Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/666786-561c-4bd0-a7b0-8f7fd3dc15fe/1/mROuO9lGkI2si2rL5turaWAk8XQ.roa
File: mROuO9lGkI2si2rL5turaWAk8XQ.roa (raw, json)
Hash identifier: 4dFuexQ9nYTP2xsY+oYDuLBjUfodLu0FKlKBFP23DUE=
Subject key identifier: 99:13:AE:3B:D9:46:90:8D:AC:8B:6A:CB:E6:DB:AB:69:60:24:F1:74
Certificate issuer: /CN=31aadcca96f44a457392d8907c6b964be0fcf921
Certificate serial: 01343B
Authority key identifier: 31:AA:DC:CA:96:F4:4A:45:73:92:D8:90:7C:6B:96:4B:E0:FC:F9:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Marcypb0SkVzktiQfGuWS-D8-SE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/666786-561c-4bd0-a7b0-8f7fd3dc15fe/1/mROuO9lGkI2si2rL5turaWAk8XQ.roa
Signing time: Thu 21 Apr 2022 12:31:18 +0000
ROA not before: Thu 21 Apr 2022 12:31:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47412
IP address blocks: 91.206.44.0/24 maxlen: 24
91.206.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78907 (0x1343b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31aadcca96f44a457392d8907c6b964be0fcf921
Validity
Not Before: Apr 21 12:31:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9913ae3bd946908dac8b6acbe6dbab696024f174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b2:cf:2b:dc:b4:a8:b2:a1:41:3e:16:76:f0:
5e:d3:f4:ec:be:ea:32:1b:96:e2:02:95:e8:e4:ce:
8e:56:c8:39:20:99:7c:d0:65:e5:75:ac:9f:58:2f:
0e:8d:23:da:5d:0d:68:af:a0:e0:83:76:2a:b3:2b:
9f:fa:65:dc:ea:ed:da:47:8c:eb:1a:2f:02:8b:59:
42:c0:2f:f0:38:77:54:6b:7a:50:e1:87:19:da:0b:
85:b4:b6:18:94:b5:98:12:36:52:af:50:1f:ad:2e:
36:17:ba:91:6a:05:96:56:d8:f0:4d:07:6f:3c:47:
f9:2f:9e:2e:35:c2:19:15:fa:9d:83:dd:f7:7c:b5:
bc:dc:a1:ac:f8:78:aa:f9:bf:d7:b9:c8:68:4e:25:
f1:40:65:00:a6:56:d4:3d:d0:0f:16:8b:e6:29:2e:
f1:65:72:b6:ee:f9:95:2e:8f:eb:a0:de:92:5f:af:
9b:2e:71:d6:63:25:8d:3f:04:22:0a:71:f3:7c:7a:
b5:50:0e:3f:03:ef:5c:61:89:ce:1c:e8:7c:5b:89:
c8:62:23:eb:9d:7c:bb:80:5d:1a:78:3d:70:34:95:
33:56:b3:30:6a:80:8c:96:d9:c5:00:94:60:77:f8:
81:34:67:2f:6b:ff:78:c2:36:41:d4:c6:53:55:22:
59:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:13:AE:3B:D9:46:90:8D:AC:8B:6A:CB:E6:DB:AB:69:60:24:F1:74
X509v3 Authority Key Identifier:
keyid:31:AA:DC:CA:96:F4:4A:45:73:92:D8:90:7C:6B:96:4B:E0:FC:F9:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Marcypb0SkVzktiQfGuWS-D8-SE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/666786-561c-4bd0-a7b0-8f7fd3dc15fe/1/mROuO9lGkI2si2rL5turaWAk8XQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/666786-561c-4bd0-a7b0-8f7fd3dc15fe/1/Marcypb0SkVzktiQfGuWS-D8-SE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.44.0/23
Signature Algorithm: sha256WithRSAEncryption
50:05:06:76:55:7c:dc:51:80:ff:e7:ce:63:ed:8a:f6:a1:1e:
51:ea:8b:2c:ad:e2:a2:74:67:17:2d:ac:7e:e0:33:86:78:45:
b8:88:44:e6:11:b8:89:7c:ba:15:fe:14:fc:da:ba:b2:af:e1:
23:48:97:e0:16:16:b7:0b:31:04:53:32:65:d6:ef:85:01:4e:
62:a2:20:81:c0:0b:5e:0b:4c:e5:17:5c:7e:c3:30:18:60:aa:
d7:7f:d2:01:b5:eb:01:3c:04:66:3e:38:45:ca:d4:b1:f2:d2:
88:11:e9:30:96:fc:11:f2:c9:7c:15:a4:81:99:16:40:8e:68:
3f:9c:5f:a2:c0:97:08:2c:44:5d:ff:c7:ea:ee:dc:7a:8a:a4:
ba:31:ab:92:6c:8b:95:3a:95:9d:05:89:cf:4b:90:35:30:6f:
b5:41:1b:7b:6b:22:29:3f:5e:b9:48:ae:06:a0:ee:5a:2c:95:
91:da:7d:66:0c:66:14:7b:86:2e:c7:6f:47:17:3d:b0:66:48:
c9:f0:01:3f:1e:cc:fb:d2:22:20:4e:16:76:96:12:2c:ec:50:
05:91:e1:90:d3:f3:15:36:7b:4d:0e:94:61:7b:6d:b5:3d:bf:
5d:e7:84:ac:08:86:30:b2:b6:9a:30:c9:3e:56:e7:1b:b1:e2:
b3:a5:f2:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:39 2023 by rpki-client on console.sobornost.net