Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/1-nwEI0jc_hB7oupO7i0gVJrVYKk.roa
File: 1-nwEI0jc_hB7oupO7i0gVJrVYKk.roa (raw, json)
Hash identifier: uJLOUaUkUINp86p60DW1Ln7OHOlzhDY4F6yNRL9JGlg=
Subject key identifier: FA:7C:04:23:48:DC:FE:10:7B:A2:EA:4E:EE:2D:20:54:9A:D5:60:A9
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 05C7978D
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/1-nwEI0jc_hB7oupO7i0gVJrVYKk.roa
Signing time: Tue 01 Feb 2022 09:32:20 +0000
ROA not before: Tue 01 Feb 2022 09:32:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 91.228.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96966541 (0x5c7978d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Feb 1 09:32:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa7c042348dcfe107ba2ea4eee2d20549ad560a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e6:b3:2e:bc:24:8f:7a:eb:81:44:16:b5:66:
40:83:44:71:a1:a7:7f:79:ff:4e:ac:22:30:36:75:
3e:05:9c:ad:fb:16:4f:52:b8:d2:dc:1c:58:6a:08:
08:d9:5f:f8:2e:f0:cb:ec:2d:cf:80:27:e9:73:a8:
2f:62:3f:f3:b1:43:ea:01:3a:c5:8b:09:d8:c0:7a:
00:04:5c:ac:89:f9:37:ab:4c:33:79:a3:52:21:30:
32:49:cd:39:23:58:a3:87:2d:78:83:f6:83:bf:47:
db:00:f2:6e:a3:61:82:10:10:df:65:a2:db:f5:b1:
35:c9:bd:a4:79:2e:94:94:1d:12:aa:46:0f:16:1b:
09:c4:75:fc:0e:ee:4c:52:68:78:e3:62:d6:6d:24:
68:67:dc:b4:54:b8:30:4b:e2:de:3b:a4:8b:16:e0:
2a:80:8c:80:e2:9f:e9:8a:56:69:dd:f3:d2:35:80:
d6:7c:ae:4b:c2:bf:56:9e:46:e3:3a:bf:5d:6b:83:
a5:9e:a2:e8:5b:0a:eb:4c:e3:d8:73:f4:3f:6b:ca:
2e:50:9e:fc:cb:62:f6:b0:4e:71:74:af:7f:5b:3c:
94:00:44:fc:82:2b:86:ab:e6:f5:6b:6b:c7:d9:1d:
8c:45:16:6c:76:c0:39:f9:3e:b1:7f:9f:e2:a4:65:
b4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7C:04:23:48:DC:FE:10:7B:A2:EA:4E:EE:2D:20:54:9A:D5:60:A9
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/1-nwEI0jc_hB7oupO7i0gVJrVYKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.15.0/24
Signature Algorithm: sha256WithRSAEncryption
42:66:44:b5:57:b0:52:7c:44:31:a4:9f:cf:7e:41:d6:8e:55:
4f:d4:f1:d2:18:5f:83:dc:e7:3a:9e:1d:b4:64:b2:ec:b3:79:
0e:41:ae:ec:63:75:d2:b3:32:8a:6c:d7:e5:34:92:48:b9:be:
c8:fb:de:07:1f:ff:b1:d9:ed:d2:18:ff:3f:92:6b:9f:9e:c5:
84:1c:9d:73:43:4e:3a:4b:bc:1e:63:5f:d7:4f:e6:ce:98:92:
fc:ae:af:cf:c0:90:8d:50:95:6c:1c:05:a7:2c:8d:c3:00:22:
77:06:70:35:77:9f:b4:50:80:31:39:df:91:8d:e1:34:33:17:
cd:71:16:a6:1a:11:47:dd:4b:22:bc:ca:77:55:70:fc:c9:d6:
40:49:af:7c:7b:a2:d0:b4:b3:ca:25:12:39:0b:bb:42:4d:83:
61:33:d3:84:43:e7:a8:cb:9d:8f:00:b8:80:44:2f:98:f7:9f:
72:4a:5c:aa:ac:cf:7c:c7:73:81:87:39:6a:9d:df:0e:3b:00:
ea:9a:b0:0b:9c:f2:c9:8c:e0:05:a4:03:c5:a8:64:e0:59:49:
fa:ab:af:d3:28:a0:07:22:24:98:47:6e:9c:6f:e6:47:fc:b2:
6f:ed:2b:b5:41:d7:9b:c6:a7:84:5c:cd:81:b3:62:84:de:d5:
3e:86:8e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:52 2023 by rpki-client on console-ams.rpki-client.org