Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/4FIiOfvercZiydb8UxtjWMv3-Xo.roa
File: 4FIiOfvercZiydb8UxtjWMv3-Xo.roa (raw, json)
Hash identifier: ItjkYAJMONlEKEgcj4S2UXHM4ymYNc9f96qkoUTJeK8=
Subject key identifier: E0:52:22:39:FB:DE:AD:C6:62:C9:D6:FC:53:1B:63:58:CB:F7:F9:7A
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01828CE0D823F24F4AD131114E69C2A715A0
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/4FIiOfvercZiydb8UxtjWMv3-Xo.roa
Signing time: Thu 11 Aug 2022 12:28:41 +0000
ROA not before: Thu 11 Aug 2022 12:28:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 91.243.178.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8c:e0:d8:23:f2:4f:4a:d1:31:11:4e:69:c2:a7:15:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Aug 11 12:28:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0522239fbdeadc662c9d6fc531b6358cbf7f97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2a:4f:84:16:41:c7:67:c1:88:53:2b:37:2e:
61:61:72:ee:58:0f:67:4d:37:25:16:48:ef:8b:b3:
bc:31:aa:2a:2e:89:ad:54:32:d3:cc:97:6f:f7:b7:
5a:3f:2c:3a:d3:29:8d:32:ac:35:44:26:88:e1:72:
c6:f7:b2:00:10:ea:9e:68:f2:fc:06:9a:24:06:66:
be:37:bd:79:48:cd:fc:f5:57:0c:bd:32:15:48:a4:
51:3d:b8:61:a6:6f:0f:5f:87:b4:b4:7c:4c:f7:35:
e3:5d:41:00:8b:87:c2:7d:f0:39:bf:1d:a9:ca:2f:
9c:c2:32:df:2a:02:7b:18:28:31:57:72:b4:20:08:
95:a4:24:65:17:87:d2:cb:93:57:b0:46:39:7d:ac:
53:1c:fe:17:63:08:55:89:c0:23:d0:9a:8b:e3:9a:
e5:8a:eb:61:29:2b:15:3d:32:44:8f:a6:a1:1f:8f:
0a:c7:b4:30:97:84:9b:d2:3c:ea:9a:dc:c6:57:72:
01:5b:f9:b4:ef:17:e9:01:22:7f:15:b3:d9:a3:0e:
c4:46:9c:4e:2d:2c:bd:33:3f:1c:3c:da:80:43:54:
b9:0a:7e:10:51:e1:9f:50:fa:93:6a:bb:43:e1:03:
c0:18:dc:99:67:f9:f0:60:5e:e6:c3:1c:77:a9:57:
d8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:52:22:39:FB:DE:AD:C6:62:C9:D6:FC:53:1B:63:58:CB:F7:F9:7A
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/4FIiOfvercZiydb8UxtjWMv3-Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.178.0/24
Signature Algorithm: sha256WithRSAEncryption
94:85:5b:6a:ad:4c:cb:84:b0:03:4b:9a:c7:f9:45:84:b7:7c:
cc:47:84:cb:12:da:4f:c7:7d:19:5f:c4:20:b4:8c:45:74:c2:
cc:ff:70:38:7a:e8:ac:15:98:68:0e:a8:36:66:06:66:16:1c:
7e:b0:6d:c0:5c:24:99:a6:4e:b5:3c:3e:3f:c7:91:13:b4:81:
3b:23:78:de:82:58:7b:47:0b:cd:99:e5:ef:a9:65:d2:66:78:
4c:17:7b:7a:f6:c5:99:cd:8a:15:8a:16:5b:45:b3:1d:e5:a5:
a6:37:50:f6:4e:9d:98:06:f4:7e:02:91:67:0c:fb:75:d0:20:
37:08:8e:74:3c:5b:b1:8d:7d:6b:b2:c5:e8:29:90:d8:0b:fa:
d7:5c:8b:2a:80:17:ed:56:b9:26:aa:42:6d:98:05:ee:04:e8:
f2:99:06:53:a5:78:d5:a6:2d:0b:7f:cc:7a:35:83:52:a0:31:
56:92:e9:69:cb:f3:ab:59:d1:5b:dc:80:b7:1e:a5:1d:23:e0:
e9:7c:af:ea:e3:63:69:53:51:34:95:58:4a:8d:07:55:a0:0f:
69:3d:7d:a2:11:37:39:e2:75:4c:ca:6a:b2:de:a1:fb:e5:79:
f0:1c:29:c7:e4:12:1c:d9:5e:6f:60:f2:bf:3e:85:3b:a3:ef:
11:e9:1f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:13 2024 by rpki-client on console-ams.rpki-client.org