Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/0_YYxMS2pq59ZXoC52KT9ShPTdo.roa
File: 0_YYxMS2pq59ZXoC52KT9ShPTdo.roa (raw, json)
Hash identifier: nF0FMhaBQe2CtmDFQh4ZMba+VpgA22g27TW1+Zm+Wjw=
Subject key identifier: D3:F6:18:C4:C4:B6:A6:AE:7D:65:7A:02:E7:62:93:F5:28:4F:4D:DA
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 07301715
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/0_YYxMS2pq59ZXoC52KT9ShPTdo.roa
Signing time: Tue 28 Jun 2022 11:48:02 +0000
ROA not before: Tue 28 Jun 2022 11:48:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 91.228.14.0/24 maxlen: 24
94.154.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120592149 (0x7301715)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jun 28 11:48:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3f618c4c4b6a6ae7d657a02e76293f5284f4dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3e:13:1b:c5:77:a8:70:93:23:7b:bd:0f:e3:
bc:00:ff:7b:54:26:18:ff:18:05:90:ab:d9:ae:17:
b3:54:44:9c:21:01:5c:7e:d2:a5:43:53:f8:ab:8f:
60:52:8b:1a:6c:e0:19:5a:60:ff:0d:13:8c:9d:17:
6e:b1:33:f1:ce:d7:34:74:21:d6:e6:0a:fb:fe:87:
b5:33:f5:05:73:b5:f0:c2:eb:7c:2a:44:17:1d:be:
0d:24:30:31:fb:31:98:ab:ad:f8:b5:f6:ee:b1:e9:
67:b1:a1:23:b2:51:77:92:e7:47:1f:47:cd:e3:74:
6d:aa:b7:92:0a:27:a9:ce:e8:2c:4b:ee:ef:2f:10:
f7:c4:20:8a:03:89:2a:88:d1:5a:e0:02:6e:89:cc:
e2:ae:02:cc:e3:bd:36:72:22:b6:45:73:73:a1:00:
86:a0:9b:43:53:ab:16:ee:1e:ab:1e:f5:3c:bb:94:
c4:c9:00:35:86:00:b3:85:2c:d5:91:d0:8d:4b:cd:
8e:0e:b1:b0:05:6e:1f:15:16:31:f5:00:5c:2f:fd:
a0:47:a8:c9:67:13:7b:0e:61:71:a3:fa:cd:35:d2:
e9:bd:47:27:82:db:a0:e1:93:80:fe:f7:8b:5d:9c:
54:22:ee:00:37:d0:a1:ba:5a:23:82:62:5b:47:23:
43:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F6:18:C4:C4:B6:A6:AE:7D:65:7A:02:E7:62:93:F5:28:4F:4D:DA
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/0_YYxMS2pq59ZXoC52KT9ShPTdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/24
94.154.37.0/24
Signature Algorithm: sha256WithRSAEncryption
af:cf:77:ae:b3:9d:ed:85:cc:f3:83:5e:e0:a5:a7:ca:74:a8:
30:fb:05:dd:81:99:28:45:9b:36:06:6d:77:29:42:55:17:80:
bf:a1:7e:38:15:ed:4f:95:df:92:40:40:2d:f1:38:64:94:3a:
16:70:b0:fb:61:25:3a:91:de:a1:94:11:1d:28:40:31:d8:87:
a0:2c:8e:54:d4:3a:57:01:84:1e:36:22:e5:64:46:fc:9b:de:
20:4c:5e:59:7a:f0:d5:82:f8:fa:42:84:37:3d:1c:e7:fe:35:
aa:1d:12:71:39:03:14:f5:5a:6f:f4:18:1d:46:bb:f7:6c:8d:
ef:27:9c:e9:f0:cd:35:2b:f9:bd:9d:66:40:66:47:68:35:ab:
b2:8d:3a:7d:70:d6:6d:6c:6b:5f:c4:cf:f5:1c:74:20:4f:31:
0a:d9:25:92:4e:d2:cd:23:8a:27:97:5e:dd:2c:ec:2b:96:b7:
b3:a7:44:7e:b7:98:3b:13:13:b8:13:ba:46:97:aa:db:50:43:
70:79:18:bb:68:d9:9f:4c:2d:c7:c1:ff:3f:90:17:19:2b:68:
e1:a4:b8:ef:fd:5d:bc:07:44:7e:75:55:22:bd:73:ed:c1:b3:
5b:e7:97:3e:cd:ef:c4:1c:00:b5:2c:bc:e1:f7:2d:27:9d:91:
9a:ea:51:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:52 2023 by rpki-client on console-ams.rpki-client.org