Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4l9lYP5737GemBsv539c1eL2vic.roa
File: 4l9lYP5737GemBsv539c1eL2vic.roa (raw, json)
Hash identifier: WIzp28WpjyQ2pdvs2aUeL7hPoLMo6gbHthHYxVynuvw=
Subject key identifier: E2:5F:65:60:FE:7B:DF:B1:9E:98:1B:2F:E7:7F:5C:D5:E2:F6:BE:27
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 0DEAA0
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4l9lYP5737GemBsv539c1eL2vic.roa
Signing time: Mon 24 Jan 2022 09:08:48 +0000
ROA not before: Mon 24 Jan 2022 09:08:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.232.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 912032 (0xdeaa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Jan 24 09:08:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e25f6560fe7bdfb19e981b2fe77f5cd5e2f6be27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9b:32:5d:63:8a:57:fe:aa:c1:ee:4a:4c:25:
a5:5c:57:eb:5c:de:a1:83:ce:7d:b1:a0:d9:38:3f:
32:3c:98:69:bc:e9:82:a3:64:99:3f:d2:a8:b4:a1:
12:ce:5c:ea:a5:01:cc:d1:51:bf:12:3a:bb:ca:47:
a6:61:bd:08:6e:dd:b8:c9:af:6e:2e:d3:01:66:66:
2d:11:cc:67:01:9f:23:ef:96:58:f2:6b:ca:db:76:
8f:7b:b6:21:95:fa:34:16:f6:06:ff:95:85:95:73:
74:4a:26:2c:ec:3f:6c:fb:40:d9:46:f8:ad:d4:78:
98:a8:0f:d9:94:f2:f7:a2:b0:91:31:74:f0:f6:c2:
84:9c:16:1f:b1:cd:41:94:a2:25:a8:a3:70:a0:2c:
ad:27:27:9d:18:ce:05:52:cb:14:f2:44:4e:e9:4d:
30:e3:fe:a1:f2:7d:32:a2:70:ee:79:bb:10:09:f6:
58:c5:7e:d0:f2:15:b2:1c:94:1a:f2:31:51:b4:a8:
77:61:3e:63:59:25:8a:e1:1e:04:fe:bf:19:eb:a7:
3b:5f:88:94:3a:9b:55:8a:e4:b7:62:ec:87:b0:04:
5e:a7:42:e2:a3:fa:2b:a4:70:b0:5f:86:5c:c5:fb:
1a:5d:5d:02:20:ed:8d:96:c0:55:d1:d4:22:02:14:
db:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:5F:65:60:FE:7B:DF:B1:9E:98:1B:2F:E7:7F:5C:D5:E2:F6:BE:27
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4l9lYP5737GemBsv539c1eL2vic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
62:7c:77:24:86:20:b3:51:bc:e8:bc:fe:2b:93:fb:45:63:a1:
a6:72:72:14:c2:5e:22:43:0e:f6:fa:0d:de:e7:b6:6b:5c:0b:
58:e3:3b:3a:13:ee:a7:77:96:3b:82:0a:70:38:85:c1:bf:11:
01:45:71:7c:f2:41:a9:92:12:a6:2f:5f:d8:fb:2e:57:05:4e:
2b:7d:de:78:4e:80:b5:e1:66:12:15:74:8f:dd:96:23:64:d4:
2e:32:a0:e9:dd:17:fc:0a:88:5c:79:56:e7:ca:c8:a0:b6:3d:
d8:d1:cb:f7:5a:4b:54:b8:a8:2f:2b:b7:b4:c4:8e:e4:bb:87:
19:7b:43:81:36:7b:0e:be:13:e4:80:77:db:ee:31:a2:98:a5:
89:25:a1:6a:86:4b:10:6b:73:da:ad:24:1f:28:ac:82:fe:91:
58:88:fe:fb:4c:24:bd:47:69:5b:4c:ec:d4:64:cc:1e:cc:0c:
86:b3:16:56:dc:4a:38:d6:2d:3e:f3:ba:36:c6:49:b9:dd:e3:
21:15:8e:b2:06:55:1d:4f:f1:96:41:8a:d4:1d:f8:e9:93:5d:
0b:5a:e0:d3:76:79:73:b4:61:81:de:e6:e0:ed:b7:03:97:7b:
b4:61:b0:66:50:68:d2:17:03:6c:11:e1:4b:dc:44:7d:09:52:
bf:d7:3b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:25 2024 by rpki-client on console-fra.rpki-client.org