Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/e71e2e-9542-489c-9bff-e6d9588ce7e7/1/zRVnHYLfXJppPHTp78_ecoeGguI.roa
File: zRVnHYLfXJppPHTp78_ecoeGguI.roa (raw, json)
Hash identifier: bwpYgAfrFRB8hSeYR8X+Dt+Y2MTjqdgivQmp0WYCluQ=
Subject key identifier: CD:15:67:1D:82:DF:5C:9A:69:3C:74:E9:EF:CF:DE:72:87:86:82:E2
Certificate issuer: /CN=d19317d27239dc7b0d54133be1aa65c9dc01f434
Certificate serial: 0254C1CD
Authority key identifier: D1:93:17:D2:72:39:DC:7B:0D:54:13:3B:E1:AA:65:C9:DC:01:F4:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ZMX0nI53HsNVBM74aplydwB9DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/e71e2e-9542-489c-9bff-e6d9588ce7e7/1/zRVnHYLfXJppPHTp78_ecoeGguI.roa
Signing time: Sat 01 Jan 2022 07:55:29 +0000
ROA not before: Sat 01 Jan 2022 07:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48642
IP address blocks: 91.197.204.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39109069 (0x254c1cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d19317d27239dc7b0d54133be1aa65c9dc01f434
Validity
Not Before: Jan 1 07:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cd15671d82df5c9a693c74e9efcfde72878682e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:eb:3f:96:80:44:17:03:f4:67:7e:60:ad:ee:
25:6e:dc:f5:f9:4c:ac:14:db:c9:91:b3:94:4a:e0:
3d:c1:9c:fb:24:74:9d:4c:b5:b5:af:7f:88:c2:62:
2e:05:3c:a4:ef:a2:98:2d:b1:32:82:d1:ea:6c:d9:
ad:03:4e:78:95:5c:2b:78:bd:59:ef:5f:6b:95:6b:
f1:eb:65:83:88:48:78:b3:a3:1c:6b:dd:0f:e8:03:
15:28:9e:47:0a:9b:6f:33:d7:1a:18:b7:fd:ac:c1:
4d:bc:ec:d4:64:30:32:bc:e7:fa:d4:f7:7f:70:61:
49:08:14:ce:69:ef:e4:be:37:23:96:d5:02:7d:c9:
65:90:82:c6:3f:1b:40:01:0d:ac:c1:44:62:63:3e:
81:0e:f5:e2:24:d3:58:b8:cd:af:7e:d3:ed:8c:73:
45:f8:63:a4:29:bf:c5:38:48:a3:b8:56:04:d2:1f:
7d:44:d9:a4:a1:da:e9:4a:b0:52:21:09:7b:52:c7:
c6:f8:8b:2d:62:86:cd:c0:7b:63:c3:34:1c:45:83:
4e:cb:12:44:b3:49:ed:32:85:93:40:49:ff:5a:78:
4c:1a:61:2e:e8:05:8a:7d:b9:5f:5a:b0:0a:ab:c8:
1f:1e:a4:bd:3f:26:d1:9d:57:16:2c:14:5f:7e:ff:
a3:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:15:67:1D:82:DF:5C:9A:69:3C:74:E9:EF:CF:DE:72:87:86:82:E2
X509v3 Authority Key Identifier:
keyid:D1:93:17:D2:72:39:DC:7B:0D:54:13:3B:E1:AA:65:C9:DC:01:F4:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ZMX0nI53HsNVBM74aplydwB9DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e71e2e-9542-489c-9bff-e6d9588ce7e7/1/zRVnHYLfXJppPHTp78_ecoeGguI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/e71e2e-9542-489c-9bff-e6d9588ce7e7/1/0ZMX0nI53HsNVBM74aplydwB9DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.204.0/22
Signature Algorithm: sha256WithRSAEncryption
58:c9:8d:be:09:5d:23:84:a4:18:19:ab:0e:5f:e3:f2:a1:bf:
9e:4d:35:3a:dd:33:d6:ef:5a:1f:9f:88:aa:b0:c7:a4:0c:ed:
fd:36:6d:c3:06:3e:3d:84:21:4a:e4:ac:ac:16:3b:ff:e8:de:
e7:d8:6f:8f:16:2e:2d:fd:3c:d1:71:57:7a:9a:67:db:60:7e:
e5:ca:2d:41:cb:d4:a9:b0:3d:ce:e6:12:9b:10:6f:13:b1:74:
00:23:38:a0:a4:fd:db:81:f8:25:27:c5:c9:ef:36:c9:69:a3:
12:38:a9:79:bf:aa:74:99:e0:99:5c:9a:85:8a:1e:46:7a:6d:
e9:97:81:3c:1f:96:07:df:cb:3c:5d:c8:4f:f4:2f:9b:9c:f4:
5f:96:e9:60:b9:af:64:16:58:42:d3:99:a5:86:e2:a9:ab:78:
e7:28:22:d4:e8:54:f1:5e:3d:72:ed:f0:c5:0a:e7:ea:9d:0a:
7f:88:31:4c:b5:44:12:37:43:8c:bd:34:7f:95:5e:5a:50:93:
80:10:13:f4:99:0e:dc:90:bf:7b:e2:ac:16:96:ef:6b:76:ba:
bb:7a:04:d5:e8:fd:8d:6c:22:32:4d:d3:04:e2:80:7f:d6:df:
c3:59:89:d3:3e:0e:b2:11:ae:af:ed:09:f7:5c:f9:fb:19:22:
9c:52:5d:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:45 2023 by rpki-client on console.sobornost.net