Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/8e16cf-cd3b-4177-a045-1c28e1cd5745/1/FP3Xo1VQm6o5A0Fkv6_b6YV76v8.roa
File: FP3Xo1VQm6o5A0Fkv6_b6YV76v8.roa (raw, json)
Hash identifier: oZBglZs8cWeN5/J1EmbndNnoDtRwInAVUlw2mDI2EEE=
Subject key identifier: 14:FD:D7:A3:55:50:9B:AA:39:03:41:64:BF:AF:DB:E9:85:7B:EA:FF
Certificate issuer: /CN=e981cd1fc6c32e4b3b7c9c538b04dd30a811c3cb
Certificate serial: 075A8AEE
Authority key identifier: E9:81:CD:1F:C6:C3:2E:4B:3B:7C:9C:53:8B:04:DD:30:A8:11:C3:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6YHNH8bDLks7fJxTiwTdMKgRw8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/8e16cf-cd3b-4177-a045-1c28e1cd5745/1/FP3Xo1VQm6o5A0Fkv6_b6YV76v8.roa
Signing time: Sat 01 Jan 2022 00:52:45 +0000
ROA not before: Sat 01 Jan 2022 00:52:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51729
IP address blocks: 91.220.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123374318 (0x75a8aee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e981cd1fc6c32e4b3b7c9c538b04dd30a811c3cb
Validity
Not Before: Jan 1 00:52:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14fdd7a355509baa39034164bfafdbe9857beaff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4d:1e:52:ce:98:9c:93:7a:08:19:9d:ca:7f:
98:96:37:d6:34:f8:0b:6f:db:7f:ab:84:97:c8:bc:
b1:4c:27:86:1f:c2:6c:a6:bf:c7:d2:3e:5a:18:7a:
09:c2:cf:af:15:00:7e:41:7c:12:e6:b1:96:ea:26:
cf:21:84:44:c8:ef:89:ab:44:b3:ec:ba:31:59:2f:
9a:64:28:5a:18:74:b2:33:84:3d:ce:62:0a:58:2c:
e1:44:6a:67:61:4c:bd:36:b6:ee:f4:d1:90:52:e9:
b0:fe:98:1d:41:75:67:30:45:17:49:fc:e8:93:98:
83:96:7e:0e:7a:7c:44:c9:ea:40:66:1e:48:bd:14:
ac:c4:2d:f5:56:a5:32:5e:46:22:47:84:8b:ab:0e:
5d:26:dd:be:46:98:b7:a6:45:dc:21:4e:e3:e1:a2:
48:29:9e:1e:86:30:3c:1c:6c:de:43:c3:12:68:29:
57:0f:d0:f8:5b:b5:0c:8f:b2:8b:cc:13:37:9a:49:
50:44:35:f9:85:21:b3:2e:8c:56:10:42:59:db:2f:
99:4e:a2:6b:68:30:23:40:12:bf:ca:01:5a:2e:11:
fd:5f:e6:79:a3:0f:d4:88:4d:d9:0b:c6:cf:bc:5d:
65:57:96:6d:15:a2:63:81:89:30:cf:48:25:1c:40:
69:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:FD:D7:A3:55:50:9B:AA:39:03:41:64:BF:AF:DB:E9:85:7B:EA:FF
X509v3 Authority Key Identifier:
keyid:E9:81:CD:1F:C6:C3:2E:4B:3B:7C:9C:53:8B:04:DD:30:A8:11:C3:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6YHNH8bDLks7fJxTiwTdMKgRw8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/8e16cf-cd3b-4177-a045-1c28e1cd5745/1/FP3Xo1VQm6o5A0Fkv6_b6YV76v8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/8e16cf-cd3b-4177-a045-1c28e1cd5745/1/6YHNH8bDLks7fJxTiwTdMKgRw8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.65.0/24
Signature Algorithm: sha256WithRSAEncryption
53:44:bc:c0:73:29:55:df:42:fb:6b:b1:93:c0:09:50:35:a0:
23:e7:54:e7:bd:df:08:53:01:60:38:82:64:fd:67:ba:01:3c:
07:4d:e4:aa:55:3e:88:d9:85:fe:b0:43:ef:5e:b4:e3:93:31:
9c:09:f0:f3:f8:00:ab:b5:cf:4d:44:1e:da:2d:42:ac:3b:f5:
14:9a:4a:45:3c:ac:d5:d8:2f:38:1c:a7:a1:7d:0b:c6:fe:06:
75:77:9e:7c:b5:db:6e:d5:0c:64:52:c2:b6:ee:73:62:04:06:
f0:ba:4a:ea:1c:b0:34:f1:2f:6b:c8:02:e0:5c:d3:f6:76:ea:
c3:a1:eb:70:7b:ae:f7:9c:91:e3:a5:96:fc:ca:26:93:20:7c:
e7:d8:b7:a6:6c:0c:23:3a:f7:c6:4e:9c:b3:ea:7f:e3:26:74:
b1:42:93:38:28:20:9e:61:06:ff:50:a6:09:de:5d:a2:04:50:
9a:c6:aa:f7:b1:81:36:9b:24:78:71:e9:27:7d:ac:98:ab:02:
48:c0:a7:cb:b7:ce:45:aa:69:8e:34:56:5a:2b:16:4d:0d:2f:
b5:bb:43:7a:f4:e6:11:f7:92:b6:7a:7c:46:1b:a8:8b:ab:5b:
db:fc:7b:fc:c6:d7:72:b3:d5:d0:ba:91:25:1f:57:6f:a6:2f:
7c:00:c4:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:39 2023 by rpki-client on console.sobornost.net