Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/0e9e2a-a6f0-4784-9677-bd2626e99073/1/ZJ7VwBCTmeAwR2n-9d2Z_ug-vjc.roa
File: ZJ7VwBCTmeAwR2n-9d2Z_ug-vjc.roa (raw, json)
Hash identifier: 5hB0zk5GXSeX7UH2fNY8YXDT7VcaL7FmnONHhVMnpjk=
Subject key identifier: 64:9E:D5:C0:10:93:99:E0:30:47:69:FE:F5:DD:99:FE:E8:3E:BE:37
Certificate issuer: /CN=0b4326f84c150160c720765998fe8fa53ca2e2e8
Certificate serial: 01828761AD8BA81D32F429F5A1C294A4AD0C
Authority key identifier: 0B:43:26:F8:4C:15:01:60:C7:20:76:59:98:FE:8F:A5:3C:A2:E2:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C0Mm-EwVAWDHIHZZmP6PpTyi4ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/0e9e2a-a6f0-4784-9677-bd2626e99073/1/ZJ7VwBCTmeAwR2n-9d2Z_ug-vjc.roa
Signing time: Wed 10 Aug 2022 10:51:41 +0000
ROA not before: Wed 10 Aug 2022 10:51:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 55331
IP address blocks: 91.237.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:61:ad:8b:a8:1d:32:f4:29:f5:a1:c2:94:a4:ad:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b4326f84c150160c720765998fe8fa53ca2e2e8
Validity
Not Before: Aug 10 10:51:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=649ed5c0109399e0304769fef5dd99fee83ebe37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:48:6e:6a:c7:89:5d:56:07:4d:75:b4:11:8b:
f0:27:f9:43:ea:15:d0:35:f1:15:c2:19:88:84:b6:
85:3f:ca:a1:be:63:75:0c:30:56:37:eb:94:e5:8d:
5c:40:47:92:95:ab:7b:d5:87:c5:1d:e8:6b:d4:fc:
31:3d:c4:3e:74:67:ae:f9:47:72:f0:5c:7d:78:e6:
41:82:56:cb:31:06:3e:21:f7:48:b0:f7:49:db:e2:
b6:2e:b4:25:ac:8b:e1:1a:3f:c9:f9:91:bc:32:a0:
86:17:4a:18:5f:51:fe:f3:01:5a:bf:d1:a6:a8:33:
6f:88:f9:5c:3a:fc:2a:94:36:27:f3:16:dd:fc:8f:
d7:a6:17:74:4b:28:ad:90:78:f9:8f:ca:6e:85:af:
7c:b3:c6:6b:2f:74:ba:e1:e9:f3:36:a5:87:59:60:
65:20:93:64:d5:73:31:16:af:b4:33:2e:4f:01:29:
ee:ba:91:c3:26:47:f0:4a:64:52:58:aa:bd:6a:a6:
ec:9b:a5:62:f4:a9:7d:ef:f7:d7:9c:27:96:51:ce:
03:4c:26:0e:98:3b:71:08:4e:0a:39:85:5b:26:c0:
8d:09:2c:93:fa:32:af:73:bb:72:67:d9:42:56:bd:
c4:45:e5:6c:6e:de:33:8a:bd:7b:28:52:6f:af:e2:
d3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:9E:D5:C0:10:93:99:E0:30:47:69:FE:F5:DD:99:FE:E8:3E:BE:37
X509v3 Authority Key Identifier:
keyid:0B:43:26:F8:4C:15:01:60:C7:20:76:59:98:FE:8F:A5:3C:A2:E2:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C0Mm-EwVAWDHIHZZmP6PpTyi4ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/0e9e2a-a6f0-4784-9677-bd2626e99073/1/ZJ7VwBCTmeAwR2n-9d2Z_ug-vjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/0e9e2a-a6f0-4784-9677-bd2626e99073/1/C0Mm-EwVAWDHIHZZmP6PpTyi4ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.87.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:ad:12:74:55:9c:e6:91:1a:cc:18:d2:bc:04:80:b9:a2:cb:
1f:0d:8b:38:fc:55:10:3c:9d:9a:44:0e:f1:cd:ec:cb:2b:e1:
c1:bd:d8:db:00:b4:d3:a7:e3:f9:b0:58:22:96:6d:62:91:48:
9a:1b:03:bb:65:30:04:d1:51:e2:18:c8:24:44:42:1a:14:e0:
12:72:f8:c1:bd:51:4c:52:e4:d7:7c:4d:db:ca:d1:b3:ee:46:
01:e8:dd:2d:d3:1c:48:d2:9c:2a:f7:3e:31:35:84:67:9f:94:
f4:0e:01:c5:47:89:37:ae:9a:50:ef:36:f9:ce:b2:2c:1b:12:
f2:07:ee:26:b1:ac:6d:10:a0:ad:ee:c8:41:12:bf:d0:ea:fb:
b0:bb:41:92:b1:90:8c:5d:1e:40:82:02:6a:12:03:ac:c6:d8:
b4:f7:93:51:c5:7b:04:67:35:0a:07:29:2d:88:88:af:e7:c6:
37:f0:da:13:46:81:8f:60:c1:ae:6e:ac:44:80:ca:29:21:0d:
7a:c2:de:a1:4c:31:d9:97:d4:cb:ec:f5:0a:66:5f:61:f8:58:
ca:8f:24:13:f9:5c:cb:ff:49:14:3b:18:b4:2d:ea:a4:17:b3:
fc:48:bc:0a:51:42:87:47:68:d3:5a:b2:e6:ff:ec:a2:05:e9:
71:d9:cc:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:21 2023 by rpki-client on console-fra.rpki-client.org