92:a2:d4:15:09:f9:0a:4f:d9:92:2b:c4:e4:
b6:aa:5f:6a:b1:79:01:4c:6b:a1:e6:64:58:ab:08:
5e:b0:b6:b5:bd:f4:a3:2f:97:9d:71:93:34:98:aa:
fb:55:79:d7:38:fb:23:a8:94:c6:c0:88:df:ae:fa:
e3:e1:5d:c7:a3:58:43:8a:8c:44:a1:2e:5f:8a:fe:
76:d7:2e:06:16:8a:3c:13:55:7b:94:0e:16:57:19:
e1:78:12:fd:05:08:eb:6d:53:dd:10:3c:77:83:6a:
9c:2d:5a:dd:f7:64:ea:e0:6e:27:6b:4f:64:be:ff:
95:10:7e:3b:44:d6:3d:94:b9:09:fd:1e:59:5c:f1:
c8:8a:6c:31:ea:7e:d7:93:2d:e4:cc:23:f4:c0:1f:
0f:bc:f9:1f:ab:f3:2f:ca:e9:f9:59:09:ae:d5:2b:
65:7b:02:04:b7:dc:97:ea:9b:bd:f3:42:10:19:96:
3e:eb:c9:cd:89:74:88:63:2a:1a:0a:b3:b0:27:3e:
be:cb:57:4a:aa:cb:9e:2a:32:6b:df:e6:16:5d:20:
51:cb:82:f5:37:a5:38:a1:b9:fc:f2:f3:61:43:c5:
8a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:54:5C:7E:FC:08:94:54:60:A2:CD:4A:FD:F9:03:2F:38:CF:3C:B8
X509v3 Authority Key Identifier:
keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/91RcfvwIlFRgos1K_fkDLzjPPLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.137.196.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:ca:4c:24:22:19:7d:54:94:f8:96:9e:e1:54:42:07:0d:d3:
2a:08:54:58:f6:76:71:be:d0:97:f0:97:08:39:3a:6d:1a:88:
46:c4:c7:90:0d:ab:f8:36:a7:39:83:1d:ca:31:06:81:05:9d:
17:49:a4:87:35:1e:1e:ab:e4:d6:76:4f:4a:f0:89:91:5d:f0:
ce:ad:89:b0:c2:bc:93:ad:e7:dd:a6:f6:5b:f6:65:d8:91:d3:
b4:0e:eb:d8:ad:cd:a1:78:02:02:2d:f1:d5:dd:85:fb:3a:1c:
83:b1:17:7e:19:03:60:4e:73:72:4f:a9:11:58:30:b0:c5:fb:
aa:ad:63:7a:03:a3:ee:4f:a4:e9:1c:f4:7a:b9:d0:8d:35:61:
2a:75:88:b8:3c:36:1d:77:78:a5:a4:44:f3:97:de:da:1d:eb:
c2:3e:5c:14:cd:99:ab:40:af:35:28:fb:ab:f4:7e:bf:60:c0:
82:16:0a:85:45:e9:bf:f2:b0:b4:46:97:75:b3:85:2b:16:06:
23:41:ac:7c:1b:e6:b6:43:c0:b3:47:06:78:a8:e7:f8:21:18:
b7:e9:3f:8e:7e:c1:1e:60:27:b8:9d:7a:c6:75:39:aa:69:3b:
90:15:4c:cc:cc:27:09:df:aa:56:05:35:c9:6b:d7:46:6a:c3:
6a:c9:e6:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:29 2023 by rpki-client on console.sobornost.net