Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/yrF4CRxLXg64_dD6zb_mLYQ7zN4.roa
File: yrF4CRxLXg64_dD6zb_mLYQ7zN4.roa (raw, json)
Hash identifier: PEjgOoguTvRmaaNWYxbStOceJ8SbsrLf1WsbvKnw2JU=
Subject key identifier: CA:B1:78:09:1C:4B:5E:0E:B8:FD:D0:FA:CD:BF:E6:2D:84:3B:CC:DE
Certificate issuer: /CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Certificate serial: 178DE809
Authority key identifier: D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/yrF4CRxLXg64_dD6zb_mLYQ7zN4.roa
Signing time: Sat 01 Jan 2022 15:04:55 +0000
ROA not before: Sat 01 Jan 2022 15:04:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196878
IP address blocks: 91.216.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395175945 (0x178de809)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Validity
Not Before: Jan 1 15:04:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cab178091c4b5e0eb8fdd0facdbfe62d843bccde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:60:4e:0e:e0:68:db:ec:7d:95:fb:37:c9:64:
1b:5b:91:7f:ba:a1:4f:06:21:2a:21:08:d9:ac:33:
e0:a7:16:ab:55:4f:b2:92:8f:c2:32:4c:e6:d1:be:
ba:1b:ab:f0:3b:73:ee:ed:52:2c:f6:7e:98:96:77:
1b:27:a9:7e:97:63:c4:87:6e:2b:4f:49:1c:48:71:
32:d5:90:3e:46:7f:8a:84:c0:02:06:65:31:28:6c:
b6:f5:3a:77:cd:8e:72:d3:fa:2f:40:fd:ab:9a:4f:
1c:c1:da:57:53:bc:a4:c9:12:d0:80:32:75:89:68:
25:ee:e7:42:3b:c6:2b:15:23:e8:99:31:9c:66:ca:
0b:c6:97:3e:d1:5b:ce:9a:4c:18:73:b8:0e:98:4b:
bf:17:aa:60:57:43:4c:69:d4:ad:56:56:89:4e:d6:
04:50:e7:f2:e7:cb:7d:62:9f:6b:eb:e7:c7:80:cc:
21:9f:f2:54:52:fb:2d:80:c2:44:b9:dc:02:65:75:
b8:b8:cf:ba:dd:70:8f:39:4a:a6:eb:37:98:04:2d:
e7:96:e8:bd:e8:59:d9:cc:8a:5c:61:ac:10:0a:5f:
89:8a:8b:e4:33:3e:db:3f:2e:17:7f:ea:69:7a:ca:
54:1b:6c:3a:b7:32:69:c1:f8:06:4e:8b:14:70:65:
9b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B1:78:09:1C:4B:5E:0E:B8:FD:D0:FA:CD:BF:E6:2D:84:3B:CC:DE
X509v3 Authority Key Identifier:
keyid:D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/yrF4CRxLXg64_dD6zb_mLYQ7zN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.35.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:aa:d7:f8:a6:eb:06:8f:67:4d:06:9e:cb:d1:68:81:72:a6:
da:63:69:ce:7b:1b:79:f6:2e:d6:f1:8f:6c:64:0c:a6:28:d9:
ac:2b:80:ad:d7:0e:8e:d1:fc:80:6e:9b:79:28:29:5b:15:b5:
4d:a8:e7:a5:22:32:c2:86:93:99:5b:98:8e:3f:d6:86:87:ac:
4b:1d:73:b6:fa:ea:55:41:b3:b3:31:bd:19:2b:a9:f9:b1:a8:
02:26:b0:98:e6:d5:7e:34:73:84:c8:63:b3:4a:c5:19:57:f4:
2a:6d:18:8c:f0:70:a0:0d:b7:5e:de:f5:07:38:0b:9a:43:c4:
96:ad:b6:1f:10:15:23:19:92:49:09:de:4f:40:47:9a:4c:ff:
70:e7:3d:5f:36:1d:60:a3:b5:90:10:bb:41:b1:dd:62:a2:93:
90:25:27:0e:2a:53:79:6e:99:22:b1:23:28:5f:99:bf:73:3d:
4d:38:1e:b8:ab:6d:cc:5d:44:fe:23:66:d5:eb:b3:d4:75:c8:
dd:a9:2e:e1:1a:e2:0f:47:a5:04:e2:79:ca:2a:42:cc:0f:40:
42:26:8c:90:78:df:6d:dd:1d:a1:21:7b:0f:cb:14:0c:9b:84:
5c:eb:39:36:28:b8:59:82:6d:3a:6d:c1:d7:e0:fb:ba:4f:d8:
74:57:aa:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:10 2023 by rpki-client on console-ams.rpki-client.org