Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/TrlrvnDNpivdcafJHKT29AtswEg.roa
File: TrlrvnDNpivdcafJHKT29AtswEg.roa (raw, json)
Hash identifier: A9CAeQJe46gbQyQx9BCJ4fmxR+568G6Rt4T3Ocanudg=
Subject key identifier: 4E:B9:6B:BE:70:CD:A6:2B:DD:71:A7:C9:1C:A4:F6:F4:0B:6C:C0:48
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 01824503B8A57F973A22D8379E81EAA4BB26
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/TrlrvnDNpivdcafJHKT29AtswEg.roa
Signing time: Thu 28 Jul 2022 13:34:07 +0000
ROA not before: Thu 28 Jul 2022 13:34:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 91.228.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:45:03:b8:a5:7f:97:3a:22:d8:37:9e:81:ea:a4:bb:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jul 28 13:34:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4eb96bbe70cda62bdd71a7c91ca4f6f40b6cc048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:20:b9:0d:35:ee:61:41:f8:6d:31:48:e7:34:
0d:47:27:ae:e5:4f:b1:fc:e9:1e:fd:b2:4c:b2:e2:
ff:28:fe:72:09:97:ba:9b:06:6d:e9:a2:6d:a0:48:
d1:b8:d3:33:79:16:31:3c:ab:36:2c:c5:d8:3f:3e:
f7:61:a2:24:2e:80:c3:cc:50:fa:88:c7:70:aa:d6:
c8:1d:97:d0:5a:6c:57:6f:98:b3:2d:c1:f7:06:a1:
6c:dd:93:d7:9d:95:bb:02:e6:ac:10:18:09:16:94:
e8:5c:7f:b5:d3:57:d6:16:d7:fe:62:61:aa:8d:34:
b8:f9:f8:a0:68:37:4c:69:75:26:14:4b:c7:ec:d5:
50:86:94:24:47:81:d3:78:f2:4e:67:e3:95:ee:ce:
03:59:b2:07:fb:54:03:08:61:1d:7f:57:97:b4:b2:
d8:6d:4a:ce:3b:08:2f:16:b4:8f:b8:87:0b:27:da:
10:77:ee:7d:2c:b6:d8:6c:06:70:d1:4e:d7:36:36:
cb:8d:93:8d:4c:c9:37:7c:dc:92:49:03:b9:2c:e5:
26:c5:f9:5e:cf:c9:13:3a:eb:49:59:32:15:6d:ac:
27:54:f4:59:c3:80:e0:13:2d:95:cb:25:83:10:9c:
1c:2a:6a:64:3b:10:de:e9:6e:ca:96:a2:fa:8c:5c:
03:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B9:6B:BE:70:CD:A6:2B:DD:71:A7:C9:1C:A4:F6:F4:0B:6C:C0:48
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/TrlrvnDNpivdcafJHKT29AtswEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:30:c7:46:12:3a:33:29:70:f6:39:1f:8b:bd:cd:7c:6c:72:
ad:04:71:d0:d9:54:43:62:d8:27:7b:f7:ab:db:07:42:93:2b:
66:80:94:0e:03:e4:54:d8:2f:99:18:e4:08:90:55:52:88:fe:
dc:1a:9c:95:91:ea:b5:d6:af:37:f0:4b:76:6b:46:0b:31:c1:
1c:7b:be:0d:fb:5d:fe:8c:93:3a:71:d6:03:c4:93:74:fd:a1:
5f:31:15:9d:ed:9e:8f:7e:50:96:97:b6:af:be:c6:1c:09:a9:
08:2a:b9:f0:76:5f:48:8c:0b:76:45:61:60:8a:d1:d1:70:21:
7a:59:30:8d:9e:be:c0:6a:f4:7f:cf:4f:e1:da:8b:b5:7f:4a:
ab:a2:cd:63:3a:34:90:d0:97:88:3d:59:34:a7:56:8a:6c:08:
cd:04:e9:f9:0a:90:4e:6d:8d:c6:4c:10:85:8c:50:d1:fa:31:
5f:8b:99:e0:53:ba:86:99:f4:95:12:8a:78:5a:39:4b:d3:bc:
00:bb:f5:f4:c8:20:e2:77:25:5f:6b:b1:6e:08:11:91:db:24:
49:90:a7:10:3b:22:98:9e:10:b6:dc:89:b0:19:55:07:44:95:
4e:29:84:ce:67:fd:08:3a:83:8c:f7:20:aa:dd:b7:12:cf:ba:
07:99:7d:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:52 2023 by rpki-client on console-ams.rpki-client.org