Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/FqXwS3g9mICmJY-LnPqb3tN51Is.roa
File: FqXwS3g9mICmJY-LnPqb3tN51Is.roa (raw, json)
Hash identifier: 84AvwcGBREJPLrNmj9tNFcKRTKdrTuc3bYVxmKieVek=
Subject key identifier: 16:A5:F0:4B:78:3D:98:80:A6:25:8F:8B:9C:FA:9B:DE:D3:79:D4:8B
Certificate issuer: /CN=643daf122e3a87acaa6fdb62c35a252a199a58d9
Certificate serial: 01C058
Authority key identifier: 64:3D:AF:12:2E:3A:87:AC:AA:6F:DB:62:C3:5A:25:2A:19:9A:58:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/FqXwS3g9mICmJY-LnPqb3tN51Is.roa
Signing time: Fri 04 Mar 2022 12:51:49 +0000
ROA not before: Fri 04 Mar 2022 12:51:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57956
IP address blocks: 91.237.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114776 (0x1c058)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643daf122e3a87acaa6fdb62c35a252a199a58d9
Validity
Not Before: Mar 4 12:51:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16a5f04b783d9880a6258f8b9cfa9bded379d48b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:14:66:ab:70:d3:8a:4a:85:08:0b:19:89:a0:
89:94:49:3d:f3:a2:e6:43:21:2b:4b:25:98:58:22:
6f:a8:5b:ca:ad:a2:ef:bf:04:48:c2:21:6d:6a:ab:
d2:9f:a0:f1:2b:84:5f:4f:22:59:b9:e4:36:91:bd:
75:5b:07:aa:a2:60:59:5f:5b:c6:30:1f:2a:26:d4:
11:65:c8:19:9d:26:49:e4:e5:da:94:8b:c8:96:e7:
ac:60:6f:2f:e4:b6:2d:e6:61:ec:bc:79:04:3e:87:
36:0a:bc:d7:79:d3:5b:3e:8c:29:9e:7d:b0:d7:68:
4c:1b:10:8e:65:48:14:b3:d4:c3:10:91:06:07:3a:
ff:89:60:90:ee:0c:2f:16:17:7f:ca:a6:b4:fa:9d:
d1:52:9d:8d:5a:57:66:b7:11:bd:38:f1:1a:4b:3f:
de:12:0e:e0:3f:ab:55:58:d0:1b:80:b1:f4:78:8b:
79:04:f3:c4:d1:87:14:1b:92:91:93:7c:27:32:c1:
de:a1:0e:a2:78:27:7a:47:f8:2b:91:d4:74:74:88:
67:3d:2e:43:e2:2b:0d:2a:4c:d6:fc:db:88:81:47:
2f:03:7f:b6:99:0d:17:f8:a7:ba:12:ce:68:54:24:
76:71:9e:ac:27:2b:fe:7a:21:fb:dc:91:34:33:24:
3d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A5:F0:4B:78:3D:98:80:A6:25:8F:8B:9C:FA:9B:DE:D3:79:D4:8B
X509v3 Authority Key Identifier:
keyid:64:3D:AF:12:2E:3A:87:AC:AA:6F:DB:62:C3:5A:25:2A:19:9A:58:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/FqXwS3g9mICmJY-LnPqb3tN51Is.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.42.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:37:83:80:d9:3d:72:ed:9d:d4:5d:86:47:62:4c:46:16:d2:
ea:eb:e1:03:50:8e:80:1a:35:ab:fd:1a:1e:5b:fe:60:9f:ec:
42:76:d0:72:9b:5d:f0:20:5e:21:6e:be:ed:ab:d8:62:8d:fe:
24:c7:b4:75:b2:c7:6f:db:c1:18:95:6f:dd:f4:b5:76:14:c8:
f7:ea:4d:30:98:ae:a1:1c:17:f7:59:8e:3d:63:09:f5:be:ee:
c5:02:77:1b:5b:49:22:27:cb:d6:e1:f5:cc:2b:5a:ef:44:be:
40:25:ad:a4:db:4b:a4:28:90:5e:45:b1:18:d0:bc:c2:1c:60:
08:26:9d:ca:1d:fd:ec:1b:cf:a8:96:b4:0e:a1:5b:bb:10:dc:
5d:ae:2a:b5:fd:2f:f5:4a:65:73:a6:9b:e8:0f:33:a1:27:22:
11:b1:9c:e6:93:da:b6:74:a4:73:85:0f:fd:c3:48:6a:e6:e7:
3b:32:77:ca:11:32:ee:44:23:ee:60:c1:d7:b6:68:48:03:84:
36:a2:0a:ba:80:39:6e:39:1b:bf:3a:58:1a:e1:d0:33:b2:6f:
ef:93:9b:be:4c:e5:d0:98:18:5e:86:58:cc:b6:e9:3f:66:3f:
44:16:76:0f:3b:91:a9:a0:62:8e:d2:53:ea:4e:2e:58:47:cb:
46:69:6d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:50 2023 by rpki-client on console-ams.rpki-client.org