Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/810cf1-cf41-4cbb-a53a-493da9cc4c0c/1/BOPieWfMIw9gBVTz0zcHO5z5PYI.roa
File: BOPieWfMIw9gBVTz0zcHO5z5PYI.roa (raw, json)
Hash identifier: To7Ul1KQSlhFmn2qUGuoEGGAO9OfdljMDrziV4Tx2u4=
Subject key identifier: 04:E3:E2:79:67:CC:23:0F:60:05:54:F3:D3:37:07:3B:9C:F9:3D:82
Certificate issuer: /CN=f6eb355344f355f2c5f1c6b0ba8c309c1143c6c7
Certificate serial: 0214DB7C
Authority key identifier: F6:EB:35:53:44:F3:55:F2:C5:F1:C6:B0:BA:8C:30:9C:11:43:C6:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9us1U0TzVfLF8cawuowwnBFDxsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/810cf1-cf41-4cbb-a53a-493da9cc4c0c/1/BOPieWfMIw9gBVTz0zcHO5z5PYI.roa
Signing time: Sat 01 Jan 2022 01:55:18 +0000
ROA not before: Sat 01 Jan 2022 01:55:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43872
IP address blocks: 91.201.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34921340 (0x214db7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6eb355344f355f2c5f1c6b0ba8c309c1143c6c7
Validity
Not Before: Jan 1 01:55:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04e3e27967cc230f600554f3d337073b9cf93d82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b1:02:12:2b:55:84:ed:1f:d6:97:46:ec:ee:
d6:00:5e:ce:ac:a8:42:ea:36:13:8a:5a:41:94:02:
22:5c:2a:7e:43:de:dd:85:97:f3:8b:b8:ad:2e:98:
4f:c8:33:1e:c8:40:3f:bc:62:97:10:9a:ba:99:4d:
95:ed:20:e7:31:43:bd:81:bd:39:ca:e5:1f:a3:18:
2d:71:d8:7c:c7:b5:e6:4b:f0:05:37:7e:b5:f7:e2:
15:c4:40:c5:80:08:8f:2c:c0:3e:43:41:a6:fb:d0:
40:d0:b3:c3:a2:28:47:19:df:3d:a7:dc:bd:50:8e:
ca:94:2e:38:43:d2:65:45:9f:9f:30:71:dc:ca:83:
82:44:16:60:66:cd:b7:61:5a:c6:a9:61:0f:f7:5c:
c3:ef:3f:7e:7a:b5:db:9f:ac:bf:e8:ff:24:11:18:
c0:4e:8a:89:7d:03:25:32:8f:03:6c:0e:c6:6f:9f:
34:a1:cb:bc:a0:ea:ff:f8:6b:52:9f:5e:db:ed:69:
6e:34:1c:5a:ff:a3:f9:4c:c4:39:b4:d1:e4:de:1a:
c0:45:fb:66:d4:3c:33:af:2c:1a:02:05:60:9c:5c:
70:02:43:a8:94:9c:a6:75:14:c4:2e:48:aa:70:75:
76:ea:73:40:e3:d1:84:85:ea:80:1d:9b:cc:ea:a7:
47:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E3:E2:79:67:CC:23:0F:60:05:54:F3:D3:37:07:3B:9C:F9:3D:82
X509v3 Authority Key Identifier:
keyid:F6:EB:35:53:44:F3:55:F2:C5:F1:C6:B0:BA:8C:30:9C:11:43:C6:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9us1U0TzVfLF8cawuowwnBFDxsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/810cf1-cf41-4cbb-a53a-493da9cc4c0c/1/BOPieWfMIw9gBVTz0zcHO5z5PYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/810cf1-cf41-4cbb-a53a-493da9cc4c0c/1/9us1U0TzVfLF8cawuowwnBFDxsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.105.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:60:1c:79:f2:e9:72:e0:06:12:40:1c:b8:82:32:ee:19:66:
da:49:5b:bb:2b:08:f9:c7:02:e7:90:91:80:24:cc:1b:90:2e:
0c:72:20:33:43:69:e5:a0:74:82:a4:ff:f6:79:6f:ec:6c:7c:
67:06:2c:0c:3c:e8:a5:69:6c:d5:d9:8c:29:44:2c:02:7f:b1:
68:a2:69:25:33:15:94:5e:50:66:32:ed:91:cf:a4:11:5f:11:
28:5b:76:b4:d5:7d:0e:ae:13:c3:5b:6f:aa:8f:bc:a0:76:48:
bb:a4:1f:d8:74:9f:08:f6:7e:a9:f1:a8:dc:5f:f0:23:99:f0:
e4:21:8c:19:08:f9:a0:8b:37:cb:c3:e4:9b:8a:db:8f:78:a4:
b1:bc:f6:0b:01:34:5a:b8:66:0e:ce:5b:88:d6:3a:0f:0a:99:
c7:b0:a4:6a:3c:20:2a:a3:49:79:e9:ce:5a:ce:f1:11:d8:c0:
fc:3f:39:87:ac:a9:31:ef:d4:80:3d:d9:bf:c7:0a:3f:7f:79:
2e:bb:d3:8c:2b:d2:34:aa:86:31:5d:90:9a:1f:d5:54:9d:2c:
8b:04:03:98:0c:0b:6e:c6:a6:af:1a:c5:2f:db:34:aa:c8:a1:
ce:c0:0d:9e:6f:5f:85:bd:3b:d8:72:56:ff:25:f0:89:14:c1:
47:96:59:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:06 2023 by rpki-client on console-fra.rpki-client.org