Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1912e8-0d6b-4ed6-8ae4-7d482aa48c68/1/I0iNMLQCDz0NwU4SEaM7E565vdc.roa
File: I0iNMLQCDz0NwU4SEaM7E565vdc.roa (raw, json)
Hash identifier: jgxO2B/kP2SaLto/62MmhwyMGHYzRAaN28dMUBerJPo=
Subject key identifier: 23:48:8D:30:B4:02:0F:3D:0D:C1:4E:12:11:A3:3B:13:9E:B9:BD:D7
Certificate issuer: /CN=31836010eedef15f76adeba9f729a828bf2be8cb
Certificate serial: 018342801E2D4F0A7160B5CB46C815F9BF8D
Authority key identifier: 31:83:60:10:EE:DE:F1:5F:76:AD:EB:A9:F7:29:A8:28:BF:2B:E8:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYNgEO7e8V92reup9ymoKL8r6Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1912e8-0d6b-4ed6-8ae4-7d482aa48c68/1/I0iNMLQCDz0NwU4SEaM7E565vdc.roa
Signing time: Thu 15 Sep 2022 18:53:55 +0000
ROA not before: Thu 15 Sep 2022 18:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.239.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:42:80:1e:2d:4f:0a:71:60:b5:cb:46:c8:15:f9:bf:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31836010eedef15f76adeba9f729a828bf2be8cb
Validity
Not Before: Sep 15 18:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23488d30b4020f3d0dc14e1211a33b139eb9bdd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ac:ad:25:4e:2d:f3:f9:ad:bb:7c:c2:18:fd:
48:14:56:fd:3b:0c:55:cb:ea:b6:70:5f:f9:4c:5f:
04:14:c5:6d:66:03:61:0e:a2:a3:87:65:29:85:9a:
3f:9c:c2:0c:2b:a4:3e:f8:22:49:c1:7f:ec:91:39:
03:ab:79:04:a7:e0:b8:4c:2a:19:cd:b9:4a:c3:0e:
da:2b:3a:00:7e:ca:10:1c:8c:53:2d:82:6d:7d:53:
2e:c9:28:cb:2b:15:f2:55:42:8d:f9:68:1c:4f:f0:
18:18:98:fa:8f:3b:dd:8f:a0:8e:40:81:2d:a1:30:
0c:04:49:83:83:11:c7:66:bb:4f:4d:00:b2:44:46:
bc:63:74:76:ef:08:75:93:7a:87:cf:2e:06:b6:64:
ef:15:8d:4f:f3:45:56:3c:a5:d6:26:69:df:74:a2:
82:ea:5b:0d:1d:45:97:61:b3:96:3f:02:5d:23:66:
9c:03:00:48:8d:de:98:ab:92:c4:4e:35:25:ab:a9:
0c:2c:21:c4:2f:11:ca:7f:13:bf:08:50:44:ff:8c:
47:d7:fc:40:77:37:f6:d1:85:64:97:be:87:5b:4c:
84:93:e5:24:35:82:52:38:fd:16:19:28:2a:12:68:
2c:ac:33:20:8d:e1:27:12:a2:09:ba:0f:09:d5:50:
a5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:48:8D:30:B4:02:0F:3D:0D:C1:4E:12:11:A3:3B:13:9E:B9:BD:D7
X509v3 Authority Key Identifier:
keyid:31:83:60:10:EE:DE:F1:5F:76:AD:EB:A9:F7:29:A8:28:BF:2B:E8:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYNgEO7e8V92reup9ymoKL8r6Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1912e8-0d6b-4ed6-8ae4-7d482aa48c68/1/I0iNMLQCDz0NwU4SEaM7E565vdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1912e8-0d6b-4ed6-8ae4-7d482aa48c68/1/MYNgEO7e8V92reup9ymoKL8r6Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.211.0/24
Signature Algorithm: sha256WithRSAEncryption
74:8c:20:f5:c1:a5:a8:19:91:6b:2a:be:57:79:35:23:6d:c9:
17:d4:de:eb:eb:82:ae:05:c6:0d:18:eb:36:07:e8:4e:d8:bd:
89:f3:13:58:47:91:8e:b1:b7:de:88:4f:4b:f4:1d:c4:9a:29:
e0:c7:70:89:9c:38:f7:4b:e4:5d:39:62:fc:78:32:63:eb:3b:
20:83:ca:4d:dd:29:4c:55:12:0b:e3:4f:ea:d2:ce:fd:6d:ca:
d1:40:2c:89:16:ba:81:a2:95:fa:8d:8a:52:6b:a9:1d:fe:2b:
13:5b:73:01:98:61:3b:37:4d:93:fd:9e:9f:d7:71:54:ce:90:
e9:55:5d:21:fd:2b:5e:ac:60:f3:23:47:f3:4e:a8:32:8c:c4:
09:30:4a:fc:6d:31:41:9f:04:0e:6b:48:41:a1:00:98:08:48:
79:c9:7d:ee:cf:97:01:20:5d:25:ba:59:da:e5:9f:f2:fd:b3:
0b:7e:2d:2c:63:7a:da:7d:41:22:88:91:c8:fa:43:d3:76:da:
02:24:07:46:2d:b5:e6:a7:e0:61:83:11:84:d5:3e:01:5a:0c:
b1:aa:6c:ea:33:84:2f:42:e5:1a:15:02:0e:e3:70:f5:d6:e7:
2d:51:cc:df:65:14:8f:36:85:c6:13:32:af:76:70:99:30:31:
c4:78:d9:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:57 2023 by rpki-client on console-fra.rpki-client.org