Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/7Ifr9hb8S4EJD1EVItM1VG4KRBo.roa
File: 7Ifr9hb8S4EJD1EVItM1VG4KRBo.roa (raw, json)
Hash identifier: xNOZH/xEeAkLnx2AI6f43QyKwmQ2DkewPQvUehTCiS4=
Subject key identifier: EC:87:EB:F6:16:FC:4B:81:09:0F:51:15:22:D3:35:54:6E:0A:44:1A
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 0182D6E72BE89B10E9D54BD3B49485C8F2FF
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/7Ifr9hb8S4EJD1EVItM1VG4KRBo.roa
Signing time: Thu 25 Aug 2022 21:27:30 +0000
ROA not before: Thu 25 Aug 2022 21:27:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.147.124.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d6:e7:2b:e8:9b:10:e9:d5:4b:d3:b4:94:85:c8:f2:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: Aug 25 21:27:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec87ebf616fc4b81090f511522d335546e0a441a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:11:61:1f:fa:ce:3f:90:55:01:74:98:e5:93:
17:09:0f:be:0e:08:9d:66:a7:ea:09:0a:bc:67:1b:
91:57:98:ae:a1:ed:e5:76:3d:b3:a0:9f:94:88:08:
0b:e7:07:8c:83:0a:a4:f2:8b:9f:d1:ad:07:3f:a0:
1e:84:dd:41:27:f4:a9:9b:5a:b1:e6:53:63:69:a4:
02:9c:1a:c2:33:f7:69:c0:62:cc:71:27:46:72:36:
f1:81:db:02:9a:90:94:30:56:04:c2:41:63:9e:a3:
a2:50:1e:a9:be:18:3c:02:03:0f:e9:a5:4d:c9:fe:
e1:bb:59:5d:cb:bf:f4:d0:9b:bb:45:30:cc:d8:a3:
ba:b9:75:7e:f2:2a:83:d7:66:68:11:44:c2:13:4a:
28:d5:d5:9d:3d:67:18:57:59:42:ac:9b:43:3d:1a:
89:63:35:bb:46:06:4a:8e:a4:a8:05:93:f9:31:ff:
92:8d:7c:01:c4:74:73:63:42:0f:c3:76:97:cc:e9:
17:86:1b:7e:ae:fb:66:ad:2f:19:db:3b:f1:97:00:
3b:ee:d6:c8:2e:dd:e1:31:9c:03:c0:6d:83:94:8e:
b7:5d:0a:93:65:05:01:75:7f:0b:b4:88:ce:88:7b:
f5:81:97:14:08:77:de:ee:bb:ae:1c:28:5e:a7:00:
c1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:87:EB:F6:16:FC:4B:81:09:0F:51:15:22:D3:35:54:6E:0A:44:1A
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/7Ifr9hb8S4EJD1EVItM1VG4KRBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.124.0/23
Signature Algorithm: sha256WithRSAEncryption
78:24:67:7b:00:34:3d:d3:28:a5:0a:b3:8c:d2:bf:2c:74:92:
29:7b:ef:b1:9e:21:45:4e:87:38:44:9b:e3:27:b6:73:2b:b9:
4c:d6:db:41:e2:28:33:3d:bb:97:14:0b:77:fc:19:6b:0d:ec:
2c:58:cf:7d:9d:45:1a:55:c4:4b:fc:d8:4b:68:94:2f:4f:81:
fa:53:12:8d:47:b4:23:11:8c:c9:34:ba:c1:e5:ec:2c:70:f0:
bc:d3:ae:fd:27:f1:42:22:a0:cc:ce:af:78:36:26:0b:24:f6:
45:c1:cb:9a:a3:d5:78:40:05:08:15:cb:ed:3d:df:2f:0e:3b:
a2:f0:11:34:cf:15:58:b4:1e:e8:b7:19:b6:5d:2c:cf:77:b8:
ab:f1:11:69:50:e5:a7:d8:5a:85:a0:3f:6e:09:bd:87:f9:29:
76:0e:16:71:87:d0:0f:3d:3a:db:b8:3c:d8:ec:bc:45:6d:79:
2d:cb:ec:29:2f:69:4f:41:3e:b9:69:cc:91:f4:02:28:e0:b1:
36:32:46:63:c4:81:35:1a:14:6c:f9:09:e3:0e:0d:f8:37:4a:
9e:7b:36:9c:ec:14:27:69:0b:e3:98:cf:fd:4e:3f:ff:41:a1:
83:cc:db:5f:88:54:04:3c:3c:9c:81:24:82:67:05:49:38:c9:
f5:da:33:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:09 2023 by rpki-client on console-fra.rpki-client.org