Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/mIh7rreJlEW87_nWQORyW0Pk6aA.roa
File: mIh7rreJlEW87_nWQORyW0Pk6aA.roa (raw, json)
Hash identifier: i23oRZaGLkoJG3lRdqqohLIP+I2mEWWRmOEeyIHn+ys=
Subject key identifier: 98:88:7B:AE:B7:89:94:45:BC:EF:F9:D6:40:E4:72:5B:43:E4:E9:A0
Certificate issuer: /CN=0d291922587f750f78a19795cbd89bc729af17d5
Certificate serial: 03393E27
Authority key identifier: 0D:29:19:22:58:7F:75:0F:78:A1:97:95:CB:D8:9B:C7:29:AF:17:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSkZIlh_dQ94oZeVy9ibxymvF9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/mIh7rreJlEW87_nWQORyW0Pk6aA.roa
Signing time: Sat 01 Jan 2022 07:52:34 +0000
ROA not before: Sat 01 Jan 2022 07:52:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39305
IP address blocks: 91.132.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54083111 (0x3393e27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d291922587f750f78a19795cbd89bc729af17d5
Validity
Not Before: Jan 1 07:52:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=98887baeb7899445bceff9d640e4725b43e4e9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:56:cb:b2:bb:b2:ca:7e:ac:62:b9:cb:9f:c2:
43:a1:3f:48:40:b9:a4:d4:19:66:89:ba:1f:24:d4:
48:d6:cd:f6:cf:2b:af:ab:41:d3:1d:2c:01:10:0c:
cc:21:c7:fc:7a:cc:c7:17:82:98:5f:8b:c1:d8:69:
4f:12:c7:27:73:9e:d3:87:1f:22:e2:fe:6e:da:01:
2f:47:49:82:f9:e0:ab:8a:ea:85:4c:27:a2:8c:ff:
08:60:25:33:10:a6:ea:ab:17:94:c3:62:a4:ab:f6:
11:74:83:83:a1:c8:80:bc:65:63:2c:06:04:ba:aa:
f4:a1:ba:d0:e7:1e:47:0b:ec:4e:bd:6d:e8:80:74:
5e:ef:18:63:2f:f9:41:96:a2:bb:4d:70:61:63:7b:
8a:fd:7e:6b:92:43:1d:05:53:52:ed:4c:2c:c5:15:
47:88:59:cf:7e:d1:98:04:9f:a2:7b:6a:cc:53:f1:
1b:e7:ec:0a:4f:c6:fe:6d:bb:8e:bb:16:e5:5b:27:
b0:03:d8:be:b5:51:93:36:6f:6c:7b:ae:fb:c6:2f:
35:cf:13:7e:4d:c1:91:2c:0c:4f:77:a2:f2:92:08:
8e:53:de:f7:08:41:1f:a8:99:d9:c3:81:8f:0f:30:
74:a8:b7:ee:04:89:98:d1:a5:fb:1f:ac:ee:ad:12:
13:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:88:7B:AE:B7:89:94:45:BC:EF:F9:D6:40:E4:72:5B:43:E4:E9:A0
X509v3 Authority Key Identifier:
keyid:0D:29:19:22:58:7F:75:0F:78:A1:97:95:CB:D8:9B:C7:29:AF:17:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSkZIlh_dQ94oZeVy9ibxymvF9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/mIh7rreJlEW87_nWQORyW0Pk6aA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4df8f1-241d-4339-b0f6-d65ad430beb7/1/DSkZIlh_dQ94oZeVy9ibxymvF9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.44.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:e9:2d:ec:5e:18:03:47:31:36:15:b5:6c:09:3c:d2:b0:ec:
08:a8:a3:9a:07:1f:ee:66:b5:ac:83:1f:4e:d3:c0:f3:ec:22:
15:73:ce:0e:6b:5b:a1:3e:b5:1c:fd:6c:90:06:8c:2a:b6:f9:
c9:99:2a:a3:14:88:34:e3:e2:6f:f1:5e:6c:c9:b8:99:16:53:
80:9c:62:33:a8:a2:cb:4f:0f:f2:7f:d2:23:51:fa:ba:93:b8:
45:fb:04:02:1b:c8:0f:b4:97:0a:56:35:43:2e:1a:8d:1c:83:
42:a4:64:8c:cd:a9:d6:37:88:44:42:69:3d:06:42:25:17:f6:
f9:62:b9:ad:be:06:5e:8b:78:f4:1e:19:0d:f2:d0:e6:c6:b7:
fa:0c:65:26:32:02:35:11:11:7c:96:7c:cf:d1:65:55:90:82:
af:29:4c:57:16:a9:2c:a6:ef:c1:b0:16:f3:78:ec:2a:ed:f4:
33:b2:c9:c6:de:5b:5f:e4:28:35:b2:69:28:61:6b:15:46:ac:
d7:3a:ff:87:5c:13:e4:92:35:24:86:c1:96:5f:77:a9:42:14:
6d:9d:1b:27:1e:b2:14:ca:a3:a8:a6:6a:c3:b5:3d:d8:df:63:
73:92:e3:e9:77:c8:a3:40:c9:61:17:a2:a0:66:22:fc:cc:48:
11:12:9b:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:12 2023 by rpki-client on console-fra.rpki-client.org