Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/mF-4EL-_N56K8eXDmdeafi75ayk.roa
File: mF-4EL-_N56K8eXDmdeafi75ayk.roa (raw, json)
Hash identifier: uOII5Dxgrifq+JW/eYNhUb6XWeRiHeXl9FCDAn/z4k0=
Subject key identifier: 98:5F:B8:10:BF:BF:37:9E:8A:F1:E5:C3:99:D7:9A:7E:2E:F9:6B:29
Certificate issuer: /CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Certificate serial: 178F015F
Authority key identifier: D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/mF-4EL-_N56K8eXDmdeafi75ayk.roa
Signing time: Sat 01 Jan 2022 15:04:56 +0000
ROA not before: Sat 01 Jan 2022 15:04:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197043
IP address blocks: 91.216.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395247967 (0x178f015f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Validity
Not Before: Jan 1 15:04:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=985fb810bfbf379e8af1e5c399d79a7e2ef96b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:1e:3a:bb:e7:af:aa:ab:70:4c:9a:b1:74:bf:
54:3d:ec:06:b8:e7:8d:96:a9:28:f0:15:f4:1b:15:
60:fd:1a:23:69:b9:9d:76:06:c7:5e:41:f5:95:44:
fb:4e:26:45:05:80:8d:56:75:7f:54:8b:fa:32:e2:
b7:1c:fb:ef:62:38:5e:68:21:cc:e1:e7:e2:b8:ea:
7d:88:47:e6:d2:d5:52:a3:fb:57:29:52:28:eb:00:
0e:8a:12:d2:69:23:e8:25:be:5c:23:6a:0f:51:8b:
83:64:e2:ca:16:e6:a5:9a:d2:ca:c2:f1:8b:22:a3:
be:91:d9:6d:25:93:67:4f:76:1a:ad:6b:2c:7d:46:
36:71:85:5e:ff:29:33:99:93:72:6f:9d:b5:94:fa:
57:86:87:5a:00:f6:65:4d:28:25:1e:1d:23:b1:c1:
ae:d4:b1:bf:16:5b:44:7d:2e:72:86:4f:6d:a6:de:
f5:97:57:42:ce:35:8c:68:41:0c:8f:60:c1:90:aa:
17:da:6f:a4:01:da:d2:f9:3a:ad:e9:a4:3e:a6:61:
91:0f:89:2b:5f:cc:a9:e7:57:20:5d:6a:81:9f:36:
b4:01:fe:d8:ed:a8:66:20:66:5a:15:48:e3:03:8c:
f1:e1:45:94:41:24:24:4f:69:ab:2d:2f:9d:83:72:
34:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5F:B8:10:BF:BF:37:9E:8A:F1:E5:C3:99:D7:9A:7E:2E:F9:6B:29
X509v3 Authority Key Identifier:
keyid:D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/mF-4EL-_N56K8eXDmdeafi75ayk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.35.0/24
Signature Algorithm: sha256WithRSAEncryption
22:c0:94:84:f0:22:ee:e6:40:43:3d:ed:7e:40:a2:d7:72:1b:
b7:73:3b:e5:c5:e8:42:21:46:fd:8f:eb:1f:aa:ad:f0:06:29:
4c:56:ab:fa:0b:fa:1a:67:67:00:73:80:36:25:e8:02:b6:b4:
39:2e:03:f9:cc:5d:bd:f2:ee:71:ec:98:ca:20:fc:2e:55:c5:
8d:52:4f:ac:d6:3b:f8:7a:3a:f2:e4:5b:0a:27:49:8d:81:32:
fc:f2:87:15:5d:13:90:f7:c6:0d:57:7d:b6:b3:4d:b0:da:fb:
18:48:88:d1:b3:91:04:81:c3:21:4b:eb:aa:f6:02:67:57:1f:
b2:39:89:11:ee:c7:1b:c5:91:f1:69:e8:3a:e7:55:99:c6:aa:
e0:45:57:d0:f9:61:5f:55:d0:77:20:56:84:32:b3:74:96:81:
18:90:67:36:7e:3c:bb:c5:71:6e:59:9e:0b:7a:e3:93:85:69:
02:5b:aa:7f:d7:fe:c3:5a:60:10:9e:f5:a9:3b:bb:88:de:ce:
43:ea:57:46:e2:4c:9c:57:f5:35:49:8f:dc:68:c1:e6:90:c7:
a2:65:a8:68:9b:3f:76:dd:e7:82:e7:c2:dd:29:0d:65:d8:81:
c3:4c:f1:3a:e7:c1:d7:b7:34:ba:76:5a:5a:b9:23:91:c3:6a:
64:7c:db:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:26 2023 by rpki-client on console-fra.rpki-client.org