Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/638f28-00d5-463b-b16c-f845bfc42f6d/1/942F6eJV2siM9Q8wdhUxcX1lqOE.roa
File: 942F6eJV2siM9Q8wdhUxcX1lqOE.roa (raw, json)
Hash identifier: VUh1wFzxjEFuCreWjvyUmMv6uAJQFreev5+gsZRWCtU=
Subject key identifier: F7:8D:85:E9:E2:55:DA:C8:8C:F5:0F:30:76:15:31:71:7D:65:A8:E1
Certificate issuer: /CN=b0242b7e43053c913d62bf5dbb1682ffe6b8dfe2
Certificate serial: E2D86D
Authority key identifier: B0:24:2B:7E:43:05:3C:91:3D:62:BF:5D:BB:16:82:FF:E6:B8:DF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCQrfkMFPJE9Yr9duxaC_-a43-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/638f28-00d5-463b-b16c-f845bfc42f6d/1/942F6eJV2siM9Q8wdhUxcX1lqOE.roa
Signing time: Sat 01 Jan 2022 11:03:11 +0000
ROA not before: Sat 01 Jan 2022 11:03:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24971
IP address blocks: 91.214.192.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14866541 (0xe2d86d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0242b7e43053c913d62bf5dbb1682ffe6b8dfe2
Validity
Not Before: Jan 1 11:03:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f78d85e9e255dac88cf50f30761531717d65a8e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:70:9e:a4:f5:26:92:39:97:36:08:29:d0:48:
28:29:53:45:d9:16:ca:23:91:f2:48:df:b4:6b:12:
4a:af:87:76:55:48:ee:04:a9:00:aa:25:7e:85:6b:
ba:3b:c5:fa:b8:d9:a5:47:4e:5d:0c:b7:53:22:d8:
7b:81:39:8d:87:57:be:a2:30:ad:30:74:fa:fc:fd:
40:a8:fe:1c:f5:4c:73:15:cd:56:1d:7b:61:ee:21:
8f:05:07:f3:a9:a1:60:74:59:8c:84:02:af:eb:01:
78:a2:4b:7b:ff:ee:2b:69:1a:7a:e1:bd:58:05:34:
a6:ee:22:9a:81:88:55:ca:fc:af:42:2d:b4:bd:54:
ae:6d:57:15:d7:c9:22:24:7f:87:58:dc:63:3e:bc:
00:e6:30:1b:dd:cf:a9:c0:4d:81:31:b3:4e:b6:10:
a2:91:1b:30:94:c8:36:75:1f:bc:91:33:8b:f9:22:
49:09:49:e2:93:c6:df:8c:0d:bb:5f:c5:36:cc:e9:
d7:6f:ba:9c:02:01:d2:d0:ff:24:c4:a7:b7:d1:bb:
f8:0a:02:15:d2:ae:88:5a:b7:fa:61:38:44:d0:88:
1c:c1:47:3b:1a:be:4f:a7:73:fd:70:66:70:df:29:
e5:13:30:3a:ed:4a:a5:bb:7b:c0:54:71:59:21:2f:
ee:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:8D:85:E9:E2:55:DA:C8:8C:F5:0F:30:76:15:31:71:7D:65:A8:E1
X509v3 Authority Key Identifier:
keyid:B0:24:2B:7E:43:05:3C:91:3D:62:BF:5D:BB:16:82:FF:E6:B8:DF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCQrfkMFPJE9Yr9duxaC_-a43-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/638f28-00d5-463b-b16c-f845bfc42f6d/1/942F6eJV2siM9Q8wdhUxcX1lqOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/638f28-00d5-463b-b16c-f845bfc42f6d/1/sCQrfkMFPJE9Yr9duxaC_-a43-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.192.0/22
Signature Algorithm: sha256WithRSAEncryption
63:c4:b5:8c:0e:e8:53:9f:13:24:bf:1b:c6:96:0b:e6:0b:e1:
4b:d8:4f:8c:47:d0:7b:c8:c2:db:12:9e:2d:71:9a:9c:03:88:
ad:ea:62:92:55:99:21:f3:7e:98:00:be:cf:3d:1f:41:cf:72:
75:38:1b:78:0b:2f:de:d9:6a:10:fc:7c:f0:ef:b0:61:12:26:
74:8b:d6:7e:81:53:1a:58:e0:2a:25:9d:de:a3:9e:72:af:7e:
87:65:77:f6:ba:3c:e7:2f:05:d0:60:de:be:bc:37:1b:30:d2:
72:3a:71:03:38:02:30:58:22:a9:2b:a9:f2:27:a0:5e:ab:69:
b2:95:81:3d:51:db:0d:0e:95:2e:d0:ab:1d:7c:91:60:88:36:
80:3f:47:cc:76:fd:85:68:ad:4f:a9:be:6b:dc:40:c5:84:1a:
1c:93:c1:9a:6c:94:93:57:67:26:c5:01:39:ce:c5:ad:7b:ad:
1b:bb:bb:d9:df:fb:b2:8d:eb:7a:6f:25:9d:f7:08:f6:14:7f:
85:cb:8d:8f:81:87:6c:aa:3e:a1:c1:06:6a:a8:ca:de:7f:6a:
c9:5e:c2:1f:9c:37:21:e7:73:ae:24:39:c8:78:ea:98:eb:e6:
97:68:00:4d:aa:28:04:5a:8d:bf:cf:a5:87:7a:05:46:a3:cb:
8e:9a:59:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:47 2023 by rpki-client on console-fra.rpki-client.org