Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/JnKm6kaQspp_sMu0J0acPS8sBJc.roa
File: JnKm6kaQspp_sMu0J0acPS8sBJc.roa (raw, json)
Hash identifier: zdnJqMfoaC2IgpxAUQ5aG85XOihWeyNNWFz5PTuwasg=
Subject key identifier: 26:72:A6:EA:46:90:B2:9A:7F:B0:CB:B4:27:46:9C:3D:2F:2C:04:97
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 02DFD08F
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/JnKm6kaQspp_sMu0J0acPS8sBJc.roa
Signing time: Sat 01 Jan 2022 04:04:20 +0000
ROA not before: Sat 01 Jan 2022 04:04:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 91.199.32.0/24 maxlen: 24
91.199.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48222351 (0x2dfd08f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Jan 1 04:04:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2672a6ea4690b29a7fb0cbb427469c3d2f2c0497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4b:1c:39:c3:a2:1c:af:e2:c2:1c:7f:37:51:
3e:21:01:f8:c8:40:50:5e:c9:29:1d:3b:5d:33:d4:
e4:fb:eb:52:6f:a5:49:c9:e3:40:25:ec:b3:30:7c:
fd:b7:36:e9:13:51:3e:b8:87:2b:6f:93:c2:c4:22:
6f:91:71:37:4c:d0:6e:eb:b7:6a:19:e5:3b:23:34:
70:d5:dc:74:87:8c:ab:ab:1c:d9:1c:8c:63:7c:70:
0d:b0:45:4c:69:5d:ee:f8:04:69:02:f5:5a:08:c2:
4a:00:e5:6a:a2:ac:6a:a3:6a:26:e1:91:5c:6e:02:
82:a1:c8:67:97:89:60:4e:3e:df:98:10:cf:c8:fd:
80:c5:9d:54:ba:e5:7a:63:29:7e:0a:9b:35:c3:cc:
33:9f:1b:4b:9e:be:78:31:f6:4f:7c:74:a6:96:2c:
4b:d0:9d:9f:44:b8:ee:13:b9:eb:94:cf:dd:7c:6f:
e3:75:55:d0:38:98:18:e4:ef:4f:38:5f:ae:8d:f4:
50:c1:e6:02:00:4c:66:70:9d:84:50:ff:a4:a3:ec:
e4:4e:89:86:57:d2:19:f2:0a:87:07:8e:dc:d8:60:
e3:00:be:c7:34:ef:a9:cb:d1:e9:f0:a4:8d:3e:15:
d4:f2:c6:c9:f9:41:7d:d1:b3:c0:b9:5f:84:93:f1:
de:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:72:A6:EA:46:90:B2:9A:7F:B0:CB:B4:27:46:9C:3D:2F:2C:04:97
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/JnKm6kaQspp_sMu0J0acPS8sBJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.32.0/24
91.199.47.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:16:23:97:73:72:6d:2b:c1:31:6e:b5:12:f7:68:6a:a8:c4:
1c:cc:0c:5f:e0:5b:43:c5:0c:2b:5a:c1:f4:fa:2e:9a:57:8e:
23:29:8a:6e:73:b5:47:67:ab:a2:29:cb:c8:ff:b5:06:2c:b8:
e5:0c:e2:39:15:5c:0f:7e:e7:55:59:50:eb:c6:cb:a2:38:f7:
0f:f3:2e:2a:7c:32:eb:49:bf:a9:1f:df:91:02:77:21:d0:ee:
a7:80:4e:8a:d4:56:e4:c6:75:b4:91:c5:81:8d:1c:26:e9:75:
f2:1b:64:fc:05:22:14:91:81:e8:a6:fc:2b:64:48:d2:df:34:
56:27:3b:ef:01:3a:b4:4f:3e:db:85:73:60:ad:3b:2e:10:67:
1c:71:a2:ac:f8:2f:d5:b8:b6:6f:f6:90:11:02:c4:2a:a9:b0:
66:c8:e7:2b:fc:ee:aa:1b:71:97:d7:4a:56:0e:87:25:b1:48:
ed:35:f0:0d:51:9f:c4:0c:fd:94:1f:27:a1:5a:41:9d:46:11:
27:07:ad:69:b1:52:e4:6b:2c:c1:48:88:d5:55:44:47:6e:6c:
65:9e:60:31:71:ff:33:15:eb:a0:c2:82:7f:ee:c3:c5:6e:91:
d5:d5:4f:f7:fd:fa:1d:ae:37:95:27:ca:29:70:76:7e:49:67:
9d:d5:40:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-fra.rpki-client.org