Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/6c15e8-8a82-49d5-a309-38be6a47cfcc/1/FDF6LVb5FP1aWfVRMZR84-We4mU.roa
File: FDF6LVb5FP1aWfVRMZR84-We4mU.roa (raw, json)
Hash identifier: BjQes3sTSBj3zj1AZihxf40XH3A6RdXWEKNA9T2arfY=
Subject key identifier: 14:31:7A:2D:56:F9:14:FD:5A:59:F5:51:31:94:7C:E3:E5:9E:E2:65
Certificate issuer: /CN=e996a6ffdad5ceb2626617bd6ed9c4ec571d0f3a
Certificate serial: 01680B2F
Authority key identifier: E9:96:A6:FF:DA:D5:CE:B2:62:66:17:BD:6E:D9:C4:EC:57:1D:0F:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Zam_9rVzrJiZhe9btnE7FcdDzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/6c15e8-8a82-49d5-a309-38be6a47cfcc/1/FDF6LVb5FP1aWfVRMZR84-We4mU.roa
Signing time: Sat 01 Jan 2022 06:03:17 +0000
ROA not before: Sat 01 Jan 2022 06:03:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47993
IP address blocks: 91.208.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23595823 (0x1680b2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e996a6ffdad5ceb2626617bd6ed9c4ec571d0f3a
Validity
Not Before: Jan 1 06:03:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14317a2d56f914fd5a59f55131947ce3e59ee265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:66:e6:9b:a5:50:e3:71:7e:0f:62:ff:8b:cd:
ff:e2:2b:f4:d8:2c:37:4d:4c:ed:ae:e1:4d:18:88:
c2:27:e2:0a:a4:4b:dc:26:b8:54:3a:c2:06:66:6b:
10:bf:10:b6:dc:ab:f3:8f:64:b5:9b:2c:37:89:16:
59:2b:54:fc:02:06:9b:1a:d3:be:b5:fd:c4:7c:ce:
d5:23:2c:6c:8e:00:1e:c6:0a:21:b6:f5:f0:f7:ca:
cb:2d:e2:24:05:37:b5:41:fc:93:fd:81:9b:f7:ad:
45:00:2e:d1:6d:7e:ca:04:08:18:19:9d:97:38:cb:
fe:e2:47:3f:ce:c2:c2:eb:20:ee:9d:be:68:33:27:
55:8f:4b:a0:56:fb:97:3d:26:f9:82:96:20:47:88:
c5:95:58:40:e1:4a:9e:38:fc:55:8f:ab:a6:f9:61:
33:1c:16:f5:5d:b9:39:4e:c2:c9:00:98:01:b1:38:
6b:6e:6c:ea:f9:10:48:b0:ce:02:ad:8b:46:9f:d9:
06:eb:01:13:c4:6d:1c:33:1b:2f:23:51:43:3a:27:
34:2e:5a:6f:b9:68:a9:28:24:ab:09:3f:59:c8:b0:
cd:b8:3a:88:7b:3f:7d:f0:c9:9b:06:e7:dc:49:21:
12:b4:da:6b:ba:91:9b:53:77:8f:ec:5f:9a:05:a5:
de:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:31:7A:2D:56:F9:14:FD:5A:59:F5:51:31:94:7C:E3:E5:9E:E2:65
X509v3 Authority Key Identifier:
keyid:E9:96:A6:FF:DA:D5:CE:B2:62:66:17:BD:6E:D9:C4:EC:57:1D:0F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Zam_9rVzrJiZhe9btnE7FcdDzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6c15e8-8a82-49d5-a309-38be6a47cfcc/1/FDF6LVb5FP1aWfVRMZR84-We4mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6c15e8-8a82-49d5-a309-38be6a47cfcc/1/6Zam_9rVzrJiZhe9btnE7FcdDzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.168.0/24
Signature Algorithm: sha256WithRSAEncryption
01:3c:18:60:c1:87:27:c5:44:4b:fe:ae:86:0f:19:b9:2c:b4:
11:04:01:e9:e7:64:2b:48:37:96:2f:42:9e:ae:f4:e1:14:5a:
0a:97:c0:ee:e9:f8:3e:e5:e9:73:04:fa:d7:9c:cb:ac:5a:a2:
f9:bb:68:e9:b5:a1:51:ed:ba:3c:d4:e9:ef:2b:da:f6:2a:ec:
c5:b2:2a:aa:b0:21:7d:60:f5:ba:f2:bb:10:73:a0:47:f9:1e:
99:8e:2c:15:09:08:c3:a8:d1:d9:90:47:31:79:c9:f0:9b:8e:
57:5f:69:2b:97:98:c3:32:76:79:cc:37:6d:e9:9b:0d:7c:71:
d0:f4:b6:09:74:3e:ea:3a:55:03:00:bf:9e:eb:e3:68:1c:17:
47:9f:af:a7:b6:17:ad:6e:53:39:fe:c5:d5:7b:dd:1c:cb:b4:
b5:28:11:35:b9:99:50:9e:5e:1c:38:31:33:9c:cc:f5:de:ca:
4d:1b:b1:d9:d4:b4:cd:af:74:37:19:38:ac:b5:d9:ad:6c:6d:
b6:48:73:73:e0:33:0b:1c:3f:3a:6d:b9:61:9c:36:6b:9c:f0:
5f:d5:dd:5a:6e:b8:17:36:69:5d:a9:c3:c7:0b:e4:c5:b4:df:
f6:f0:6b:6c:74:05:83:d4:2c:6c:8a:a4:62:56:28:98:96:5b:
db:7f:b0:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:14 2023 by rpki-client on console-ams.rpki-client.org