Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/X1lL2haGRroq-s1yCuxzZ-ENqJo.roa
File: X1lL2haGRroq-s1yCuxzZ-ENqJo.roa (raw, json)
Hash identifier: l8E3s3C4WW+vslONetfvlbG8Xi9WhS7oR5WCCc7NOSg=
Subject key identifier: 5F:59:4B:DA:16:86:46:BA:2A:FA:CD:72:0A:EC:73:67:E1:0D:A8:9A
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 0182821B461A2163C71671B13A802415CC3A
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/X1lL2haGRroq-s1yCuxzZ-ENqJo.roa
Signing time: Tue 09 Aug 2022 10:16:41 +0000
ROA not before: Tue 09 Aug 2022 10:16:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 91.228.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:82:1b:46:1a:21:63:c7:16:71:b1:3a:80:24:15:cc:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Aug 9 10:16:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f594bda168646ba2afacd720aec7367e10da89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c9:7a:4e:a9:10:38:d6:16:a8:e7:cf:49:a6:
26:ed:7a:50:ca:be:76:30:b9:47:6b:a1:c5:50:1a:
90:2a:ac:5b:a7:77:d6:6d:c9:e3:e3:e6:88:37:9e:
b9:45:69:3c:72:31:9b:72:0a:87:60:f4:f8:36:43:
00:bd:88:76:5d:b8:2c:75:39:1f:29:9d:a2:63:d7:
be:fb:57:17:50:b5:9a:3d:24:e9:6b:41:ea:f1:31:
c5:38:e7:6b:0e:63:56:65:bb:f4:39:94:fd:32:68:
73:42:3a:a3:85:ed:09:b0:ad:6b:46:9e:93:d2:11:
98:c5:9f:cc:15:de:83:70:0e:9f:7a:7e:89:ef:50:
5b:07:f3:19:31:10:49:0d:0d:b0:4b:cf:90:7c:52:
53:69:df:c5:d1:ea:b6:b7:8d:92:db:34:34:1e:44:
70:86:61:e3:49:ae:45:4e:8b:6a:1c:f5:9c:70:69:
66:65:6d:13:2e:60:7f:c4:f3:af:f3:e4:f4:b9:d9:
bc:ce:dc:78:55:96:70:61:f0:a3:32:48:b1:ec:c1:
77:f9:01:e4:42:78:6d:16:24:fb:31:91:92:23:0f:
6f:d1:84:54:64:cf:37:33:0f:e2:01:e0:53:77:07:
3c:7b:db:f1:24:be:3b:f9:cb:b4:a6:51:9e:a0:8c:
15:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:59:4B:DA:16:86:46:BA:2A:FA:CD:72:0A:EC:73:67:E1:0D:A8:9A
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/X1lL2haGRroq-s1yCuxzZ-ENqJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:cf:42:f1:ba:0f:f6:06:65:fb:69:34:41:cb:fa:ce:83:84:
f3:8e:25:56:40:c5:8a:71:5c:16:98:1b:e7:d6:e6:75:8e:38:
6b:78:7a:95:c4:35:34:40:d5:3f:82:9f:4c:c6:70:ec:ed:92:
45:e6:75:a7:5a:af:08:0f:57:77:29:ba:3b:af:2d:b0:a1:d8:
7f:e5:a9:c6:b8:42:99:39:32:49:5c:09:0b:44:4a:7e:fd:92:
1e:77:cb:03:b9:09:97:18:46:d4:08:ff:43:58:bd:d5:bb:9c:
23:be:f3:69:24:89:40:15:2c:c2:35:bd:db:ad:0f:85:72:3c:
5f:03:35:b8:19:a1:66:8b:c0:81:f0:9d:23:56:93:fc:fc:f2:
df:1d:db:ab:77:5a:44:f6:cf:e8:a4:95:55:b0:e2:42:43:c1:
5e:9a:8e:84:36:82:51:97:62:5c:06:c1:5f:f8:91:67:12:f4:
a0:0c:e6:11:f0:bd:03:07:90:85:8e:49:49:42:75:30:6a:52:
20:d5:7d:35:33:09:58:45:2b:e7:f2:0f:ed:68:d8:d5:d7:60:
09:fd:1a:0d:b5:50:29:0f:48:7a:3b:a8:5e:28:18:ca:5f:cc:
44:4c:e2:ed:99:c2:08:c7:9c:94:e4:aa:1e:3c:18:9e:15:8d:
44:68:5f:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-fra.rpki-client.org