Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/_EXekVSVN6JUN5EjK6oJyAE1srY.roa
File: _EXekVSVN6JUN5EjK6oJyAE1srY.roa (raw, json)
Hash identifier: hv5Kt+pamf8+E1AUeHFO8MafMcCol3h6xCaaKdr+saA=
Subject key identifier: FC:45:DE:91:54:95:37:A2:54:37:91:23:2B:AA:09:C8:01:35:B2:B6
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 4857E6BD
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/_EXekVSVN6JUN5EjK6oJyAE1srY.roa
Signing time: Sat 01 Jan 2022 03:00:19 +0000
ROA not before: Sat 01 Jan 2022 03:00:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25591
IP address blocks: 91.243.36.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1213720253 (0x4857e6bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 1 03:00:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc45de91549537a2543791232baa09c80135b2b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:78:ca:fb:05:97:be:d5:06:25:3d:26:d2:2d:
67:71:2c:76:fd:d7:5e:8d:00:13:02:7b:96:dd:f4:
1d:a7:d3:54:d9:e9:ba:4e:c6:0e:41:ca:6f:b1:f7:
92:90:47:57:24:e3:a9:ca:bd:cc:76:56:b6:a4:0b:
43:c2:90:42:07:d4:93:14:a6:3c:6b:2a:f9:67:43:
c5:a6:46:1b:09:c3:99:ce:b5:a6:ef:e8:7d:39:31:
64:7f:01:e4:0c:64:bc:e0:94:68:9f:a7:ed:64:12:
b3:d4:c1:3b:39:d5:6a:17:68:fa:25:3f:70:7c:89:
3d:21:af:ab:98:b7:ce:be:a3:a3:01:9e:6d:0e:ee:
5d:8c:cf:66:fc:82:bb:73:2a:90:37:4d:e9:9e:b5:
5b:ac:5a:37:16:42:8d:bc:b2:37:73:59:eb:9c:ae:
92:25:00:22:66:99:c4:61:93:78:35:bc:18:ff:6a:
2c:9a:c3:3b:36:ba:8b:f4:56:f0:aa:92:c9:61:ce:
46:49:45:5c:7d:77:37:96:fc:1d:71:35:7c:ff:32:
6a:aa:e5:b9:73:a5:e3:d8:e9:30:38:dd:5d:75:da:
31:04:25:1a:f4:12:03:ce:1a:d4:e1:76:54:15:88:
0c:e2:79:72:9a:57:6b:35:5d:1d:0d:d9:c1:10:95:
5a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:45:DE:91:54:95:37:A2:54:37:91:23:2B:AA:09:C8:01:35:B2:B6
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/_EXekVSVN6JUN5EjK6oJyAE1srY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.36.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:d2:c3:d9:d8:e5:a9:ca:28:e9:17:a0:02:40:c0:b7:f4:c5:
a9:90:56:3f:24:60:a8:9a:a8:c6:b8:f8:60:b3:dd:49:2c:05:
05:57:cb:2a:00:65:25:a3:b0:a3:8d:85:81:6b:44:31:30:69:
12:e6:15:a8:61:74:72:79:31:1e:01:f1:a8:04:6c:9d:91:82:
bc:9d:a0:29:0a:24:e8:56:dc:d3:ea:1d:af:a5:1a:e6:a0:65:
46:0c:2a:7c:cf:46:c3:d2:74:96:58:b1:6d:f8:0e:bb:77:62:
62:8a:d1:e2:9d:e8:8c:97:79:b2:95:b9:6f:d5:10:98:a6:1e:
54:03:35:f4:36:52:23:66:f8:35:65:68:7b:6d:5c:29:08:ae:
c9:78:a4:10:6e:2b:89:0f:1a:54:16:e3:55:7e:f0:5f:ab:16:
d5:7e:b4:ff:f7:95:2b:cc:08:3f:d9:cb:b6:d5:b6:c6:fc:de:
1a:3e:a0:a2:6f:f8:09:56:b3:2e:dd:8d:fe:66:c7:de:80:02:
0b:61:c9:7e:b7:93:e4:be:4f:70:9c:f3:31:c1:a1:16:16:73:
12:8a:e5:4a:24:e7:ca:84:f2:fc:13:64:4d:1a:64:0f:c9:40:
29:7d:a7:04:f0:d8:e9:0d:63:9b:96:75:d0:9a:2d:0a:e4:b9:
41:56:26:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:43 2023 by rpki-client on console-ams.rpki-client.org