Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/UzRg10WBCCoNtVNuiw4GVjaoRrU.roa
File: UzRg10WBCCoNtVNuiw4GVjaoRrU.roa (raw, json)
Hash identifier: 7csFsGgCMJoIlO3f2gJsNKnE9bIMGEOqsguTyIko/PE=
Subject key identifier: 53:34:60:D7:45:81:08:2A:0D:B5:53:6E:8B:0E:06:56:36:A8:46:B5
Certificate issuer: /CN=74ae941a681c1586379e07247dcc19f3f41035d8
Certificate serial: 0181F13AC6B5FD82255C0DD3FD48663D0954
Authority key identifier: 74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/UzRg10WBCCoNtVNuiw4GVjaoRrU.roa
Signing time: Tue 12 Jul 2022 07:06:09 +0000
ROA not before: Tue 12 Jul 2022 07:06:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49552
IP address blocks: 91.213.36.0/24 maxlen: 24
2001:67c:24::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f1:3a:c6:b5:fd:82:25:5c:0d:d3:fd:48:66:3d:09:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae941a681c1586379e07247dcc19f3f41035d8
Validity
Not Before: Jul 12 07:06:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=533460d74581082a0db5536e8b0e065636a846b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8f:94:c7:41:46:b5:a0:fa:d9:92:cb:b2:ca:
5c:07:b2:c7:11:d5:86:57:89:29:bf:9d:78:43:c6:
b3:4c:a9:a9:ed:6e:9b:e7:22:71:ea:81:6b:8c:1a:
76:f7:a2:04:83:0f:1f:44:dd:7d:44:bb:a4:f9:a3:
47:a4:5c:6d:53:68:22:1a:5b:43:7c:92:70:07:52:
98:2b:65:71:ce:a1:24:72:c1:9e:6e:29:d1:9b:77:
e7:59:4b:07:7d:6f:d1:e1:e0:5c:eb:22:cf:31:2b:
fa:97:37:06:ca:6e:6f:b6:17:3b:5e:22:07:40:6c:
c6:00:43:79:08:99:b7:9d:7b:88:7d:c7:94:4b:11:
60:c9:4a:f1:03:24:1a:2c:bb:48:9e:fe:56:46:90:
ee:17:04:04:18:bf:a9:cb:cf:ac:a3:7d:0a:fe:30:
45:3f:f5:dc:1f:3b:1a:9f:c6:f9:7a:b8:1a:f2:74:
37:68:e6:84:a3:ac:15:97:f9:f4:a7:e9:bb:88:4d:
0e:5f:d3:f6:8c:62:29:4b:90:d7:e8:fe:2f:81:41:
11:31:45:7b:a0:d0:39:bc:c2:0a:ba:95:90:e8:a7:
fe:5b:ac:fe:47:f7:2b:f5:88:72:39:b8:d0:ff:65:
84:71:5d:7d:47:1d:4c:88:60:1b:63:b3:a2:b0:20:
2d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:34:60:D7:45:81:08:2A:0D:B5:53:6E:8B:0E:06:56:36:A8:46:B5
X509v3 Authority Key Identifier:
keyid:74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/UzRg10WBCCoNtVNuiw4GVjaoRrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.36.0/24
IPv6:
2001:67c:24::/48
Signature Algorithm: sha256WithRSAEncryption
0e:ce:c0:91:f4:1c:c5:3f:53:5a:2f:0b:9e:0f:79:c4:ea:12:
85:f1:32:96:26:c4:73:6b:0f:5f:4e:1f:f9:59:4d:89:54:17:
44:85:28:15:99:65:60:25:05:18:b3:a3:d8:51:1d:b3:dc:04:
d5:23:51:12:b2:a3:25:fe:03:03:c4:3e:1e:4c:9c:3d:8e:36:
39:bc:cd:66:dc:f6:f2:3a:41:f7:e5:e0:3d:37:96:59:cf:a8:
02:e7:9f:40:6f:ca:19:8a:85:1a:63:18:40:65:a1:07:87:0d:
6b:d4:40:93:9b:f0:ef:3d:e9:37:62:42:fb:5b:ca:13:ad:63:
4a:31:d7:30:4a:26:7b:22:b4:41:ab:d4:86:94:5b:79:66:7e:
02:92:b3:7d:a8:99:f5:df:81:87:03:5b:19:a3:40:71:5e:81:
ef:30:ef:04:ee:0b:33:70:3e:97:c5:78:12:66:32:c7:f9:b2:
aa:9a:a1:36:3e:ab:66:76:56:20:6f:bd:2b:10:24:0b:63:52:
58:a2:c8:f1:9a:ec:e5:fd:79:10:7e:a0:f7:51:75:93:32:70:
7f:89:a8:3b:6e:4e:bf:bc:83:73:b0:f5:be:4e:a4:c3:cb:9c:
62:3e:9a:8b:f7:32:87:99:59:9e:f6:b0:73:f1:bb:73:2d:ed:
15:7b:80:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:22 2023 by rpki-client on console-ams.rpki-client.org