Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/5ea4b4-9ed7-444e-86bf-2eb0af3ac781/1/aufZIAVHKFXb0hSK5-EsOVmv7rc.roa
File: aufZIAVHKFXb0hSK5-EsOVmv7rc.roa (raw, json)
Hash identifier: vCp1nfL+oKKiY0meRCb/VzQiirhEY4artVx4/XuE6YU=
Subject key identifier: 6A:E7:D9:20:05:47:28:55:DB:D2:14:8A:E7:E1:2C:39:59:AF:EE:B7
Certificate issuer: /CN=e338cd6811dce2ed4f426143c3fc8457b1b434bb
Certificate serial: 092988A5
Authority key identifier: E3:38:CD:68:11:DC:E2:ED:4F:42:61:43:C3:FC:84:57:B1:B4:34:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4zjNaBHc4u1PQmFDw_yEV7G0NLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/5ea4b4-9ed7-444e-86bf-2eb0af3ac781/1/aufZIAVHKFXb0hSK5-EsOVmv7rc.roa
Signing time: Sat 01 Jan 2022 05:03:53 +0000
ROA not before: Sat 01 Jan 2022 05:03:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48119
IP address blocks: 91.207.126.0/24 maxlen: 24
91.207.126.0/23 maxlen: 23
91.207.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153716901 (0x92988a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e338cd6811dce2ed4f426143c3fc8457b1b434bb
Validity
Not Before: Jan 1 05:03:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ae7d92005472855dbd2148ae7e12c3959afeeb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:06:9c:68:2e:a1:6b:a3:44:71:a1:13:9a:58:
8b:90:8f:b6:e2:df:9d:43:6f:13:c5:b1:bb:23:6c:
f2:85:f8:48:1b:ac:d8:ae:f3:ea:41:19:51:df:ad:
97:a4:69:20:27:1f:4b:f1:44:12:b6:0f:d1:88:0c:
35:0f:0f:29:83:a2:7e:67:b6:33:02:2f:d4:de:d9:
52:ba:91:72:93:e1:75:b0:b5:5e:aa:6a:eb:ac:db:
92:ef:73:04:66:1e:0e:23:c6:df:ab:58:ce:21:7e:
68:bd:5e:da:a1:40:91:9c:a7:82:93:c4:bc:af:14:
28:c3:76:9e:3f:1c:ec:b8:34:b6:3b:1d:d1:10:4a:
a2:d7:be:e8:7e:4e:63:d2:2c:16:a3:f3:b8:c3:e5:
67:dd:4c:e0:b5:77:10:81:b7:f4:e9:42:3d:f2:55:
a4:bb:43:3d:e7:2f:51:46:15:08:60:0a:ba:ec:c0:
44:7b:fb:e7:26:a0:63:87:43:8a:b7:3d:2e:10:3e:
da:2e:02:94:5d:d1:f5:93:91:42:c4:a0:c7:d2:45:
40:aa:ef:8b:87:ce:fb:a3:f6:b1:75:1f:d5:02:31:
0a:68:67:8e:e2:aa:82:c9:f6:e0:27:06:36:3e:6d:
ad:36:da:40:7a:f5:07:4b:37:2d:06:fd:81:35:c6:
7e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E7:D9:20:05:47:28:55:DB:D2:14:8A:E7:E1:2C:39:59:AF:EE:B7
X509v3 Authority Key Identifier:
keyid:E3:38:CD:68:11:DC:E2:ED:4F:42:61:43:C3:FC:84:57:B1:B4:34:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zjNaBHc4u1PQmFDw_yEV7G0NLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/5ea4b4-9ed7-444e-86bf-2eb0af3ac781/1/aufZIAVHKFXb0hSK5-EsOVmv7rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/5ea4b4-9ed7-444e-86bf-2eb0af3ac781/1/4zjNaBHc4u1PQmFDw_yEV7G0NLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.126.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:54:71:42:7e:8a:9f:7a:1b:7c:45:9e:3d:10:88:ab:32:d4:
28:a3:c1:10:dc:8a:b2:8d:dc:8c:a9:7b:fa:d3:a5:8d:68:ba:
89:b7:e7:2e:04:8e:66:d9:31:c7:bd:47:d0:8c:9c:0b:c5:34:
3c:b9:2d:42:2a:7a:0b:8e:f0:2e:ad:a5:15:91:17:a5:dc:07:
3a:47:41:3b:56:8a:f6:4a:39:bc:ca:16:ee:a6:16:f1:3b:da:
97:93:7e:d4:d7:5b:b0:61:0d:f4:c7:ff:54:77:93:8f:46:47:
10:2f:a9:47:dc:fa:38:69:0f:0e:05:08:de:dd:65:db:4f:ea:
24:f5:1d:8d:e4:3e:66:86:3f:02:53:38:4b:82:d1:ca:1b:f5:
65:6f:62:c0:ef:b3:1e:7c:b4:b3:d3:6a:b5:9d:02:bc:3f:79:
cc:d3:5e:68:57:f6:db:8e:2f:17:e3:a5:e7:d3:8b:a0:e3:23:
d6:52:e3:21:52:26:f4:94:be:4a:90:0a:bb:7d:50:33:08:24:
a1:0d:c0:0e:00:28:38:c2:a2:38:02:a0:16:53:2f:f7:cb:25:
75:d5:3f:65:03:27:64:42:b2:b0:15:89:80:a1:ec:12:e9:e7:
32:1c:a1:ed:cd:7a:9d:59:bd:d3:e2:49:ab:1f:94:91:dc:9f:
1c:7f:fa:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:30 2023 by rpki-client on console-fra.rpki-client.org