Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/pwtaOF9VQI4AsEhI_-Q-qr5Qpio.roa
File: pwtaOF9VQI4AsEhI_-Q-qr5Qpio.roa (raw, json)
Hash identifier: okzGdqepEYS5vgkL5D9ynWbplqog9iuLL/e94ODvzDY=
Subject key identifier: A7:0B:5A:38:5F:55:40:8E:00:B0:48:48:FF:E4:3E:AA:BE:50:A6:2A
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 0348E6D5
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/pwtaOF9VQI4AsEhI_-Q-qr5Qpio.roa
Signing time: Wed 16 Feb 2022 14:39:48 +0000
ROA not before: Wed 16 Feb 2022 14:39:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 91.199.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55109333 (0x348e6d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Feb 16 14:39:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a70b5a385f55408e00b04848ffe43eaabe50a62a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2a:7c:5c:23:28:76:ef:01:be:7a:b8:8b:9a:
55:82:6d:d3:d4:a9:4a:4b:f7:41:21:06:25:4e:d7:
71:4b:85:fc:97:50:86:24:f8:1c:75:49:e7:fb:01:
00:a1:aa:64:a7:a4:ec:ce:64:dc:09:2f:f6:4d:8f:
df:e4:c6:94:0e:cb:ab:d4:c6:00:ff:9b:35:ee:b2:
9c:ad:49:9e:77:7b:12:23:de:94:3f:61:35:1b:77:
6d:93:1d:94:5e:4c:09:53:b8:56:20:58:1e:f6:d3:
2c:9f:95:89:ba:cd:f4:4d:88:da:35:fc:b7:fd:17:
5d:6a:91:8e:f2:39:f6:4a:81:67:79:fb:3b:95:8d:
7c:19:f9:a2:73:af:13:59:3d:91:45:d9:e9:fe:9d:
5a:fc:91:a9:be:fb:16:71:cb:87:c3:cf:90:56:55:
ef:2b:8f:5f:01:34:c2:7b:6e:d4:87:0b:70:eb:c9:
f9:80:67:13:86:b9:7c:38:6e:18:24:c3:08:38:cb:
67:99:65:cc:06:90:68:fd:db:ba:52:3d:26:4b:a6:
05:aa:c7:b2:99:37:ec:59:ee:29:4c:ec:52:2a:cb:
99:fd:a6:e2:b6:c7:97:59:ff:6a:e6:c7:7d:e7:53:
e5:ac:87:72:12:e6:54:4a:67:2f:c2:75:d0:8a:89:
ec:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:0B:5A:38:5F:55:40:8E:00:B0:48:48:FF:E4:3E:AA:BE:50:A6:2A
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/pwtaOF9VQI4AsEhI_-Q-qr5Qpio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.32.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:2f:6f:05:40:11:d1:23:b8:81:d3:2e:97:23:71:ec:c8:3d:
9f:8b:fe:54:bc:06:ff:d3:99:66:b7:9f:eb:87:95:d3:9b:3b:
b1:60:41:2a:c5:c4:4b:1f:ac:e2:1b:e9:82:d9:f4:c0:cd:9b:
38:04:8b:d6:92:eb:67:b8:32:41:75:19:62:22:b1:3b:2c:93:
80:55:c9:b0:70:1b:1e:57:b3:c2:56:cb:a5:79:c1:ea:50:55:
68:f9:7a:b3:d8:d0:4b:98:99:4a:32:66:d3:4c:79:2e:97:6c:
4f:f3:0f:ae:ab:f3:c2:eb:6a:a8:31:42:0c:c9:2d:d7:e5:31:
e1:9e:42:55:93:ff:a3:ec:c9:8c:80:31:c3:5f:31:5b:fb:e0:
93:fd:b4:fd:42:c8:87:db:55:f6:aa:60:b9:a6:5f:39:1f:d1:
eb:54:ea:ab:6e:40:bc:71:fa:5e:79:c2:8d:a4:62:6f:82:12:
94:e1:8d:f5:9b:9b:0b:b6:72:04:bc:9c:02:fa:8e:88:e3:6e:
c2:91:01:32:42:08:e6:6d:14:a9:df:3f:df:72:f4:f4:1c:a6:
58:ad:b3:a0:30:b8:2c:b7:73:6e:70:c4:b4:b1:20:52:36:b5:
bf:c4:93:60:48:45:94:44:81:90:ff:80:e5:27:d3:c8:ea:58:
01:6b:0d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:19 2024 by rpki-client on console-ams.rpki-client.org