Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/6W57Gm3E503yiswK8fH-KYSuBVc.roa
File: 6W57Gm3E503yiswK8fH-KYSuBVc.roa (raw, json)
Hash identifier: GqG/T2W/e/thmlF9CSB5Ux9+PC3Gyra+9iMABFL2WcI=
Subject key identifier: E9:6E:7B:1A:6D:C4:E7:4D:F2:8A:CC:0A:F1:F1:FE:29:84:AE:05:57
Certificate issuer: /CN=20f5ff076704523ff6be882b87eefa807b188aa9
Certificate serial: 094B2FF1
Authority key identifier: 20:F5:FF:07:67:04:52:3F:F6:BE:88:2B:87:EE:FA:80:7B:18:8A:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPX_B2cEUj_2vogrh-76gHsYiqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/6W57Gm3E503yiswK8fH-KYSuBVc.roa
Signing time: Sat 01 Jan 2022 10:01:49 +0000
ROA not before: Sat 01 Jan 2022 10:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42174
IP address blocks: 91.234.226.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155922417 (0x94b2ff1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f5ff076704523ff6be882b87eefa807b188aa9
Validity
Not Before: Jan 1 10:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e96e7b1a6dc4e74df28acc0af1f1fe2984ae0557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4e:a8:a2:93:0b:27:96:17:5e:68:b1:d4:e2:
aa:17:cb:d3:ca:0b:a1:02:b3:8c:25:64:72:9a:b7:
0a:cd:84:6e:de:5c:03:02:4b:ef:a3:68:7b:b1:dc:
84:02:43:5c:a0:a8:03:87:63:6a:b1:05:07:f7:ac:
6f:28:7f:64:96:60:9c:fe:f2:24:7d:12:07:89:ad:
06:e8:c8:e7:19:93:44:00:76:ac:fc:41:50:cc:4c:
33:8f:6e:4c:8e:87:29:7c:eb:cc:bb:8f:65:21:f6:
f9:36:f3:ca:8d:de:09:42:8a:0e:8c:f5:71:d6:71:
15:74:c7:af:41:39:2a:41:0c:81:07:45:ad:82:c4:
b7:9c:5e:08:2b:f6:a7:1a:2b:a1:6c:eb:b7:91:b3:
c1:54:01:3a:3d:90:71:50:ae:62:b3:81:d9:c0:c7:
41:c5:e8:f8:f1:d6:df:52:b6:18:3d:a0:46:04:96:
3d:eb:09:e7:88:bc:f5:0a:5d:6d:78:97:2b:a1:16:
c7:96:c0:60:42:e7:d5:4b:27:cf:76:86:08:d9:ea:
06:96:63:89:64:da:95:e5:62:02:cc:b2:74:79:9f:
9f:df:0d:f4:0f:a7:e7:6a:58:df:23:04:7c:9b:22:
af:b4:e9:89:46:13:c0:0e:87:23:17:ac:cd:b8:b9:
9f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:6E:7B:1A:6D:C4:E7:4D:F2:8A:CC:0A:F1:F1:FE:29:84:AE:05:57
X509v3 Authority Key Identifier:
keyid:20:F5:FF:07:67:04:52:3F:F6:BE:88:2B:87:EE:FA:80:7B:18:8A:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPX_B2cEUj_2vogrh-76gHsYiqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/6W57Gm3E503yiswK8fH-KYSuBVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/727296-2ebc-4dfc-a547-f6a7b49f981a/1/IPX_B2cEUj_2vogrh-76gHsYiqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.226.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:90:3f:3b:e7:0f:6f:9b:75:a0:60:40:62:da:09:ba:66:68:
6d:0b:6f:2d:3c:e0:d1:4e:a4:c6:c8:a6:3e:c9:8d:de:9f:43:
a2:ab:a3:7f:68:b4:21:64:f6:55:7c:3a:e1:aa:b7:67:d2:17:
bc:90:68:49:c0:98:05:fa:3d:1d:c5:7d:1e:41:dc:5f:49:95:
5f:eb:2a:2e:1c:d9:8f:d0:8b:87:09:25:1a:50:e0:13:32:64:
52:b8:3d:8e:3e:56:3a:3e:e5:51:80:18:55:8f:48:3c:13:01:
0c:ac:26:e1:92:33:e3:b2:6a:d6:58:4f:6a:bf:14:98:87:bf:
17:98:05:e5:52:3d:88:4e:1c:5a:44:22:8a:d6:9e:9d:e3:d6:
7c:80:4f:c8:16:ca:74:ee:18:37:5e:e1:37:be:9d:9e:fc:cf:
2e:5b:4b:a0:d6:73:58:18:ec:9c:bc:20:66:69:b7:43:c6:5d:
01:7f:1e:ab:22:b3:88:0d:39:bc:07:09:ec:c4:34:69:30:e6:
40:90:59:fc:71:3b:c1:0e:88:f7:00:72:db:6f:42:51:8b:4e:
52:6a:6a:92:48:b1:f8:64:24:e1:8c:74:b2:80:c8:69:74:7d:
8e:24:16:20:ce:0d:13:51:be:48:ad:da:1c:9e:53:11:04:fa:
f3:83:75:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:55 2023 by rpki-client on console-ams.rpki-client.org