Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/En228UpIxYtCQIz98BTFwS3mF9Y.roa
File: En228UpIxYtCQIz98BTFwS3mF9Y.roa (raw, json)
Hash identifier: PpOLDulodagt8xpNC1aNZZhfSudjimcoCKcWfca7VAE=
Subject key identifier: 12:7D:B6:F1:4A:48:C5:8B:42:40:8C:FD:F0:14:C5:C1:2D:E6:17:D6
Certificate issuer: /CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Certificate serial: 191877A9
Authority key identifier: A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/En228UpIxYtCQIz98BTFwS3mF9Y.roa
Signing time: Sat 01 Jan 2022 11:57:47 +0000
ROA not before: Sat 01 Jan 2022 11:57:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51088
IP address blocks: 91.233.224.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 421033897 (0x191877a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0bc2049f218b6fdabcad7594c2523b28da477c1
Validity
Not Before: Jan 1 11:57:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=127db6f14a48c58b42408cfdf014c5c12de617d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:06:26:04:a7:a0:8b:4b:c9:2f:ff:35:a9:27:
6d:43:25:46:a9:74:3a:07:ef:e3:5c:0a:9e:76:cf:
4c:22:9e:9c:8f:01:e6:cb:58:8a:19:a9:77:a5:db:
d8:00:b4:7d:bd:28:79:7f:63:44:4a:1d:af:1b:f1:
6a:64:2f:35:bc:f6:ab:a3:e4:1b:df:64:0b:c3:e8:
0a:26:25:d3:12:82:21:7e:82:8c:0b:ac:65:5e:96:
dc:cb:27:5a:c3:75:f7:00:39:ff:16:57:f0:e6:64:
36:2f:fc:22:e5:78:b1:1c:3e:67:78:08:39:76:89:
50:ef:43:1b:7d:d5:73:b2:77:36:fb:a5:11:92:96:
4a:57:7d:07:ec:2c:37:80:b3:a5:db:be:d6:58:8c:
ae:d5:66:5a:7a:02:71:d1:2b:2f:a5:5d:39:ae:f9:
34:40:82:e9:f1:c6:cd:b4:eb:fe:55:64:a1:f3:ec:
72:44:b5:46:49:57:7b:ab:de:8e:ff:39:a4:36:90:
58:46:26:59:b3:1b:90:57:6b:91:6b:57:59:d2:c8:
89:a6:05:f0:02:c9:59:45:5d:f4:41:c7:ca:6d:21:
29:20:ca:b5:19:aa:57:ac:2b:f5:80:d8:23:24:d7:
32:99:5d:28:59:7d:7c:fd:ad:56:1d:75:62:b6:ca:
92:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7D:B6:F1:4A:48:C5:8B:42:40:8C:FD:F0:14:C5:C1:2D:E6:17:D6
X509v3 Authority Key Identifier:
keyid:A0:BC:20:49:F2:18:B6:FD:AB:CA:D7:59:4C:25:23:B2:8D:A4:77:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLwgSfIYtv2rytdZTCUjso2kd8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/En228UpIxYtCQIz98BTFwS3mF9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/15b403-2219-4786-ab02-19912a0e4918/1/oLwgSfIYtv2rytdZTCUjso2kd8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.224.0/23
Signature Algorithm: sha256WithRSAEncryption
08:8f:ca:63:75:16:7a:4b:7e:61:46:91:da:3b:2b:e2:55:45:
de:3b:3f:d4:64:da:80:bb:ac:b3:4e:db:fb:75:86:8a:dd:f3:
62:d3:d6:79:54:0e:44:a8:27:3f:58:fa:4b:78:cd:b4:e2:04:
a4:0d:bd:fa:10:bb:74:cd:47:1c:dc:20:66:c4:08:09:a9:53:
8d:cf:d8:80:f1:dd:40:cf:9a:33:60:4a:2d:c5:ce:96:d0:44:
42:d1:95:fc:9d:b1:55:90:cd:62:0d:49:ee:28:d2:50:72:c0:
46:83:d9:d9:d8:27:44:8e:54:6b:ee:f0:38:62:b1:9b:d2:50:
47:9d:ad:43:19:6a:1e:30:36:8a:0b:ed:83:3d:1a:b0:84:6b:
99:69:eb:cf:6e:b2:37:6b:b2:1a:96:43:0c:9c:23:91:33:58:
c2:31:d2:78:b8:ea:4c:23:20:60:7f:40:9b:cb:09:25:6e:ef:
39:fb:c6:ea:b3:ac:42:d2:2b:f8:d7:83:ec:91:1a:25:3f:ba:
69:27:c6:db:b2:ff:f2:64:76:b7:81:3f:4b:78:a1:d5:0e:a2:
29:20:56:ce:af:2a:ea:fb:4b:86:c5:ab:ca:75:d4:1c:02:61:
38:6c:57:af:b9:0e:91:92:f4:b9:24:cc:d8:15:c5:16:6d:30:
a9:70:fa:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:40 2023 by rpki-client on console-ams.rpki-client.org