Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/d7f2d8-46cd-41fd-8008-a4296ad98635/1/nA4Yei97ZVNztc6ssjI2VabUJe0.roa
File: nA4Yei97ZVNztc6ssjI2VabUJe0.roa (raw, json)
Hash identifier: B6WvK1rNNunFvY6SgIfgxVsZrzl5orRgRy4R60W2kn8=
Subject key identifier: 9C:0E:18:7A:2F:7B:65:53:73:B5:CE:AC:B2:32:36:55:A6:D4:25:ED
Certificate issuer: /CN=13d8042a28015d27f35b1f1ab73611e8511b6923
Certificate serial: 02AA1E
Authority key identifier: 13:D8:04:2A:28:01:5D:27:F3:5B:1F:1A:B7:36:11:E8:51:1B:69:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9gEKigBXSfzWx8atzYR6FEbaSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/d7f2d8-46cd-41fd-8008-a4296ad98635/1/nA4Yei97ZVNztc6ssjI2VabUJe0.roa
Signing time: Tue 21 Jun 2022 15:08:45 +0000
ROA not before: Tue 21 Jun 2022 15:08:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197522
IP address blocks: 91.221.218.0/24 maxlen: 24
91.221.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174622 (0x2aa1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d8042a28015d27f35b1f1ab73611e8511b6923
Validity
Not Before: Jun 21 15:08:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c0e187a2f7b655373b5ceacb2323655a6d425ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4a:54:07:f8:cd:7a:e0:d0:cb:71:0a:59:0a:
bf:9d:a2:a4:79:3a:6b:dc:4b:56:c9:ab:e7:56:6c:
94:07:c4:d6:05:80:b9:6f:c2:b0:fa:31:68:d6:ca:
d2:cb:6a:67:cc:cb:1a:6f:ed:25:37:07:97:f8:05:
f9:61:5a:7f:2e:d3:52:05:41:34:bc:78:34:54:84:
0b:8c:c7:93:9c:a7:4a:ae:69:bb:a8:a1:48:46:c6:
ca:08:15:da:78:84:69:8d:78:c5:77:97:20:ed:7f:
22:a7:f6:c8:e7:df:61:a3:7a:81:be:9e:4f:5b:b6:
66:bf:b5:95:5d:d9:6d:d1:1a:52:68:23:7c:5e:37:
79:87:74:88:55:c6:c4:10:ab:3b:97:9a:09:c8:05:
ce:6b:04:fb:b4:2c:86:18:e7:dd:1b:f1:10:6d:c9:
b3:ed:49:f6:ea:19:40:43:49:f1:42:dd:31:ca:7f:
eb:d6:ca:13:44:5e:f1:59:0a:39:84:2c:dd:a6:e2:
ee:6b:24:b0:b1:45:8a:8c:4f:d5:b2:83:95:b8:1e:
8d:7b:8a:d3:bd:24:5b:ac:c4:d9:fb:e0:6e:3c:cb:
00:ad:24:1f:48:7c:e3:ba:0b:0d:cc:74:7c:ab:b0:
1f:99:50:7e:19:b7:66:e7:e9:54:9d:c7:d1:0f:48:
b0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:0E:18:7A:2F:7B:65:53:73:B5:CE:AC:B2:32:36:55:A6:D4:25:ED
X509v3 Authority Key Identifier:
keyid:13:D8:04:2A:28:01:5D:27:F3:5B:1F:1A:B7:36:11:E8:51:1B:69:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9gEKigBXSfzWx8atzYR6FEbaSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d7f2d8-46cd-41fd-8008-a4296ad98635/1/nA4Yei97ZVNztc6ssjI2VabUJe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d7f2d8-46cd-41fd-8008-a4296ad98635/1/E9gEKigBXSfzWx8atzYR6FEbaSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.218.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:d1:27:e5:47:ed:3e:4a:9a:a1:ff:40:fa:b2:5a:c4:96:7a:
3d:98:12:99:ec:b6:48:2d:e8:5b:dd:cc:50:bc:cb:94:37:8d:
df:e3:c3:82:13:14:b4:bf:86:94:e7:e0:d3:42:1e:f5:1f:a8:
40:40:8e:c9:f8:f1:6f:bf:c3:dc:8a:0a:84:ec:0f:53:12:d0:
60:d7:41:71:0e:1b:7a:97:f7:20:71:b9:4f:77:af:cc:fc:87:
ce:2b:c6:8f:d4:6d:16:3d:71:d1:0b:b8:b6:07:98:a3:6f:1f:
73:ee:ea:44:3a:dc:75:a0:1e:28:09:b9:4f:06:d0:18:57:a8:
e9:06:ba:24:74:12:fe:81:9d:fb:f2:c2:d7:7c:d1:56:f1:3e:
9b:b5:7b:88:4b:74:54:74:91:17:3f:b7:e5:8b:ea:e6:c8:74:
b8:68:47:5a:a8:30:3a:af:14:f2:b4:f4:06:e5:21:db:1c:1f:
7b:e0:9b:86:06:d8:78:d0:bf:29:60:12:52:fd:8d:c3:d0:66:
e6:55:72:2d:cf:4a:f1:98:80:07:06:1a:e9:19:d4:38:a5:96:
a1:ee:f9:82:36:85:de:9b:48:13:7f:80:c4:0e:18:3f:57:ec:
0a:a0:fa:b3:f5:e8:87:63:1b:5e:e4:f0:fc:32:00:12:1c:bd:
07:db:f7:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:33 2023 by rpki-client on console.sobornost.net