Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6d64a3-c0ba-46b3-af52-cc66fb8392c4/1/q0yuZ5sq3v-fYZX1mrNi2VynSg0.roa
File: q0yuZ5sq3v-fYZX1mrNi2VynSg0.roa (raw, json)
Hash identifier: U4O1DDgF6N9K2B0qSrHbLr5ouX1UxJA3pNh2XzdT2Rw=
Subject key identifier: AB:4C:AE:67:9B:2A:DE:FF:9F:61:95:F5:9A:B3:62:D9:5C:A7:4A:0D
Certificate issuer: /CN=eb06b60431d6c27a81d88b9d08304cba9c881433
Certificate serial: 0181F455762AE23E449C1047D8ADA9A12A89
Authority key identifier: EB:06:B6:04:31:D6:C2:7A:81:D8:8B:9D:08:30:4C:BA:9C:88:14:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6wa2BDHWwnqB2IudCDBMupyIFDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6d64a3-c0ba-46b3-af52-cc66fb8392c4/1/q0yuZ5sq3v-fYZX1mrNi2VynSg0.roa
Signing time: Tue 12 Jul 2022 21:34:10 +0000
ROA not before: Tue 12 Jul 2022 21:34:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 91.242.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f4:55:76:2a:e2:3e:44:9c:10:47:d8:ad:a9:a1:2a:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb06b60431d6c27a81d88b9d08304cba9c881433
Validity
Not Before: Jul 12 21:34:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab4cae679b2adeff9f6195f59ab362d95ca74a0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1c:56:a5:88:9f:3e:a2:59:b8:8d:07:ab:dc:
4a:f0:d9:da:f4:71:a7:72:68:1b:56:72:40:a7:11:
3a:cb:3a:9b:5f:e9:54:e2:e5:59:a3:9b:1d:4c:25:
77:56:50:08:5b:ed:3d:d1:a2:66:47:ae:5b:cd:8d:
cc:ee:81:b5:a1:24:24:34:dd:18:78:ec:b3:27:34:
ec:a4:2b:bd:90:b2:cb:95:a6:c6:11:0d:61:8d:d5:
26:ee:19:93:75:a3:06:51:c3:54:2f:26:19:59:59:
ef:e6:73:13:f4:a1:6a:fb:44:eb:fa:48:40:a6:75:
6e:27:fb:25:db:fd:44:c3:0a:0a:3d:e0:1c:6c:eb:
1f:07:1e:58:b4:ce:3d:8f:26:d4:80:c9:4b:8b:6f:
ab:0d:16:f6:9e:11:e4:d5:a0:56:de:b0:c0:cd:28:
e8:3a:02:ec:ed:47:a6:c8:87:21:cd:d1:cd:ae:a2:
5e:f8:b7:e2:ca:0a:20:34:3a:6c:d7:dd:97:49:01:
d5:5f:8d:c2:da:f1:cb:f4:5b:e0:d4:66:f8:ec:74:
aa:10:5a:47:58:97:96:bb:1a:65:6c:d7:b4:d2:7f:
50:35:49:55:b5:a4:f0:94:63:fe:60:9f:9e:26:2d:
f9:fd:47:45:4e:06:5d:ef:3a:0d:d2:53:ad:ef:fd:
48:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:4C:AE:67:9B:2A:DE:FF:9F:61:95:F5:9A:B3:62:D9:5C:A7:4A:0D
X509v3 Authority Key Identifier:
keyid:EB:06:B6:04:31:D6:C2:7A:81:D8:8B:9D:08:30:4C:BA:9C:88:14:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6wa2BDHWwnqB2IudCDBMupyIFDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6d64a3-c0ba-46b3-af52-cc66fb8392c4/1/q0yuZ5sq3v-fYZX1mrNi2VynSg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6d64a3-c0ba-46b3-af52-cc66fb8392c4/1/6wa2BDHWwnqB2IudCDBMupyIFDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.227.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:45:6d:36:3c:2c:51:1a:0c:ef:8c:dd:88:76:2e:dc:8a:f5:
50:db:bb:92:a8:4b:b5:c3:96:6d:84:b8:46:d5:22:70:41:18:
f7:1c:2c:b1:66:8c:03:f6:71:a4:58:d5:9d:93:e5:bb:ba:21:
37:0c:1a:b8:e4:b1:62:b2:20:c6:f8:1a:af:41:a5:a6:d0:8f:
8f:ac:f5:c2:17:8e:32:51:92:bc:a7:bf:d5:1d:4f:30:b4:df:
db:c3:d7:b3:a2:21:e8:e2:f9:81:2e:de:9b:4b:87:68:6a:ab:
6d:e0:7b:0f:af:5c:11:72:6a:8d:dd:30:28:f0:7d:56:b2:f7:
db:43:a3:93:35:a5:e1:01:05:dd:45:be:16:6b:77:1c:bf:49:
d3:6e:bc:05:1e:0b:d1:0f:f5:fa:8e:7c:b6:12:91:0f:dd:6f:
87:e9:a6:97:ac:17:53:4a:bd:43:35:af:97:6a:68:cd:a2:ae:
05:aa:4f:02:9c:55:78:33:58:51:d0:99:c7:a5:10:8c:17:c1:
85:f1:fd:58:db:2a:77:18:13:93:e0:61:25:dc:d8:23:8b:cc:
dc:37:98:78:11:e9:99:67:ac:6a:46:0c:b1:22:49:1b:fb:ed:
c1:5f:53:9b:e2:1c:f1:6c:a9:3e:f7:b2:68:c3:ac:39:9e:36:
ba:30:3b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:46 2023 by rpki-client on console-ams.rpki-client.org