Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/m8MyXMbWOxSEWc2r0DUXr8i5xfA.roa
File: m8MyXMbWOxSEWc2r0DUXr8i5xfA.roa (raw, json)
Hash identifier: lZ5qxU1eTH7j/aPy7JlWgNK8BP5uW0OgqBOE3/J+d+E=
Subject key identifier: 9B:C3:32:5C:C6:D6:3B:14:84:59:CD:AB:D0:35:17:AF:C8:B9:C5:F0
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 02E0CD22
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/m8MyXMbWOxSEWc2r0DUXr8i5xfA.roa
Signing time: Sat 01 Jan 2022 04:04:20 +0000
ROA not before: Sat 01 Jan 2022 04:04:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 91.199.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48287010 (0x2e0cd22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Jan 1 04:04:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bc3325cc6d63b148459cdabd03517afc8b9c5f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d2:85:10:87:a8:98:7e:20:c5:7f:39:0d:7a:
10:e8:08:af:6b:ea:70:89:c7:39:da:16:ea:1e:8a:
35:0e:78:8a:cf:4b:46:ad:4d:0f:85:22:44:14:3e:
d7:cf:3a:dc:11:fd:8e:42:ec:d4:01:30:c1:8a:aa:
2d:09:80:f7:86:3f:e6:3d:c8:56:7e:89:15:18:dd:
8a:24:b0:ea:89:be:60:55:71:27:ca:4b:73:59:fa:
1a:24:2a:61:28:3f:02:f8:ed:88:dd:e4:7b:42:32:
51:9e:08:e5:08:4a:ca:1b:c9:a2:02:8d:0b:39:af:
b8:15:7e:f6:fe:d6:17:d3:a6:1d:25:73:21:c2:2d:
85:2c:ae:d6:17:ed:20:ad:df:a8:8c:48:07:0b:23:
6b:e3:94:ca:ec:32:c2:84:47:57:3d:fb:8f:d1:27:
98:7c:04:aa:12:bb:d3:3a:75:1f:ae:f5:08:5e:38:
55:82:e9:a3:70:c6:2d:df:62:1b:80:e5:c5:6e:0b:
2f:64:49:f0:a5:26:cf:77:c0:d5:1f:38:89:5d:ab:
94:50:8e:c5:74:2e:86:71:1d:f6:b2:d7:34:8e:53:
0e:dd:d4:6a:7e:8d:5c:76:7a:ec:14:4c:a0:5b:db:
30:75:4c:91:54:94:e6:d7:b5:8c:3a:72:c1:6c:aa:
c4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:C3:32:5C:C6:D6:3B:14:84:59:CD:AB:D0:35:17:AF:C8:B9:C5:F0
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/m8MyXMbWOxSEWc2r0DUXr8i5xfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.44.0/24
Signature Algorithm: sha256WithRSAEncryption
64:93:c8:55:5e:99:64:d9:a5:22:1c:81:dd:37:1b:32:91:76:
4c:46:57:96:0a:0f:a3:8a:4b:b0:30:1d:c5:0c:e8:4d:63:e1:
01:9b:ea:8b:51:5f:df:ff:19:ac:38:4d:8f:44:6f:f9:8f:ad:
19:f3:b1:0d:4f:0c:f0:4f:60:3d:b3:f5:50:9f:4b:b0:00:f8:
93:75:78:95:fa:da:24:b8:22:06:b0:2a:a1:8a:7b:e4:50:0d:
97:43:91:43:08:ff:d9:ac:d4:5e:9a:a2:fe:d5:77:65:3c:de:
00:11:92:bb:70:0b:fb:5f:cf:4f:ec:10:76:b7:85:dc:d8:5a:
76:17:65:60:df:2a:1c:60:34:40:79:36:57:2a:cf:02:c7:f9:
6a:22:76:e2:67:8f:8b:e3:5c:c3:e7:e1:f6:68:41:bd:48:ba:
9b:a5:2d:89:de:54:22:8e:35:ab:44:d3:1b:7f:23:9c:26:f7:
14:d1:c4:e8:b2:ae:fc:52:42:cf:35:1e:bb:bb:1c:eb:f0:57:
06:08:10:e4:af:0f:85:24:70:85:71:52:3c:a1:f6:4f:04:ce:
bb:4e:e7:e0:62:d9:28:3a:4e:26:c5:dd:2a:94:0c:09:be:df:
2e:b4:55:79:06:d8:c6:f9:70:41:74:0c:25:a3:de:14:c0:b4:
be:d1:c7:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:46 2023 by rpki-client on console-ams.rpki-client.org