Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/GAPy3CRkxIwmhm3itO62Fe78bqE.roa
File: GAPy3CRkxIwmhm3itO62Fe78bqE.roa (raw, json)
Hash identifier: Ztfd2TZxtUl1+FZzirT4k4fkuLcl5uYnNTQ4vzuWFvY=
Subject key identifier: 18:03:F2:DC:24:64:C4:8C:26:86:6D:E2:B4:EE:B6:15:EE:FC:6E:A1
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 0183A4685C6613936637BF5EA88949B24C4C
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/GAPy3CRkxIwmhm3itO62Fe78bqE.roa
Signing time: Tue 04 Oct 2022 19:10:46 +0000
ROA not before: Tue 04 Oct 2022 19:10:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 91.199.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a4:68:5c:66:13:93:66:37:bf:5e:a8:89:49:b2:4c:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Oct 4 19:10:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1803f2dc2464c48c26866de2b4eeb615eefc6ea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:5a:95:fb:b5:a7:8f:96:67:f7:5b:c1:43:d2:
97:31:cf:07:dc:25:e9:e3:2d:d5:26:62:29:58:a8:
c4:8a:a5:5c:26:98:98:46:bd:31:5d:4c:d2:70:d8:
8f:86:dd:64:95:1b:6d:2b:09:17:4e:ca:bf:c2:a8:
61:b1:66:f5:44:c8:a7:71:b7:de:0d:d6:1e:64:5f:
8e:59:2e:19:cd:75:0d:b7:bc:3d:36:3a:5d:de:28:
86:0a:0e:89:e6:2f:d0:bf:87:0c:fa:16:6b:7c:ef:
56:10:b7:51:14:7f:fc:e3:09:8c:bb:27:90:e1:bc:
82:8c:8d:ae:4a:82:9d:b6:e2:04:4b:6f:de:c5:4a:
9e:da:6d:5c:df:e9:75:d1:7c:59:3c:15:cc:69:00:
94:b5:99:07:f7:7d:e7:c0:6e:47:17:44:23:80:4b:
ff:aa:73:9d:20:a5:fc:1e:41:be:92:22:22:83:63:
15:87:56:77:c5:53:56:00:7d:37:53:e3:9a:7f:41:
36:1c:3f:76:a3:1f:58:d7:3e:47:e9:30:db:72:c2:
bf:59:71:a1:54:e9:35:32:6e:94:fd:a9:cf:46:1c:
1b:a4:d8:24:0c:3f:47:f4:97:85:45:ef:b7:2d:83:
20:0c:af:82:95:b3:7d:31:54:c0:64:ec:30:03:c4:
a5:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:03:F2:DC:24:64:C4:8C:26:86:6D:E2:B4:EE:B6:15:EE:FC:6E:A1
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/GAPy3CRkxIwmhm3itO62Fe78bqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.44.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:9e:c8:5e:25:b1:97:37:ca:cf:10:f7:fa:3e:4f:43:80:fb:
4d:78:0d:19:39:57:b5:57:76:d3:62:13:1c:05:3a:b6:ac:ab:
74:29:a4:a2:ca:b6:d6:29:2a:74:44:10:35:43:84:7e:dd:e5:
1e:ca:7c:c9:fa:8f:0a:1b:88:6e:9e:da:ab:82:4b:ad:26:7f:
df:ce:a6:95:ef:98:4f:06:96:c8:f4:b5:60:a6:43:dc:3a:bf:
0f:6b:0f:8e:73:8a:8d:3c:01:29:1b:20:bf:e6:d0:58:ad:53:
7f:8c:70:37:51:92:b9:2f:73:a4:a0:95:eb:f0:2a:a1:9f:92:
f7:7a:da:d8:58:b8:26:01:a3:b9:a1:98:4f:90:1e:53:05:fb:
12:c6:56:8b:dc:2c:92:fb:72:fa:3b:5f:56:a5:29:75:e1:f3:
7b:b7:ec:6e:9b:7a:3a:17:39:56:36:1f:e5:10:21:9b:48:cd:
d2:e0:b5:ba:16:1b:7a:f4:cf:bf:08:f1:a6:ab:b4:3e:e6:89:
c1:6a:2c:e5:6e:60:33:62:a9:aa:0a:d0:82:2f:27:4c:f8:53:
b4:64:37:d3:fb:4f:e7:61:2e:f8:4a:db:0e:2d:83:25:f8:02:
8c:79:ae:d0:75:8a:3b:cc:53:30:ac:3d:04:bf:86:59:7e:77:
23:f8:db:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-fra.rpki-client.org