Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/VarY5a7_L93dd6FiaQmFi8LMYdk.roa
File: VarY5a7_L93dd6FiaQmFi8LMYdk.roa (raw, json)
Hash identifier: rPVBHWFMmswoW/t81DVbazsUQP18MWwWHJNGQcdnZ/Y=
Subject key identifier: 55:AA:D8:E5:AE:FF:2F:DD:DD:77:A1:62:69:09:85:8B:C2:CC:61:D9
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 01843EF05BD86339671E1926C3E6E8C41600
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/VarY5a7_L93dd6FiaQmFi8LMYdk.roa
Signing time: Thu 03 Nov 2022 19:20:50 +0000
ROA not before: Thu 03 Nov 2022 19:20:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207279
IP address blocks: 91.199.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3e:f0:5b:d8:63:39:67:1e:19:26:c3:e6:e8:c4:16:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Nov 3 19:20:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55aad8e5aeff2fdddd77a1626909858bc2cc61d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:67:93:c2:97:8e:62:b2:fb:58:b8:7f:87:ea:
f2:dc:59:26:50:df:cd:6c:1d:b0:76:8f:d1:5d:97:
31:bd:79:ab:6b:1f:01:ae:3f:08:ae:3c:1f:8e:d0:
7b:7d:fb:fd:43:d8:b4:f3:a1:76:1c:50:75:6c:8b:
1a:05:61:8c:1e:2d:4c:8c:9a:ff:08:1a:f2:d8:10:
d1:87:51:d3:b4:17:04:2d:85:1d:54:d5:1a:a8:dc:
0e:59:4d:b8:82:7a:c5:fa:09:77:7b:d8:04:ce:26:
ae:b0:9c:fe:78:7f:79:19:80:c7:b8:f3:c7:4b:e8:
43:9c:84:ef:b0:ea:29:f5:ba:6e:59:9c:ad:8c:0b:
f3:2a:4c:79:1b:fd:eb:46:9e:f6:57:21:23:20:e7:
b0:eb:8a:b6:2d:26:14:59:6d:58:6f:b1:a1:25:02:
b3:e3:60:63:09:1c:7f:c1:d8:73:e5:62:39:47:eb:
96:70:4c:8b:ba:ae:5c:4c:5d:0f:d1:75:a4:2b:30:
50:e3:1d:3e:8f:54:5c:28:58:de:8f:b6:70:64:ad:
22:7a:ff:45:ca:0e:e6:82:07:5c:0d:70:84:31:2b:
35:ee:59:b3:1f:8e:3f:cb:ed:93:2e:9e:44:80:46:
58:e7:f5:7a:1c:bb:3d:e0:c2:3c:4d:7d:d7:77:c5:
f7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:AA:D8:E5:AE:FF:2F:DD:DD:77:A1:62:69:09:85:8B:C2:CC:61:D9
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/VarY5a7_L93dd6FiaQmFi8LMYdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.44.0/24
Signature Algorithm: sha256WithRSAEncryption
06:aa:83:f5:1b:52:44:f6:89:8d:fc:ef:41:f5:69:48:32:88:
65:b3:fc:25:5e:94:9c:c5:8e:77:11:ae:5d:94:d9:02:17:95:
b0:0f:ef:61:dd:f1:51:2f:8c:14:40:e2:fb:b8:cd:b5:12:e4:
ba:87:2a:46:83:a0:a6:1c:fa:82:fe:fd:ba:05:74:62:2b:a2:
c9:d1:07:4e:7e:f4:04:6f:f1:41:79:aa:08:3a:38:89:05:3b:
de:c9:a1:99:76:8a:25:71:97:22:a7:97:54:6e:e6:59:50:f8:
d6:05:5c:c3:d3:b0:3f:58:a5:65:c3:7d:03:bb:aa:1c:a2:d8:
01:b3:07:5e:61:f3:43:03:91:5a:3e:e6:dd:1f:34:a5:c9:b4:
d2:59:7a:c0:6c:e9:2f:ec:8a:8f:e1:d6:39:d5:b1:ca:6f:48:
74:7c:f2:61:54:f6:97:3a:8b:aa:9e:67:36:fd:1d:f2:7c:f7:
c5:97:e9:b2:a0:15:32:67:3c:f4:46:ff:59:bf:c7:99:18:0a:
5d:0d:3d:2c:5f:3d:3e:a0:74:12:8a:7a:f1:23:25:3a:55:d0:
9a:01:53:1f:bd:cd:5c:12:1b:29:d6:91:98:96:f6:47:02:73:
1a:7a:8d:82:b1:4d:44:94:da:03:bd:59:fd:4b:29:5b:47:eb:
03:ee:e4:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:58 2024 by rpki-client on console-fra.rpki-client.org