Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a7ca61-2e8d-4bbe-9c36-4e6d130bda0f/1/L7CUAoxYwMQaljoN9OhjrTuFhc0.roa
File: L7CUAoxYwMQaljoN9OhjrTuFhc0.roa (raw, json)
Hash identifier: XyyexyQwpSMzy9NL8R7i2UNN5Yw/WdptWSkAF4q4lU0=
Subject key identifier: 2F:B0:94:02:8C:58:C0:C4:1A:96:3A:0D:F4:E8:63:AD:3B:85:85:CD
Certificate issuer: /CN=09ea1d4531b071d6574699c12e5afa41f89bd409
Certificate serial: 0DF70964
Authority key identifier: 09:EA:1D:45:31:B0:71:D6:57:46:99:C1:2E:5A:FA:41:F8:9B:D4:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeodRTGwcdZXRpnBLlr6Qfib1Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a7ca61-2e8d-4bbe-9c36-4e6d130bda0f/1/L7CUAoxYwMQaljoN9OhjrTuFhc0.roa
Signing time: Thu 03 Feb 2022 11:59:04 +0000
ROA not before: Thu 03 Feb 2022 11:59:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5545
IP address blocks: 91.229.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 234293604 (0xdf70964)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ea1d4531b071d6574699c12e5afa41f89bd409
Validity
Not Before: Feb 3 11:59:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fb094028c58c0c41a963a0df4e863ad3b8585cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d9:58:8f:55:9e:e3:b9:bf:da:f3:b8:0e:bd:
40:3e:1a:87:e6:cc:1c:9b:ce:02:4e:ca:97:ce:a7:
5f:4d:c0:c2:8c:30:91:63:10:21:ab:e7:aa:5b:58:
a6:54:1f:04:4e:b1:d5:15:02:49:ce:ca:0d:3f:dc:
c7:18:9c:0c:91:ca:6e:2f:04:29:ce:64:2d:d3:cc:
e8:79:ab:c4:4c:06:d0:d7:72:e4:00:c9:69:49:e4:
2a:63:02:14:94:8e:92:4a:ce:da:fc:72:75:63:a7:
37:a1:4f:e4:01:48:2c:b8:0d:19:52:5a:11:2b:30:
f0:69:0f:f3:7c:82:88:31:85:c7:f5:bc:cd:95:ee:
b6:5d:f9:e3:6b:ae:45:f4:70:1a:b3:ef:d4:86:9d:
dc:a2:b1:f3:e8:a2:e1:c7:0c:46:5c:56:28:d9:b0:
a9:eb:09:f8:b2:3a:bc:0f:32:69:fa:98:6c:35:d6:
89:28:c1:4f:2c:9e:2b:98:1b:8d:a9:40:94:92:c4:
80:bb:8e:fe:32:68:3d:08:da:cf:ac:41:f6:06:09:
ae:94:ae:95:b3:34:1a:94:26:15:e2:3c:cc:37:a3:
41:e2:20:26:79:59:cd:57:de:37:b6:93:74:50:2a:
5b:5b:73:b2:e0:9c:ae:30:94:b2:1f:7d:bf:da:5b:
13:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B0:94:02:8C:58:C0:C4:1A:96:3A:0D:F4:E8:63:AD:3B:85:85:CD
X509v3 Authority Key Identifier:
keyid:09:EA:1D:45:31:B0:71:D6:57:46:99:C1:2E:5A:FA:41:F8:9B:D4:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeodRTGwcdZXRpnBLlr6Qfib1Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a7ca61-2e8d-4bbe-9c36-4e6d130bda0f/1/L7CUAoxYwMQaljoN9OhjrTuFhc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a7ca61-2e8d-4bbe-9c36-4e6d130bda0f/1/CeodRTGwcdZXRpnBLlr6Qfib1Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.94.0/24
Signature Algorithm: sha256WithRSAEncryption
38:7a:47:2d:c0:51:49:dd:fc:ba:4c:d8:e7:29:d5:c2:87:1a:
6a:88:f9:b1:ae:81:b1:fe:7f:c2:bf:a5:b1:fd:c1:06:27:20:
47:2b:1b:5b:31:56:eb:6d:91:e7:15:8a:8b:51:c6:c4:1e:11:
76:d2:b2:f2:13:99:65:5e:a2:37:d1:66:e3:46:73:ec:64:c6:
80:d6:7e:d0:5b:ff:34:ea:81:ab:bf:66:86:55:30:64:5c:cd:
44:03:95:24:d3:e4:00:96:cf:d9:f2:d3:32:70:3e:3c:98:39:
25:a7:3c:88:63:ec:20:e6:84:f2:37:42:90:9d:15:0e:7c:e8:
23:b5:e6:83:0d:b2:1c:dc:a7:ec:14:56:69:f9:02:43:78:0c:
d0:89:1d:ed:64:df:b0:89:61:09:dd:ca:0b:2f:4b:52:d1:d4:
b4:09:fd:52:6c:92:f8:01:e4:a4:60:ef:0e:ed:cb:ea:52:8a:
67:b5:72:1c:21:cb:09:1c:34:3a:88:1b:0f:6a:55:82:ea:ff:
76:7d:21:89:82:4a:81:51:a7:14:2d:c6:6f:8d:f4:02:bc:dd:
45:e6:04:c3:45:c0:7e:b8:ed:35:b9:a8:ad:99:aa:e8:1e:96:
69:48:60:c3:73:a8:f9:83:17:60:20:9d:ad:89:22:cb:ad:e9:
39:30:7a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org