Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/xoejL2X4KtBbbdpf7GB6MYI5xu8.roa
File: xoejL2X4KtBbbdpf7GB6MYI5xu8.roa (raw, json)
Hash identifier: fOhsLVcfoBab3J6WvKQKCstiDUOzIK+IB0XRM1on/lQ=
Subject key identifier: C6:87:A3:2F:65:F8:2A:D0:5B:6D:DA:5F:EC:60:7A:31:82:39:C6:EF
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 0184E7492437AC5A7123F97B46093B6CDF17
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/xoejL2X4KtBbbdpf7GB6MYI5xu8.roa
Signing time: Tue 06 Dec 2022 11:54:00 +0000
ROA not before: Tue 06 Dec 2022 11:54:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 91.228.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e7:49:24:37:ac:5a:71:23:f9:7b:46:09:3b:6c:df:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Dec 6 11:54:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c687a32f65f82ad05b6dda5fec607a318239c6ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6b:6d:35:de:31:69:b6:38:b1:2b:5d:56:76:
5f:15:12:88:ac:69:5f:af:4d:ee:3a:d9:61:39:0a:
f7:a4:8f:ce:82:8c:75:e6:01:3d:d0:ae:7c:92:50:
72:73:0c:b9:27:f5:ea:69:e6:6f:16:5b:e2:52:1e:
e0:e5:83:d0:fe:93:23:7f:c1:9e:9c:23:56:8a:06:
1a:c1:e8:8a:2f:b7:7b:7e:1e:cf:2f:e0:38:82:61:
7f:7f:07:37:68:83:68:ee:78:ce:b2:1c:8a:2f:f7:
9f:05:f8:d3:e3:b0:e7:6d:34:45:d5:bb:24:02:a3:
fc:6b:c2:3b:d1:6e:87:b7:a2:ec:e6:f7:0e:15:f3:
ef:1c:b4:fd:50:e7:28:ab:ee:05:30:27:aa:f1:91:
5a:af:fc:36:f6:45:b1:e3:1e:48:90:1e:e1:92:d4:
5d:27:24:8f:ee:a2:e0:dc:a0:48:5b:e7:38:22:55:
f7:ad:23:6a:f2:c4:9e:49:27:08:94:50:c7:54:e7:
c2:76:00:8d:31:e9:af:23:1e:8d:c7:84:2b:7d:00:
75:bd:81:4d:02:6a:95:8f:d3:92:79:c2:26:94:e5:
e2:e9:3e:9f:b8:97:05:c7:4f:cb:50:a7:6e:28:d2:
e9:14:01:77:6c:56:07:de:2c:6f:20:6c:e9:60:96:
49:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:87:A3:2F:65:F8:2A:D0:5B:6D:DA:5F:EC:60:7A:31:82:39:C6:EF
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/xoejL2X4KtBbbdpf7GB6MYI5xu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:7d:c7:25:34:c6:8d:41:73:a2:07:4c:8a:27:f9:66:08:dc:
40:38:5a:9a:13:05:7c:dc:e3:9d:ef:31:9c:4c:92:74:52:82:
d6:26:12:91:09:a4:f8:b4:6e:7b:ce:af:c5:c6:18:da:d3:3f:
60:f6:0a:c3:0b:ce:5d:84:77:5d:df:60:8f:e3:0e:a9:6f:ce:
28:9c:ce:e3:d0:2a:fa:02:0a:00:87:0a:36:e8:c8:23:36:2d:
34:68:0c:c5:1c:1b:a3:36:02:38:7e:f1:be:77:78:14:6c:26:
93:b5:32:f0:c7:3a:40:b5:2f:26:11:02:37:36:af:b3:e5:64:
e4:29:7f:38:59:17:e8:da:2e:45:55:ab:cd:ad:42:b6:9c:f1:
28:d3:fa:b4:cd:d0:51:7b:df:d3:7a:a3:6b:9e:bb:dd:02:ad:
0f:53:c9:26:17:ac:02:ed:d8:84:40:ab:ed:69:e1:13:f3:c7:
e2:34:dd:24:22:93:b1:1d:6f:2a:cf:ba:83:cd:76:5c:c7:7b:
06:be:dc:9f:d8:35:97:3d:46:58:e9:89:14:e0:10:28:08:0e:
03:bd:11:81:3f:a7:3f:55:2c:03:1c:e6:30:a6:6e:5b:67:d6:
67:8e:cd:31:e2:ee:d8:49:73:42:7d:b2:03:12:95:5b:4b:e9:
e0:aa:df:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:07 2023 by rpki-client on console-fra.rpki-client.org