Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/95ed1a-e880-4603-89f1-4df965c91d66/1/91vfH1NV7UoEq974UKFN2gOYSJk.roa
File: 91vfH1NV7UoEq974UKFN2gOYSJk.roa (raw, json)
Hash identifier: /mKLqmLkFJYj3KIIyWNWpuoI15pzPx0k4Oz8WPfUraM=
Subject key identifier: F7:5B:DF:1F:53:55:ED:4A:04:AB:DE:F8:50:A1:4D:DA:03:98:48:99
Certificate issuer: /CN=69ceafe923e195db642a62020688dbe5b1d0687f
Certificate serial: 0645473D
Authority key identifier: 69:CE:AF:E9:23:E1:95:DB:64:2A:62:02:06:88:DB:E5:B1:D0:68:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ac6v6SPhldtkKmICBojb5bHQaH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/95ed1a-e880-4603-89f1-4df965c91d66/1/91vfH1NV7UoEq974UKFN2gOYSJk.roa
Signing time: Sat 01 Jan 2022 12:01:55 +0000
ROA not before: Sat 01 Jan 2022 12:01:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59943
IP address blocks: 195.225.164.0/22 maxlen: 24
194.247.160.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105203517 (0x645473d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69ceafe923e195db642a62020688dbe5b1d0687f
Validity
Not Before: Jan 1 12:01:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f75bdf1f5355ed4a04abdef850a14dda03984899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:49:f2:22:d2:2d:13:24:95:fc:5e:81:c5:85:
36:6d:8f:ad:63:f9:56:1b:73:74:fe:d3:d2:b1:8c:
55:e2:01:bf:e2:3a:98:80:7e:ac:17:27:35:36:01:
0c:48:c2:5f:fb:cb:d3:11:d4:bf:6f:2e:d8:1c:c3:
c7:08:d0:2a:91:12:e7:50:69:5a:7c:c2:f9:d7:6b:
1b:23:1b:fe:23:d9:b4:ab:80:5c:5c:10:4e:f5:8f:
8c:01:3e:cc:68:c2:86:d1:8c:e9:52:69:36:b5:8a:
84:69:b3:26:84:36:82:a3:fc:33:e3:8c:1a:8d:3a:
8b:3d:42:2b:4c:90:87:23:b4:29:7b:0b:ca:fc:4d:
ca:21:e5:ae:0e:9c:6a:f9:ca:d2:77:62:69:6f:74:
d6:90:c6:b0:da:8b:3c:49:97:41:56:65:3c:d7:ba:
87:37:9c:b0:e3:6f:44:fb:f7:a8:f8:77:fc:94:86:
48:ce:d2:a2:a9:71:a8:74:7a:2f:bb:e3:c8:db:29:
36:ed:3d:86:e7:86:dd:3c:fb:e9:8d:ce:8f:e3:04:
7b:6f:8c:33:0e:50:a1:b5:21:d3:48:bc:f6:2c:0e:
19:03:94:49:ae:a3:33:30:72:6f:57:02:3a:ac:49:
ae:1d:cc:3d:96:24:74:ac:84:4f:bb:2d:ad:71:e9:
9c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5B:DF:1F:53:55:ED:4A:04:AB:DE:F8:50:A1:4D:DA:03:98:48:99
X509v3 Authority Key Identifier:
keyid:69:CE:AF:E9:23:E1:95:DB:64:2A:62:02:06:88:DB:E5:B1:D0:68:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac6v6SPhldtkKmICBojb5bHQaH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/95ed1a-e880-4603-89f1-4df965c91d66/1/91vfH1NV7UoEq974UKFN2gOYSJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/95ed1a-e880-4603-89f1-4df965c91d66/1/ac6v6SPhldtkKmICBojb5bHQaH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.160.0/23
195.225.164.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:34:82:23:5a:17:62:c5:d2:ab:78:4d:07:ee:86:28:e3:a6:
a8:22:55:2a:9a:7c:c6:73:c3:13:2b:d9:ab:61:ff:12:02:c5:
b5:40:3b:24:54:cf:8c:b3:2c:9d:26:8e:e0:06:7f:67:4b:23:
09:e0:c8:27:80:8b:27:83:25:24:6f:ef:14:db:18:2d:59:97:
ef:92:25:c5:96:bd:90:6b:eb:c1:b7:46:ef:ee:9c:b4:7c:85:
9e:c1:cc:1e:b6:f9:00:74:e4:66:57:7a:72:00:46:0d:c0:58:
19:a3:7b:7e:11:2e:53:ee:d0:04:4b:65:b0:79:21:11:dd:a2:
28:40:5e:cf:d2:ab:a9:57:a3:57:1a:e9:9c:b5:6d:68:4d:45:
a9:44:b3:49:83:74:62:4a:e7:bf:d0:f0:fb:1b:fe:9b:f3:f5:
ba:6f:09:3e:d1:7d:29:b4:c2:60:f3:8f:cc:74:ab:97:49:52:
f1:21:f8:5e:90:44:4b:76:b5:d6:f0:5a:f3:b2:fd:4b:a3:97:
d6:a4:33:c5:be:ad:f6:ca:3f:2a:f0:3b:b2:a9:d6:d1:af:49:
91:cc:11:44:7f:ab:be:da:a0:b9:4b:e9:2d:ee:f0:e2:6c:ca:
35:9e:e3:b7:c5:de:fa:7f:9d:e5:65:a6:31:75:94:e8:c0:d3:
f8:da:3c:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:05 2024 by rpki-client on console-fra.rpki-client.org