Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5ehbZ_YWHty1i--ftkmwa5UpLt4.roa
File: 5ehbZ_YWHty1i--ftkmwa5UpLt4.roa (raw, json)
Hash identifier: RlYs8XoFOBA13Ow5BTyNb/I46OYv4KWq3VuM6XrZ0IQ=
Subject key identifier: E5:E8:5B:67:F6:16:1E:DC:B5:8B:EF:9F:B6:49:B0:6B:95:29:2E:DE
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 0582814A
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5ehbZ_YWHty1i--ftkmwa5UpLt4.roa
Signing time: Tue 04 Jan 2022 18:45:44 +0000
ROA not before: Tue 04 Jan 2022 18:45:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62206
IP address blocks: 91.228.15.0/24 maxlen: 24
91.228.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92438858 (0x582814a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 4 18:45:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5e85b67f6161edcb58bef9fb649b06b95292ede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:03:6e:33:aa:66:53:fe:a8:99:07:38:86:b0:
b5:53:ff:10:81:9a:69:3f:c4:1e:49:cf:81:c8:b6:
b1:b4:23:9a:ad:25:0f:d8:22:af:8e:15:a8:d3:64:
4e:03:77:ca:66:8f:2a:2f:a0:37:64:2f:11:4b:18:
5b:e8:b5:81:93:92:5d:16:c2:ae:13:1e:40:e7:3c:
40:ad:c2:02:31:78:18:a6:5f:6f:97:b4:b7:f7:10:
a4:4d:91:40:00:cf:4e:1a:e6:5c:18:14:f8:e5:57:
7f:8d:9e:fd:d6:8f:09:b4:c7:98:1f:b7:01:6a:e7:
20:06:8c:56:d3:cf:98:44:91:7f:41:fc:b3:a1:59:
09:54:aa:7b:4e:08:f3:ee:c0:ab:d6:60:ec:7a:53:
d2:94:27:db:af:da:27:d7:29:94:ce:f5:2e:6b:c4:
8b:4a:9b:90:bc:0e:0e:17:17:64:e6:3d:e4:74:f4:
cd:f5:ac:bc:f3:4b:8e:92:c2:1b:82:9b:21:39:62:
b2:ca:b5:e0:22:cc:75:16:95:b9:21:be:f1:3f:2d:
9f:a4:0d:8d:67:1e:00:58:af:3b:27:82:4d:a0:23:
e9:43:05:70:96:8e:06:e5:09:dc:96:4e:6b:48:8c:
59:7c:32:f6:2b:f5:2d:f2:df:27:b1:4f:d0:c9:6a:
05:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E8:5B:67:F6:16:1E:DC:B5:8B:EF:9F:B6:49:B0:6B:95:29:2E:DE
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5ehbZ_YWHty1i--ftkmwa5UpLt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/24
91.228.15.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:38:36:de:78:f7:da:89:22:f8:66:8b:5e:a9:78:7b:8a:dd:
12:de:ef:36:fb:09:50:20:b2:1c:1e:b1:f3:ce:18:9a:14:88:
82:87:af:38:91:ce:25:84:b4:2c:78:ab:da:42:63:64:7b:28:
1b:8f:57:ae:11:c1:e2:8a:3b:2d:6d:be:59:26:e7:c6:c1:0e:
cb:a1:ea:0f:45:66:74:59:5a:6e:8d:9e:9c:04:e2:2a:2e:89:
72:df:1c:36:70:e8:fa:02:18:18:8b:96:01:6c:0d:dc:79:c6:
79:02:07:7f:8a:56:5d:33:7d:8d:21:50:e9:d9:3b:3b:a2:38:
7f:60:0f:22:01:fc:e6:a1:75:31:b6:72:cb:08:f2:c1:1e:0f:
41:59:15:9d:15:ab:13:de:c0:67:82:81:f2:e9:26:bc:00:81:
45:bb:85:61:bb:fc:62:e1:7c:3e:f7:5b:24:e3:07:07:06:3f:
0c:a2:9b:c7:b6:60:b3:07:a3:ed:ed:b5:15:3a:36:d7:a7:7f:
1a:7a:94:51:a5:2d:d1:1e:3c:3d:27:88:18:ba:f4:0c:e5:17:
83:23:d4:16:50:36:78:03:61:63:ad:4d:5e:4f:b1:86:fe:f9:
e9:2a:d5:e0:e6:ec:5f:d5:49:fb:aa:10:56:8b:77:f3:24:a6:
5f:cc:65:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-fra.rpki-client.org