Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/1-NRk6aNmvswjSiFcnYMqr7YxHJE.roa
File: 1-NRk6aNmvswjSiFcnYMqr7YxHJE.roa (raw, json)
Hash identifier: yi3/blSlIc5dDqo5Re+w+J6Oq8BBeQT9K2Y+Mjy9btA=
Subject key identifier: F8:D4:64:E9:A3:66:BE:CC:23:4A:21:5C:9D:83:2A:AF:B6:31:1C:91
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 359FD6BF
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/1-NRk6aNmvswjSiFcnYMqr7YxHJE.roa
Signing time: Sat 01 Jan 2022 08:54:53 +0000
ROA not before: Sat 01 Jan 2022 08:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35631
IP address blocks: 91.215.252.0/23 maxlen: 23
91.215.254.0/24 maxlen: 24
91.215.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 899667647 (0x359fd6bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 08:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8d464e9a366becc234a215c9d832aafb6311c91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d4:83:ea:c7:57:09:e7:23:23:0d:7c:43:4b:
19:81:8b:26:70:96:51:98:51:15:63:78:9e:df:07:
04:f0:9a:e6:e0:33:5f:22:47:a8:77:8a:5c:d3:6f:
1e:ac:2f:fa:a6:5e:61:e1:72:93:0d:7c:3f:e4:fb:
bf:69:89:53:82:16:71:c9:34:02:39:2d:e3:2b:c5:
4a:48:6f:a9:4c:71:b5:53:9b:77:28:30:be:a1:62:
d3:f4:ea:a7:c4:a8:ab:f5:16:76:0a:5b:ae:2f:12:
fc:77:26:8a:1d:7a:b3:88:ca:a6:c2:bc:b0:50:dc:
07:1e:e7:07:a9:43:00:15:2f:b8:27:8e:04:f0:01:
4e:9b:eb:c4:be:01:ea:d1:08:56:e5:36:f3:3b:fa:
26:bc:88:46:63:27:53:65:c8:31:e7:74:68:eb:cd:
0b:00:e7:0d:c3:63:54:01:8f:d8:e4:8d:ec:f5:f1:
61:74:61:9c:8a:bf:4b:91:bd:37:d1:ca:d6:3b:b5:
30:5e:06:94:35:51:72:b3:a2:16:c5:39:ef:33:cc:
d0:7b:a7:07:7a:b3:95:ef:6d:79:aa:b0:38:71:06:
69:12:7a:d1:ca:ab:86:3b:5c:5e:fd:c5:95:4b:fa:
e7:2a:5e:8d:d5:5f:f0:00:ee:1d:16:d7:d9:33:b0:
91:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D4:64:E9:A3:66:BE:CC:23:4A:21:5C:9D:83:2A:AF:B6:31:1C:91
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/1-NRk6aNmvswjSiFcnYMqr7YxHJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.215.252.0/22
Signature Algorithm: sha256WithRSAEncryption
50:0f:06:0d:f8:41:13:29:1e:ba:27:79:67:b8:64:0d:f6:a6:
4b:a8:b4:87:f8:dc:3c:bd:3c:f8:bf:80:cf:85:3e:b6:1c:9b:
04:59:93:6a:e5:30:ab:a6:33:47:30:97:1e:2f:f8:a0:60:51:
56:bf:37:1e:b1:e0:a1:2f:d2:ca:21:d0:76:21:01:5e:63:68:
e3:d1:d2:b7:c7:f9:b7:e8:76:7d:d3:69:f6:13:3e:c3:2d:ae:
66:3a:76:da:8f:d9:81:ee:f0:da:09:90:a5:b7:1c:fa:33:e8:
65:83:75:5c:55:c0:70:af:1e:1d:3c:e1:7f:50:4e:4e:a5:ae:
31:7b:cd:50:ae:77:15:0e:29:e8:12:00:2b:a6:57:b3:6d:64:
83:12:e3:74:f9:81:49:1f:e0:5d:14:98:c9:9b:92:6f:fd:6e:
95:fd:1c:61:55:7a:b5:6c:83:83:8d:58:38:6e:db:d9:9d:1a:
d6:47:f2:5d:d4:dc:ce:3c:c9:03:80:3e:5e:f0:62:c3:b8:25:
a5:ff:e2:60:a0:4a:81:02:3b:a0:5f:81:d3:93:30:73:a9:c1:
bd:cf:7a:c9:93:0a:4e:4b:f2:9e:b5:fa:b1:f5:e0:8e:3d:aa:
4b:cc:e1:81:5c:a0:71:d1:7d:74:d3:3b:fb:83:2a:dd:89:3a:
a6:37:9d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:48 2023 by rpki-client on console.sobornost.net