Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/4a54fd-bbea-415a-b969-d69ef422c167/1/IxPmJj804N4PZ3X4DuwpyLcgO9s.roa
File: IxPmJj804N4PZ3X4DuwpyLcgO9s.roa (raw, json)
Hash identifier: 468yDuvvHWkwMgS70mGUNBpbL0R3NwL1Fve13t7Pddo=
Subject key identifier: 23:13:E6:26:3F:34:E0:DE:0F:67:75:F8:0E:EC:29:C8:B7:20:3B:DB
Certificate issuer: /CN=169ea0275c765e17603eb59eef39e2fab5380ef0
Certificate serial: 01850C4E4182F8C33F58BAA54D1CB9459F75
Authority key identifier: 16:9E:A0:27:5C:76:5E:17:60:3E:B5:9E:EF:39:E2:FA:B5:38:0E:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fp6gJ1x2XhdgPrWe7zni-rU4DvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/4a54fd-bbea-415a-b969-d69ef422c167/1/IxPmJj804N4PZ3X4DuwpyLcgO9s.roa
Signing time: Tue 13 Dec 2022 16:25:33 +0000
ROA not before: Tue 13 Dec 2022 16:25:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44309
IP address blocks: 91.201.172.0/22 maxlen: 24
91.237.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0c:4e:41:82:f8:c3:3f:58:ba:a5:4d:1c:b9:45:9f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=169ea0275c765e17603eb59eef39e2fab5380ef0
Validity
Not Before: Dec 13 16:25:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2313e6263f34e0de0f6775f80eec29c8b7203bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d1:b0:d3:56:86:30:cf:6d:fa:aa:4f:5d:08:
c0:da:a8:09:e7:6f:9c:b2:1a:ad:c3:81:b6:b7:69:
e7:e1:f5:d8:46:05:22:74:09:6b:ec:4f:cb:b0:a2:
98:4c:1f:78:95:8a:06:3b:60:98:72:06:57:85:6a:
e9:4a:3f:83:5b:af:ca:6f:a5:28:de:fb:2e:2e:6c:
84:6e:fd:07:27:80:d5:06:17:04:12:b3:6a:6b:6d:
de:f0:c0:74:ad:2a:d8:eb:71:61:8d:c6:37:ab:ca:
3f:6b:70:01:42:80:a0:30:33:99:ce:75:91:ab:21:
30:44:e1:fa:9e:29:5b:29:7a:15:02:ad:43:65:9c:
cc:9c:f6:85:9c:14:5c:27:cf:9a:6f:17:6a:d7:ef:
70:30:d5:4c:dc:c8:36:57:48:9b:1b:09:7f:9c:18:
c5:e3:d9:de:10:16:f9:bf:de:8f:07:99:d0:1c:83:
d8:52:f7:e5:78:6a:63:2b:39:bc:11:5f:5b:86:bd:
5c:d0:41:70:a9:93:85:f2:4f:46:74:aa:8f:8b:6a:
19:a7:5b:a4:b0:00:65:fc:e2:f0:84:5b:b9:e9:e1:
0d:64:e7:95:b0:80:f5:aa:6c:d6:1b:d1:24:2b:45:
df:eb:c8:61:08:43:5f:e6:e7:cd:3a:e9:dc:d0:f1:
2b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:13:E6:26:3F:34:E0:DE:0F:67:75:F8:0E:EC:29:C8:B7:20:3B:DB
X509v3 Authority Key Identifier:
keyid:16:9E:A0:27:5C:76:5E:17:60:3E:B5:9E:EF:39:E2:FA:B5:38:0E:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fp6gJ1x2XhdgPrWe7zni-rU4DvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4a54fd-bbea-415a-b969-d69ef422c167/1/IxPmJj804N4PZ3X4DuwpyLcgO9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4a54fd-bbea-415a-b969-d69ef422c167/1/Fp6gJ1x2XhdgPrWe7zni-rU4DvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.172.0/22
91.237.56.0/22
Signature Algorithm: sha256WithRSAEncryption
91:fd:86:8e:fa:16:4d:ce:38:f7:2a:37:41:f7:01:01:cf:51:
26:49:44:be:8e:98:60:fd:19:d7:6f:76:a2:b4:5e:4f:e2:1e:
36:a3:93:bc:6d:0a:ef:6c:83:a3:c3:68:98:82:c4:de:46:0f:
3e:0e:7e:22:a4:aa:1d:f7:b1:36:4e:f3:1e:5e:07:9a:ba:0e:
ab:92:3f:37:74:94:9a:4f:3c:84:5e:41:fd:e8:03:ec:ed:ad:
ef:9b:92:6f:66:d1:03:f7:7d:19:51:a8:22:e7:de:52:f1:ff:
27:15:81:43:54:11:42:8f:a8:82:7d:06:62:78:27:62:2e:a4:
09:ae:5c:19:1e:e6:f1:6e:32:cd:37:19:4f:df:6d:fc:51:43:
40:ab:2e:02:58:55:2e:af:60:14:bf:ed:e4:28:ae:2a:50:42:
3b:3f:6d:41:e3:50:9b:be:01:1c:3c:14:03:93:9a:59:06:8d:
15:00:74:ee:92:17:c1:9c:cf:11:57:7f:2a:6b:40:b0:76:fb:
17:00:4f:07:73:8b:63:ce:ef:eb:ff:43:50:c4:54:ee:73:96:
3d:05:f7:58:b0:c7:fa:c8:82:38:5f:a5:67:84:18:31:9f:58:
f6:fc:3a:dc:90:ec:2e:d2:db:32:f6:7e:a1:12:5e:00:05:68:
85:02:69:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:01 2023 by rpki-client on console-fra.rpki-client.org