Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/53IqgsVpvjfwm57ZNMH-lWGDNQ0.roa
File: 53IqgsVpvjfwm57ZNMH-lWGDNQ0.roa (raw, json)
Hash identifier: SS69rczK/IrTsopnIfnieKe6z7SA7Qvxmu2AkRvmYgI=
Subject key identifier: E7:72:2A:82:C5:69:BE:37:F0:9B:9E:D9:34:C1:FE:95:61:83:35:0D
Certificate issuer: /CN=fce2fd8df1a266ce13457fbe0f938b9abe3aa761
Certificate serial: 01835B04E45C897BA9D26734FA71589046F6
Authority key identifier: FC:E2:FD:8D:F1:A2:66:CE:13:45:7F:BE:0F:93:8B:9A:BE:3A:A7:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OL9jfGiZs4TRX--D5OLmr46p2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/53IqgsVpvjfwm57ZNMH-lWGDNQ0.roa
Signing time: Tue 20 Sep 2022 13:09:50 +0000
ROA not before: Tue 20 Sep 2022 13:09:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52114
IP address blocks: 91.223.94.0/24 maxlen: 24
2a03:e500:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:5b:04:e4:5c:89:7b:a9:d2:67:34:fa:71:58:90:46:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce2fd8df1a266ce13457fbe0f938b9abe3aa761
Validity
Not Before: Sep 20 13:09:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7722a82c569be37f09b9ed934c1fe956183350d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:59:10:3a:47:14:65:31:12:28:75:d7:0f:8b:
22:40:f7:f3:61:31:4f:18:9d:86:0d:96:0b:c9:6e:
1e:12:43:2f:83:1d:15:ee:b6:7e:2b:eb:8d:19:e8:
be:8a:50:1b:1d:09:b7:f3:4d:c5:32:50:1d:97:e8:
36:2b:e1:47:c0:3d:a9:b4:46:d8:7b:3b:ac:27:11:
6c:1f:57:fd:1d:42:32:12:0d:80:a0:4e:de:e6:75:
9d:3e:92:80:23:4a:c0:06:3a:66:d4:86:8f:a2:43:
2d:c9:23:15:8f:18:29:64:75:a8:ac:b4:c3:f1:f0:
bc:1c:2d:6c:ad:48:c9:16:4c:46:1c:a0:84:a4:19:
15:8c:57:77:26:9a:63:ed:06:96:7b:ab:56:7b:d7:
b4:ba:a7:d0:3a:93:f8:4b:4c:b5:c3:2f:63:66:80:
24:7e:10:54:73:05:2a:e6:15:42:5e:82:cb:32:c8:
e4:f8:a9:b3:d8:03:7b:41:84:a1:14:75:6f:0c:c9:
97:11:f3:eb:9a:6a:11:c4:64:c8:1c:a9:23:a0:3c:
33:17:2a:bd:ef:80:bf:e4:1c:13:be:31:63:08:ef:
6b:d0:ba:75:75:11:6d:6e:47:03:2f:d9:6c:e1:5e:
e8:51:26:57:16:11:2c:13:65:48:c7:ff:9f:04:7d:
24:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:72:2A:82:C5:69:BE:37:F0:9B:9E:D9:34:C1:FE:95:61:83:35:0D
X509v3 Authority Key Identifier:
keyid:FC:E2:FD:8D:F1:A2:66:CE:13:45:7F:BE:0F:93:8B:9A:BE:3A:A7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OL9jfGiZs4TRX--D5OLmr46p2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/53IqgsVpvjfwm57ZNMH-lWGDNQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/_OL9jfGiZs4TRX--D5OLmr46p2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.94.0/24
IPv6:
2a03:e500:5::/48
Signature Algorithm: sha256WithRSAEncryption
75:aa:f6:5b:b1:79:23:b3:f1:19:9e:8f:f8:11:b5:c4:8a:fa:
20:56:53:13:a1:7c:35:74:af:ef:63:6a:b6:f7:6b:16:c8:27:
29:50:87:60:90:9c:5a:64:ab:b5:f9:17:2c:13:b2:6d:ca:53:
0f:8e:a6:34:6c:ad:b6:f6:3e:cc:5e:f9:e7:ad:50:0f:4a:8b:
9a:b6:22:5c:d1:85:50:ea:46:b5:63:19:78:c4:3f:72:e4:b9:
6a:e9:d8:b3:a7:80:72:bc:f8:34:7a:3c:c5:e0:71:cb:7b:0b:
dc:94:d3:50:e4:ed:d7:f6:f5:ec:14:ea:fb:be:93:fc:7e:51:
92:91:8d:42:24:50:08:23:3f:9d:6c:11:10:fc:15:35:05:a9:
3b:ff:1c:1b:aa:ba:63:02:46:4e:ab:a9:62:ee:53:b5:2b:e7:
5a:cb:32:00:d4:ba:c8:55:de:d1:64:41:2c:c2:58:12:6e:c3:
94:b3:c5:55:74:7d:1a:df:ae:c0:be:69:c7:b2:53:a2:21:f6:
92:79:e7:cc:ad:54:98:d9:5c:bf:e0:8c:ee:96:dd:49:b4:ea:
8f:33:de:0d:6e:fe:c1:8f:15:98:b4:04:ce:1a:84:86:65:d7:
0e:68:e7:7d:9b:ab:07:f6:d1:62:50:c8:4f:8f:98:4e:2f:8c:
22:da:2b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:03 2024 by rpki-client on console-fra.rpki-client.org