Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/cax5If94DUo-3eowYDMJ4EhlV1M.roa
File: cax5If94DUo-3eowYDMJ4EhlV1M.roa (raw, json)
Hash identifier: F3OPInNX2iaZ3P56Cyf+J/sJ3E24S0e+abefaLAuLdM=
Subject key identifier: 71:AC:79:21:FF:78:0D:4A:3E:DD:EA:30:60:33:09:E0:48:65:57:53
Certificate issuer: /CN=78ac31635d091be6155743311fe1db7c7af3477b
Certificate serial: 0184E1E987C739E7BDACDCB8AA1BE708BF57
Authority key identifier: 78:AC:31:63:5D:09:1B:E6:15:57:43:31:1F:E1:DB:7C:7A:F3:47:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eKwxY10JG-YVV0MxH-HbfHrzR3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/cax5If94DUo-3eowYDMJ4EhlV1M.roa
Signing time: Mon 05 Dec 2022 10:51:28 +0000
ROA not before: Mon 05 Dec 2022 10:51:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208901
IP address blocks: 91.198.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e1:e9:87:c7:39:e7:bd:ac:dc:b8:aa:1b:e7:08:bf:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78ac31635d091be6155743311fe1db7c7af3477b
Validity
Not Before: Dec 5 10:51:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71ac7921ff780d4a3eddea30603309e048655753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d8:30:80:83:64:69:70:d1:f3:2d:7a:16:7f:
2d:93:eb:94:2a:0b:f4:93:4f:cc:e8:08:e8:b4:44:
02:76:cc:3d:c4:da:f7:ce:2a:c1:d1:79:df:e6:01:
08:da:5c:07:6d:ae:80:86:76:ee:72:5c:65:e5:8e:
05:c7:33:c1:b1:30:51:cd:59:bb:dd:07:e8:e8:fb:
38:21:9a:95:51:cf:5d:3b:fd:9c:3e:01:4c:c8:85:
66:a4:50:a0:cb:7f:4c:81:0c:6b:ea:35:5c:26:e6:
6b:a0:22:60:cb:ba:d6:24:e9:69:6b:2e:6d:27:55:
82:19:1a:5b:15:19:50:0f:7d:b4:4d:4e:9a:cc:3c:
8e:6f:4d:8d:d0:42:16:65:f6:d3:bf:18:3c:61:f6:
08:02:a2:c1:94:09:64:ac:46:89:8b:50:1a:e9:31:
9f:35:ff:68:08:99:1d:93:66:d8:67:a1:91:92:3a:
9b:f1:1c:02:ab:d7:bd:57:01:43:b8:2e:07:28:dc:
01:92:00:04:46:a9:c7:91:8f:4c:87:2e:c5:d6:94:
07:f8:d6:92:d1:c7:be:2f:74:c9:6f:dd:f5:1e:25:
58:ef:95:3c:91:84:0b:66:5c:ff:be:4a:cd:74:ec:
b5:f8:38:53:82:a2:8a:fe:95:15:49:30:fe:78:61:
ec:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AC:79:21:FF:78:0D:4A:3E:DD:EA:30:60:33:09:E0:48:65:57:53
X509v3 Authority Key Identifier:
keyid:78:AC:31:63:5D:09:1B:E6:15:57:43:31:1F:E1:DB:7C:7A:F3:47:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eKwxY10JG-YVV0MxH-HbfHrzR3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/cax5If94DUo-3eowYDMJ4EhlV1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/fe22c5-d8e3-41f1-9094-f6e8bbdbd33b/1/eKwxY10JG-YVV0MxH-HbfHrzR3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.64.0/24
Signature Algorithm: sha256WithRSAEncryption
53:05:ed:e0:e8:c9:84:13:a6:86:9c:e6:82:be:5e:c9:95:ca:
17:da:a4:80:eb:0c:93:e6:97:f4:be:1b:81:d6:d7:c8:0f:4f:
64:f2:b8:11:40:e5:62:16:55:7c:5a:24:43:0f:85:26:12:98:
5f:d5:ce:34:01:72:35:dc:22:f9:45:40:39:93:c4:99:bd:49:
5a:06:e3:cb:51:de:62:67:8b:be:7e:e1:8d:34:89:49:ed:8d:
12:3f:4b:93:6b:b6:01:ea:a8:60:90:b1:e8:db:40:91:5a:e8:
08:c4:d9:02:55:12:3c:4b:c6:d1:7b:1b:e7:a4:0e:98:2d:be:
da:23:80:3a:d3:2b:c7:90:9e:ce:f0:3d:56:a2:8b:a1:9f:e5:
2f:a5:ba:ce:51:55:1f:54:5a:e8:bc:9e:b5:59:3d:12:51:a8:
e2:49:da:a9:07:5a:1e:12:30:46:b7:e7:13:66:1a:2d:28:f1:
c1:a0:6c:3f:0d:d9:7d:d1:3d:30:0d:cf:87:a9:09:cd:72:b9:
92:78:bc:c6:ea:47:4c:83:01:3a:fb:83:f4:25:ec:63:dd:6d:
29:3f:05:33:5c:e5:f4:33:82:f7:16:22:c2:24:ce:84:8b:1c:
b3:66:95:52:81:86:58:19:a2:d5:65:e3:a4:41:a2:91:e6:cd:
47:b5:85:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:43 2023 by rpki-client on console-fra.rpki-client.org