Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/eNfb9BPZhn1TphioFoaTTjZaKok.roa
File: eNfb9BPZhn1TphioFoaTTjZaKok.roa (raw, json)
Hash identifier: uD1ZTCKBlq7mq5/AeAyZZMpXjFicEJ62QP+FLd7Qxl8=
Subject key identifier: 78:D7:DB:F4:13:D9:86:7D:53:A6:18:A8:16:86:93:4E:36:5A:2A:89
Certificate issuer: /CN=e9be181aabdb195513a26c67b621e2986818d03d
Certificate serial: 01831F366E757774760989EC5B41DBE714B9
Authority key identifier: E9:BE:18:1A:AB:DB:19:55:13:A2:6C:67:B6:21:E2:98:68:18:D0:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6b4YGqvbGVUTomxntiHimGgY0D0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/eNfb9BPZhn1TphioFoaTTjZaKok.roa
Signing time: Thu 08 Sep 2022 22:26:44 +0000
ROA not before: Thu 08 Sep 2022 22:26:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49729
IP address blocks: 91.228.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1f:36:6e:75:77:74:76:09:89:ec:5b:41:db:e7:14:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9be181aabdb195513a26c67b621e2986818d03d
Validity
Not Before: Sep 8 22:26:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78d7dbf413d9867d53a618a81686934e365a2a89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:61:96:a3:a1:ee:91:52:97:f4:17:0f:3e:26:
8e:bf:8f:8e:41:78:4d:c9:94:e0:ef:f4:37:c5:f1:
29:f8:b5:f3:dd:f0:85:ac:a1:fd:2f:68:55:f3:2a:
e2:1a:a8:79:9b:47:08:c1:e3:44:87:24:de:b2:3b:
18:20:ef:40:bf:5f:00:59:89:25:af:0a:41:24:7a:
c2:f3:03:25:02:6c:76:ad:e9:e5:a8:14:a5:91:6e:
e3:e6:92:bc:0c:1c:25:d6:26:0b:cb:11:a1:dc:09:
6b:46:71:b0:b9:da:b0:7b:ab:d8:16:5c:ff:10:5d:
9c:bb:9d:0b:46:61:d4:c2:8c:66:dc:5f:8f:bb:7e:
be:98:1b:5b:9a:d9:b3:05:60:d6:52:52:6f:3d:9d:
a4:ca:d0:18:5b:ef:ef:25:41:85:18:ba:bd:1c:79:
dc:80:f2:21:41:52:d9:26:b7:1f:f0:f7:0c:ff:9a:
65:a4:c7:f5:fa:2b:09:8b:89:37:a0:34:e9:c6:eb:
68:95:5e:84:f6:5d:bc:e3:92:aa:51:f9:6e:1c:20:
ea:6d:8e:0c:b4:69:72:44:71:71:4f:8d:0c:27:8d:
c7:e3:af:8a:76:4d:6b:7a:09:30:e7:fe:e7:78:0f:
57:b7:d5:1d:e5:51:47:52:b7:db:71:f0:ec:54:8d:
4c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D7:DB:F4:13:D9:86:7D:53:A6:18:A8:16:86:93:4E:36:5A:2A:89
X509v3 Authority Key Identifier:
keyid:E9:BE:18:1A:AB:DB:19:55:13:A2:6C:67:B6:21:E2:98:68:18:D0:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b4YGqvbGVUTomxntiHimGgY0D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/eNfb9BPZhn1TphioFoaTTjZaKok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/6b4YGqvbGVUTomxntiHimGgY0D0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.88.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:b5:fd:7f:39:32:81:2b:d8:53:b9:df:19:f6:8a:03:0d:3a:
28:41:73:b4:80:01:11:d4:47:81:fd:11:bc:6b:b1:1d:57:e1:
12:93:e9:eb:f8:fa:b5:3a:82:9b:97:49:f3:88:96:a5:d3:56:
b9:2e:28:de:da:e5:40:ed:f2:e2:f1:69:82:ce:72:17:33:4e:
62:49:79:d2:9b:01:4b:42:30:0f:89:46:64:82:57:4a:c7:58:
43:92:39:9a:b3:2a:c1:b8:04:97:fd:ca:04:6f:e2:df:94:91:
97:02:21:b0:10:f9:ed:09:dd:30:e4:f7:e8:2b:b1:49:c9:0b:
00:b4:40:48:4e:7e:ac:3d:61:8d:a4:7d:1f:a2:d2:8c:39:d0:
2f:0b:99:36:13:6b:f1:77:79:29:3b:88:b6:78:4c:68:21:69:
64:e7:0a:01:b8:de:e8:3a:d8:b9:3e:39:56:ad:bb:d4:48:b4:
c9:ef:9e:a8:63:2f:68:32:cf:30:cd:92:01:aa:0a:9d:b8:b5:
1d:bd:b7:9f:7a:56:46:7d:27:47:e6:77:76:94:1e:e7:c7:f8:
2b:89:08:58:20:7e:d6:6b:46:e9:fc:18:42:b1:f1:17:85:2d:
0f:d5:6f:89:2a:c8:a5:ee:75:18:ba:8d:6b:52:89:99:a5:a6:
a6:c6:4f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:46 2023 by rpki-client on console-ams.rpki-client.org