Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/v8yqCzDyDQ1GkR9S_yPpuPKBMBw.roa
File: v8yqCzDyDQ1GkR9S_yPpuPKBMBw.roa (raw, json)
Hash identifier: 1jRAHnmr6om+rbT1pD8lMnH3k/6pWHPJMkLcgcGiWkM=
Subject key identifier: BF:CC:AA:0B:30:F2:0D:0D:46:91:1F:52:FF:23:E9:B8:F2:81:30:1C
Certificate issuer: /CN=427cc552ab57dbafa4621fb5dc593a45607cfb0a
Certificate serial: 961ABE
Authority key identifier: 42:7C:C5:52:AB:57:DB:AF:A4:62:1F:B5:DC:59:3A:45:60:7C:FB:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QnzFUqtX26-kYh-13Fk6RWB8-wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/v8yqCzDyDQ1GkR9S_yPpuPKBMBw.roa
Signing time: Sat 01 Jan 2022 00:50:56 +0000
ROA not before: Sat 01 Jan 2022 00:50:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42636
IP address blocks: 91.192.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9837246 (0x961abe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427cc552ab57dbafa4621fb5dc593a45607cfb0a
Validity
Not Before: Jan 1 00:50:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfccaa0b30f20d0d46911f52ff23e9b8f281301c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2c:75:63:f8:a8:fe:65:7a:c6:6b:07:bd:9f:
da:24:f5:14:97:4d:54:4e:ed:a7:29:0a:45:c1:b7:
0c:6d:52:56:55:6c:38:f9:60:08:2a:ad:da:93:1e:
3c:0a:cd:db:b1:35:9b:d4:10:42:63:75:cb:85:bd:
85:62:f3:73:c7:ea:ff:0b:13:85:19:3e:e1:7f:4c:
c6:88:00:ac:b8:23:45:80:58:86:e3:d0:e7:d7:ba:
29:75:98:6d:14:5b:45:2f:7d:74:d8:3b:a6:c8:2a:
f5:ac:f8:97:e6:77:ff:2d:7b:13:4c:fa:49:52:b2:
3a:27:7e:7f:7f:39:01:af:1b:09:3c:aa:1f:ec:5d:
aa:b1:06:83:41:74:5c:2d:8f:ee:f4:8f:3f:06:18:
e9:6b:d8:44:e3:80:e9:ee:94:f1:ad:e2:aa:44:cc:
52:6b:5b:9f:72:86:dd:5b:62:f0:d3:46:82:3a:f8:
78:5f:68:13:27:13:96:45:0a:88:99:3c:31:f5:cc:
9c:56:c1:18:fe:ef:87:a0:12:15:74:6b:9e:11:c2:
d0:09:c7:4c:64:4f:a8:14:00:54:e4:8f:8a:0e:48:
a8:02:85:d6:e4:4d:9d:0b:b3:25:1d:04:03:a9:41:
e8:6d:36:7b:24:89:fa:73:b7:c6:51:c1:8f:91:9f:
0a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:CC:AA:0B:30:F2:0D:0D:46:91:1F:52:FF:23:E9:B8:F2:81:30:1C
X509v3 Authority Key Identifier:
keyid:42:7C:C5:52:AB:57:DB:AF:A4:62:1F:B5:DC:59:3A:45:60:7C:FB:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QnzFUqtX26-kYh-13Fk6RWB8-wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/v8yqCzDyDQ1GkR9S_yPpuPKBMBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/QnzFUqtX26-kYh-13Fk6RWB8-wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.244.0/22
Signature Algorithm: sha256WithRSAEncryption
67:fa:9c:d0:ac:a7:bd:b2:1b:09:9f:f9:cc:50:ec:97:0d:51:
69:41:65:ab:42:29:84:5a:3e:38:a6:10:06:23:ca:7b:d8:ba:
ba:66:42:b5:16:fc:ba:3d:af:99:29:d8:eb:c6:23:a0:17:97:
a9:89:36:09:1f:5f:73:1e:16:ee:62:5e:e2:82:18:06:a8:c9:
d1:62:36:56:3d:c0:53:b2:da:fa:31:a6:08:09:81:6a:ea:16:
09:4d:7b:a9:f9:0a:2c:47:45:45:fc:9e:22:55:e0:ab:6b:2b:
04:d3:86:0f:e8:88:c8:33:6a:c5:33:06:11:0c:92:b5:9e:f9:
6f:b8:46:b6:fc:ba:8c:54:25:c1:2b:5c:4f:70:d2:dd:2a:97:
d7:85:78:1e:db:b5:fb:04:1e:2c:ff:be:b8:7d:ee:97:93:86:
9d:7c:a5:24:24:16:27:3e:d8:57:a5:38:58:dd:fb:95:32:cd:
0e:63:d1:e4:57:14:81:c3:94:84:77:cb:82:c1:64:ad:d1:8b:
0f:87:aa:26:fe:78:5c:95:23:1c:d1:38:94:d4:66:d9:43:2c:
88:ec:f4:59:5a:c8:7c:f3:5f:08:3c:5f:c0:1e:4d:88:8f:f5:
55:53:90:89:3d:ef:0b:e4:f8:6d:b4:f8:63:a7:49:f8:5f:e6:
22:e1:4c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:00 2023 by rpki-client on console.sobornost.net