Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/OgIY-Iq7k2DMjHpOHZ9hha5ddJE.roa
File: OgIY-Iq7k2DMjHpOHZ9hha5ddJE.roa (raw, json)
Hash identifier: qLeNKY5mQRi5IqEtq5bEzUEmzwZHu9+RnM0vX2WxIOQ=
Subject key identifier: 3A:02:18:F8:8A:BB:93:60:CC:8C:7A:4E:1D:9F:61:85:AE:5D:74:91
Certificate issuer: /CN=da1a521ec13031527d2f2cacfc85eb99e4841256
Certificate serial: 03544982
Authority key identifier: DA:1A:52:1E:C1:30:31:52:7D:2F:2C:AC:FC:85:EB:99:E4:84:12:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hpSHsEwMVJ9Lyys_IXrmeSEElY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/OgIY-Iq7k2DMjHpOHZ9hha5ddJE.roa
Signing time: Sat 01 Jan 2022 11:56:52 +0000
ROA not before: Sat 01 Jan 2022 11:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 91.209.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55855490 (0x3544982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1a521ec13031527d2f2cacfc85eb99e4841256
Validity
Not Before: Jan 1 11:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a0218f88abb9360cc8c7a4e1d9f6185ae5d7491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6d:58:f2:ac:ac:28:87:c5:bc:ad:7e:98:de:
c1:e3:01:a5:2b:fd:49:7a:2a:44:00:0f:0b:80:99:
a5:96:71:ef:45:33:29:d5:7a:7c:64:c3:87:7e:7a:
ea:e0:af:87:79:46:1e:70:f5:b9:46:c0:0b:ad:cb:
61:4f:ad:19:aa:93:b5:8f:f8:09:74:ed:dd:e2:b3:
f8:75:f1:98:95:7f:c8:35:f6:01:8e:dc:29:00:0b:
5e:12:ad:2d:fb:fb:02:2a:59:93:2a:1f:0e:c0:4d:
42:63:07:70:55:25:e6:ac:83:21:77:6c:a0:fb:90:
91:3b:ae:f5:e1:55:9d:c9:74:6f:49:2f:82:6d:21:
af:22:c5:16:a0:14:fe:7d:95:ba:35:a0:f3:9b:22:
eb:5b:b4:40:1a:c6:dc:11:8d:27:7e:1d:7d:ea:08:
41:d7:e1:d8:dc:68:24:ef:86:a1:d9:c2:ec:7a:8e:
65:da:ef:27:fb:e0:b8:b4:a5:84:8f:8e:2c:42:db:
7d:86:c0:44:b4:e7:a7:83:22:e3:27:40:9e:ee:52:
64:70:f2:eb:c8:22:14:cc:b7:d3:0c:e3:55:37:24:
3f:9f:90:18:6f:61:2f:57:05:b8:e5:32:62:a4:1f:
68:40:f8:26:b3:2c:e9:89:85:cd:95:5c:e5:c5:b1:
a0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:02:18:F8:8A:BB:93:60:CC:8C:7A:4E:1D:9F:61:85:AE:5D:74:91
X509v3 Authority Key Identifier:
keyid:DA:1A:52:1E:C1:30:31:52:7D:2F:2C:AC:FC:85:EB:99:E4:84:12:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hpSHsEwMVJ9Lyys_IXrmeSEElY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/OgIY-Iq7k2DMjHpOHZ9hha5ddJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/2hpSHsEwMVJ9Lyys_IXrmeSEElY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.81.0/24
Signature Algorithm: sha256WithRSAEncryption
45:ba:b7:15:62:7e:8d:5b:7e:1c:60:51:4d:a3:69:41:97:cc:
c8:6f:9c:8b:77:ce:9c:73:b1:8e:91:7c:bf:07:83:84:46:9c:
55:32:06:9b:fd:79:a1:44:c0:0a:77:ea:ff:bf:e0:78:6c:92:
d5:97:d2:b9:86:3c:ff:d6:91:76:13:69:42:41:1f:15:93:d9:
da:7a:6d:56:60:9c:d9:84:de:85:f4:fd:60:70:a9:b6:76:63:
d9:cb:fc:f0:61:79:10:49:da:de:de:48:62:54:ff:f5:a5:b8:
7e:82:1f:eb:00:06:8d:75:bb:fc:a0:bb:a5:35:10:cf:e4:31:
56:83:22:7e:26:02:ea:9e:59:cc:85:45:22:d4:d2:58:81:30:
ae:60:25:5e:af:a5:d7:55:96:9d:b2:6f:82:10:5c:77:26:02:
2c:9a:1c:39:d7:81:50:e8:29:59:eb:10:9b:7b:71:f5:90:0b:
a1:2c:6b:53:52:95:31:bb:91:15:29:0b:d5:73:07:3f:0d:8e:
68:43:17:b9:85:a3:d3:22:9b:06:c1:b2:79:d6:7d:8b:1f:06:
69:ed:68:2f:a9:f6:92:d8:7e:cd:c4:a2:94:f5:92:41:4f:f5:
47:e9:82:6d:ad:cc:d5:bc:e8:d2:85:17:8f:f0:d9:26:f0:24:
34:cd:a7:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:21 2023 by rpki-client on console-ams.rpki-client.org