Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/b61a1c-ba6f-4327-bacd-89718ebc3847/1/vUpLlRqtJXHqyhDTEmUdHF1auzE.roa
File: vUpLlRqtJXHqyhDTEmUdHF1auzE.roa (raw, json)
Hash identifier: o8p2RlX9ZEDnai47WjMLnM3rqtUaaKQujbyfY5IEBn0=
Subject key identifier: BD:4A:4B:95:1A:AD:25:71:EA:CA:10:D3:12:65:1D:1C:5D:5A:BB:31
Certificate issuer: /CN=39ae828573f39413f806b51ee040cd34bc5f63ae
Certificate serial: 1AD5190F
Authority key identifier: 39:AE:82:85:73:F3:94:13:F8:06:B5:1E:E0:40:CD:34:BC:5F:63:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oa6ChXPzlBP4BrUe4EDNNLxfY64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/b61a1c-ba6f-4327-bacd-89718ebc3847/1/vUpLlRqtJXHqyhDTEmUdHF1auzE.roa
Signing time: Sat 01 Jan 2022 00:53:36 +0000
ROA not before: Sat 01 Jan 2022 00:53:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197669
IP address blocks: 91.228.242.0/24 maxlen: 24
185.28.212.0/22 maxlen: 24
2a04:3fc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 450173199 (0x1ad5190f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ae828573f39413f806b51ee040cd34bc5f63ae
Validity
Not Before: Jan 1 00:53:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd4a4b951aad2571eaca10d312651d1c5d5abb31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1d:ea:8a:87:c7:33:f9:8c:49:a5:7f:6f:4d:
56:b4:f8:ec:09:04:ba:1f:fb:f2:e0:b7:50:6d:bd:
ab:16:a1:1d:68:99:18:be:fb:d7:96:a3:99:20:61:
fa:6b:46:c7:31:33:c0:5b:0f:ca:c3:85:36:bb:01:
95:31:6d:4a:99:f9:bc:88:0a:2f:12:8b:c2:73:9c:
19:3f:af:29:91:03:2a:bb:60:0d:25:cd:34:a4:22:
e4:91:50:60:42:04:c3:a7:3b:42:a4:c5:1d:92:f9:
97:54:95:f8:05:c7:6f:e6:5e:83:a1:13:c1:b2:f2:
0a:e6:98:7c:80:e0:51:82:e6:fc:eb:81:11:33:79:
3f:51:d4:ee:56:e1:14:c7:d0:3b:24:0c:58:b4:5c:
6a:33:b3:6b:93:eb:95:7b:8a:71:30:a1:74:0c:05:
de:78:31:e3:1f:a0:5b:85:c2:85:4c:1a:18:4a:94:
bc:84:7c:8a:81:e6:1a:7c:34:32:06:ce:6f:9e:ed:
93:49:32:ff:ae:37:1d:eb:16:2e:81:de:95:fd:4c:
52:6f:ff:7b:e6:a0:e2:fb:34:c2:87:cc:6f:80:ca:
f9:65:80:61:9d:d9:e9:d4:be:06:1a:01:eb:3a:28:
f6:34:55:67:6b:cc:fa:b6:d9:3e:ee:6e:ae:65:5e:
e5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:4A:4B:95:1A:AD:25:71:EA:CA:10:D3:12:65:1D:1C:5D:5A:BB:31
X509v3 Authority Key Identifier:
keyid:39:AE:82:85:73:F3:94:13:F8:06:B5:1E:E0:40:CD:34:BC:5F:63:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oa6ChXPzlBP4BrUe4EDNNLxfY64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/b61a1c-ba6f-4327-bacd-89718ebc3847/1/vUpLlRqtJXHqyhDTEmUdHF1auzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/b61a1c-ba6f-4327-bacd-89718ebc3847/1/Oa6ChXPzlBP4BrUe4EDNNLxfY64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.242.0/24
185.28.212.0/22
IPv6:
2a04:3fc0::/29
Signature Algorithm: sha256WithRSAEncryption
9b:2d:b4:33:71:eb:ad:61:e7:d8:b2:fd:07:56:f3:75:74:e7:
d3:a4:67:20:51:b2:11:3e:6d:9a:61:60:9c:fb:09:e1:2b:7c:
01:9c:df:f8:30:ec:fc:52:ac:61:df:7f:ec:ba:ba:58:eb:45:
eb:ae:86:4c:7c:3c:2b:44:eb:04:bf:33:21:43:e7:0c:46:78:
3d:4c:ac:fc:55:cd:19:11:d4:ed:29:43:26:be:1c:ae:67:c4:
38:80:88:7d:dc:ad:6e:b0:83:13:de:25:7f:84:c1:da:fb:00:
20:8f:46:13:04:27:f7:e0:bd:27:2f:f8:5b:56:14:42:95:f3:
6f:e6:6d:b9:1a:14:df:d9:f6:b3:af:d6:0c:73:30:84:26:51:
e3:30:52:ed:9c:fe:af:69:44:2d:04:a7:26:51:fd:01:ad:a0:
6c:f2:f2:22:0b:e0:5e:05:1e:ae:12:d8:f2:d8:08:4b:07:38:
13:1a:1b:dd:10:24:a0:ff:45:ab:a6:92:a0:47:6e:50:d3:ab:
02:11:93:dd:43:e0:49:3c:5b:30:2c:44:d3:50:27:9a:79:89:
af:b6:f8:66:80:00:5f:63:c6:e8:70:ce:2c:a7:5a:80:24:5b:
02:a1:c4:a6:c2:e4:81:d0:fe:a1:e6:7a:ea:fd:c2:de:fc:b8:
a5:18:e0:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:14 2023 by rpki-client on console.sobornost.net