Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/0d5d9f-5808-4871-a24d-bebdf4cd485b/1/7u6dU_8NCq8dcTGYWs-HURYUvtw.roa
File: 7u6dU_8NCq8dcTGYWs-HURYUvtw.roa (raw, json)
Hash identifier: tiXdxSvaJ94OaqgW/0+sXruHOsQbACuISWgdYXvg+Lc=
Subject key identifier: EE:EE:9D:53:FF:0D:0A:AF:1D:71:31:98:5A:CF:87:51:16:14:BE:DC
Certificate issuer: /CN=ee0bd0ea95a190c703a85e09ebc5e5fda5cdce32
Certificate serial: 14C0E909
Authority key identifier: EE:0B:D0:EA:95:A1:90:C7:03:A8:5E:09:EB:C5:E5:FD:A5:CD:CE:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7gvQ6pWhkMcDqF4J68Xl_aXNzjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/0d5d9f-5808-4871-a24d-bebdf4cd485b/1/7u6dU_8NCq8dcTGYWs-HURYUvtw.roa
Signing time: Sat 01 Jan 2022 13:00:44 +0000
ROA not before: Sat 01 Jan 2022 13:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197255
IP address blocks: 91.217.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 348186889 (0x14c0e909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee0bd0ea95a190c703a85e09ebc5e5fda5cdce32
Validity
Not Before: Jan 1 13:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eeee9d53ff0d0aaf1d7131985acf87511614bedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:06:74:4c:4d:f1:ec:9e:af:26:12:ab:c5:5b:
0e:2b:78:43:64:03:b9:97:11:0c:6e:8e:5e:5f:dc:
45:f7:5b:d9:38:9e:9b:c9:1a:80:18:18:69:02:0f:
f4:d4:41:b1:72:15:77:18:5e:35:d3:eb:a5:c4:69:
50:33:59:1c:08:5c:68:86:7a:72:87:35:b5:3f:f8:
8a:d8:f6:23:23:24:6e:4a:13:4b:b4:5d:14:74:b6:
a3:af:60:18:22:fb:de:24:d0:29:7d:f8:8b:03:5b:
c5:e1:ae:ea:4b:ad:c6:8d:5d:e5:d5:bb:39:61:a7:
d4:ff:cc:9e:a1:c4:39:a7:78:b4:c6:02:4b:1e:10:
14:e4:31:8d:a2:03:53:e5:40:ac:c8:b3:94:ac:f4:
a7:21:5f:d6:8f:14:74:e0:c4:ce:b1:53:6b:13:26:
9b:67:e1:2d:ed:58:1f:dc:3c:5b:cd:e6:fb:49:c7:
ba:99:b9:b8:9f:e8:56:8c:37:8b:4e:4a:a3:32:7d:
64:a6:67:19:fe:f1:12:a8:00:9b:50:3d:90:07:0d:
15:e4:f4:a7:4f:c3:b2:71:06:b1:4c:7a:e5:bd:6e:
35:15:76:fb:7a:8b:24:a1:8a:fe:70:11:43:d9:1c:
5b:45:30:43:40:b9:f8:48:23:56:8a:4d:8b:da:9b:
1f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:EE:9D:53:FF:0D:0A:AF:1D:71:31:98:5A:CF:87:51:16:14:BE:DC
X509v3 Authority Key Identifier:
keyid:EE:0B:D0:EA:95:A1:90:C7:03:A8:5E:09:EB:C5:E5:FD:A5:CD:CE:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7gvQ6pWhkMcDqF4J68Xl_aXNzjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/0d5d9f-5808-4871-a24d-bebdf4cd485b/1/7u6dU_8NCq8dcTGYWs-HURYUvtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/0d5d9f-5808-4871-a24d-bebdf4cd485b/1/7gvQ6pWhkMcDqF4J68Xl_aXNzjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.60.0/23
Signature Algorithm: sha256WithRSAEncryption
23:fb:fd:ec:fa:6d:0f:6d:fe:8a:d3:37:a5:17:6c:a5:1d:2c:
1a:7b:26:67:f0:85:6e:52:0d:26:14:25:af:29:c8:72:1e:1e:
30:21:55:34:7c:fa:98:57:d1:81:93:ae:c6:09:b7:7c:96:13:
95:a5:69:3f:d5:3e:96:b5:56:5a:98:c0:ca:a8:bf:d7:36:6c:
3b:ba:94:53:1a:55:ab:91:d8:33:86:41:43:d2:67:7a:65:c2:
a1:9a:22:a0:ff:bf:1e:70:36:81:77:eb:b6:77:c9:4c:b0:0d:
11:03:7e:80:d5:fc:40:67:1d:a8:ad:63:8e:9a:0c:d5:49:72:
3e:53:65:2d:bc:85:ed:2e:09:50:87:69:86:e7:e2:0f:00:db:
36:3c:71:79:0f:4a:c2:ab:8c:08:10:be:0e:35:f3:94:a0:bb:
75:ff:69:28:38:ed:c6:dc:a4:a4:b1:df:34:8b:23:fd:50:f9:
fe:eb:a8:35:50:d2:2f:05:a7:b8:34:e7:bf:84:f5:f8:c3:08:
68:14:aa:a4:cd:be:ae:40:76:80:06:4d:71:15:4f:58:6e:36:
ec:e6:28:ef:1b:d9:cc:fd:a9:48:3b:45:65:46:4d:d9:82:c1:
b2:7e:10:04:83:3f:6b:56:b5:81:85:7e:b9:9d:7a:a7:e7:05:
d0:df:51:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:35 2023 by rpki-client on console-fra.rpki-client.org