Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/77f2c5-412a-4e4d-8cbf-e4d8cf733ec9/1/foVjikAK5o8zM7fr30tlit_c3Wg.roa
File: foVjikAK5o8zM7fr30tlit_c3Wg.roa (raw, json)
Hash identifier: 8VuXmTwJtSu6+bMVjz6/DKkYKVosFw50oZyBZdV582s=
Subject key identifier: 7E:85:63:8A:40:0A:E6:8F:33:33:B7:EB:DF:4B:65:8A:DF:DC:DD:68
Certificate issuer: /CN=09590eef9e1d1af8b72e518ec6ccf59cd7f751f5
Certificate serial: 01850D9524357F09F56AD0786067762639BB
Authority key identifier: 09:59:0E:EF:9E:1D:1A:F8:B7:2E:51:8E:C6:CC:F5:9C:D7:F7:51:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CVkO754dGvi3LlGOxsz1nNf3UfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/77f2c5-412a-4e4d-8cbf-e4d8cf733ec9/1/foVjikAK5o8zM7fr30tlit_c3Wg.roa
Signing time: Tue 13 Dec 2022 22:22:35 +0000
ROA not before: Tue 13 Dec 2022 22:22:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43397
IP address blocks: 91.194.230.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0d:95:24:35:7f:09:f5:6a:d0:78:60:67:76:26:39:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09590eef9e1d1af8b72e518ec6ccf59cd7f751f5
Validity
Not Before: Dec 13 22:22:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e85638a400ae68f3333b7ebdf4b658adfdcdd68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4a:8d:c1:82:1e:04:51:85:b1:92:01:37:fb:
b6:34:ec:31:34:27:cb:80:ac:85:86:5a:c3:7b:fc:
96:cc:62:35:0a:0d:d0:5a:dc:8a:dc:0d:69:92:c1:
14:03:7d:49:50:3b:29:f5:cf:bb:e3:e9:03:fd:c2:
43:e7:5f:48:d4:46:cc:64:71:a6:28:0c:7f:84:76:
8d:f9:0e:78:70:92:59:cb:63:35:bf:96:b8:84:3f:
f9:85:55:97:11:81:db:8b:24:e8:22:52:8d:5a:6a:
e0:43:ef:f7:b7:16:b5:e8:13:56:7e:5f:e7:fe:84:
ea:ac:38:ac:77:4a:9d:42:7c:d7:04:6e:3f:13:2a:
7e:8d:87:59:e7:1b:01:39:c5:78:3e:39:8f:a9:dd:
61:2a:1b:55:c1:1e:66:32:78:1e:3d:65:4f:90:6c:
92:ea:52:2b:e5:cc:fe:e8:ba:e5:e7:ff:ac:46:63:
dd:9f:7f:c9:25:75:d2:66:67:ad:88:3b:ca:07:52:
56:2b:18:48:ae:d6:83:59:82:bc:0b:d5:79:de:2e:
fb:aa:da:eb:03:a3:6a:64:9a:f4:af:ac:d4:8c:fa:
c0:09:1c:57:c9:e7:9b:9a:a3:ec:32:37:d3:9e:ca:
75:d0:4f:67:67:4f:48:46:a0:d5:bb:b6:81:59:87:
d0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:85:63:8A:40:0A:E6:8F:33:33:B7:EB:DF:4B:65:8A:DF:DC:DD:68
X509v3 Authority Key Identifier:
keyid:09:59:0E:EF:9E:1D:1A:F8:B7:2E:51:8E:C6:CC:F5:9C:D7:F7:51:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CVkO754dGvi3LlGOxsz1nNf3UfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/77f2c5-412a-4e4d-8cbf-e4d8cf733ec9/1/foVjikAK5o8zM7fr30tlit_c3Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/77f2c5-412a-4e4d-8cbf-e4d8cf733ec9/1/CVkO754dGvi3LlGOxsz1nNf3UfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.230.0/23
Signature Algorithm: sha256WithRSAEncryption
23:c2:f0:e2:50:8e:ea:3c:d8:ed:f4:c6:d5:0c:0b:76:c7:8c:
f9:e0:47:00:fc:16:90:6b:e4:2f:73:de:4e:e2:6e:ee:0a:d8:
b3:00:e4:3c:0d:2b:09:ef:15:2b:98:41:6f:af:8e:cc:a8:e5:
da:dd:e9:db:9d:0b:2b:12:ef:1e:bc:d0:40:f6:8c:04:ac:fa:
a3:29:94:55:2c:f4:ab:bf:f0:db:e8:fe:b5:77:9e:f8:64:00:
28:95:04:0a:6c:4c:00:09:cb:40:dc:e4:bb:34:e5:2f:bd:ae:
8b:77:7a:9b:25:b9:c5:bf:db:b3:0b:3f:8f:a6:33:76:3f:af:
3b:49:c7:5c:50:aa:ac:f5:5a:53:bc:e2:1f:75:1e:62:6e:eb:
8f:8b:18:01:3e:fc:6b:c7:63:fd:ef:e6:d7:60:6e:5b:8d:89:
b3:be:a1:05:ba:fb:47:a6:3a:41:8c:0f:a6:e1:fe:22:87:d4:
b9:d4:35:80:95:1b:56:cb:75:af:c4:6c:18:03:c0:e6:65:b4:
ba:f1:c1:78:37:21:31:9c:92:b1:90:7f:d9:e9:e1:60:5b:38:
88:6f:a9:4e:a1:90:69:8d:53:a2:a4:e6:29:bb:97:7f:2d:de:
12:a7:fd:bf:9e:89:4b:b7:2f:ba:02:96:b3:d2:16:dd:f1:c2:
78:94:16:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:08 2024 by rpki-client on console-fra.rpki-client.org