Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/6xD17FNwmiRfdARqB6BuUbYs7ao.roa
File: 6xD17FNwmiRfdARqB6BuUbYs7ao.roa (raw, json)
Hash identifier: 3jId/lZLAK9MRWYVkovGqvZnyDTh1fYzfWt0n+o91c4=
Subject key identifier: EB:10:F5:EC:53:70:9A:24:5F:74:04:6A:07:A0:6E:51:B6:2C:ED:AA
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 01838FD733E742EB2B097D3FCDE4DCC9D496
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/6xD17FNwmiRfdARqB6BuUbYs7ao.roa
Signing time: Fri 30 Sep 2022 19:19:48 +0000
ROA not before: Fri 30 Sep 2022 19:19:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 91.228.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8f:d7:33:e7:42:eb:2b:09:7d:3f:cd:e4:dc:c9:d4:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Sep 30 19:19:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb10f5ec53709a245f74046a07a06e51b62cedaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:60:4c:7d:a4:5e:b1:43:75:62:ac:fa:5c:ee:
be:46:1f:f6:b3:d3:70:02:df:38:4c:66:4c:81:3d:
44:80:a5:f0:16:4f:74:6c:3f:4a:f9:45:f2:56:54:
18:f9:d9:9d:35:8c:50:4d:f3:db:44:4c:4b:e9:70:
d8:99:a5:09:ba:be:bb:12:a0:19:e2:1e:fc:fe:df:
b3:e9:24:7c:00:9e:38:0e:5d:e7:eb:b5:78:8b:6e:
66:96:f7:ac:6d:b3:b6:90:97:e6:81:3b:22:06:a6:
a7:9a:51:b1:14:07:5a:ea:ac:17:65:d1:d9:0d:fb:
70:ca:b1:ec:7b:ff:c3:99:c2:f6:72:16:01:2b:47:
d9:c0:94:71:d1:86:93:b2:6c:99:2d:a1:a6:99:0c:
d5:cb:fd:45:46:9e:b6:4e:84:3c:0a:a6:f8:e7:c0:
ed:6f:02:32:a3:f5:a4:81:02:2b:bf:f8:ca:11:90:
75:b6:30:fe:d3:cd:d5:f6:ec:d4:53:dd:71:1f:d6:
c1:f2:e0:f7:91:97:ce:4a:00:93:e7:1c:0c:fb:51:
b7:f0:cb:c7:71:62:4b:45:72:d4:2c:38:0a:bb:54:
bf:53:6b:6b:8b:9e:d1:c6:9c:71:04:ce:7a:16:4b:
15:c7:f6:b0:0a:76:22:1e:ff:a2:4d:1a:c5:f2:c3:
d3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:10:F5:EC:53:70:9A:24:5F:74:04:6A:07:A0:6E:51:B6:2C:ED:AA
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/6xD17FNwmiRfdARqB6BuUbYs7ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:ce:4d:9f:f4:85:c1:b4:c7:1e:53:72:a1:68:1d:04:27:e2:
63:22:d4:a8:8d:50:40:ef:80:6f:e0:84:46:06:b3:7a:92:eb:
c6:97:bf:22:ed:1c:9e:88:57:01:09:c5:8f:f9:20:27:c9:67:
f7:b4:f3:98:6e:57:e8:20:27:9e:f3:e3:04:45:9b:f1:ad:06:
49:54:30:f5:9f:27:8d:e1:9e:50:21:6f:3a:90:39:fe:53:eb:
a5:f3:69:c0:66:76:53:b6:fc:23:e6:07:6d:fb:a5:29:f0:60:
bb:44:22:c1:3c:77:eb:1a:3b:b4:e2:a2:b8:83:de:bb:9e:0e:
0c:b8:3b:f8:eb:02:2f:98:8d:0a:08:ec:1e:51:c0:2c:9e:1e:
2d:85:e2:91:f4:ac:a7:d2:c6:b8:cc:47:63:64:4c:c1:0c:34:
55:c1:27:7e:3e:d1:0f:22:bd:e9:72:53:cc:d9:78:71:4b:fd:
19:79:8a:78:98:c2:b4:07:de:67:9a:1d:b0:02:e2:36:ba:6b:
f5:68:64:c8:7c:fd:f1:ce:75:b8:27:36:6f:a8:b9:00:7c:84:
a6:5f:5a:31:89:24:e0:e7:2f:eb:de:8c:0e:75:01:ad:09:4d:
41:ae:a0:c2:3c:a0:30:eb:b0:b9:0e:fb:df:23:ad:6d:83:41:
08:23:fd:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-fra.rpki-client.org