Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/rXB2_wbvH9u9D5WJH13RXgzL4z8.roa
File: rXB2_wbvH9u9D5WJH13RXgzL4z8.roa (raw, json)
Hash identifier: C5uCeJdxvZOHqfJqk++bSmR/WPfutc+t7ArDMVnq30M=
Subject key identifier: AD:70:76:FF:06:EF:1F:DB:BD:0F:95:89:1F:5D:D1:5E:0C:CB:E3:3F
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 034B76CC
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/rXB2_wbvH9u9D5WJH13RXgzL4z8.roa
Signing time: Wed 16 Feb 2022 14:42:46 +0000
ROA not before: Wed 16 Feb 2022 14:42:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.199.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55277260 (0x34b76cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Feb 16 14:42:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad7076ff06ef1fdbbd0f95891f5dd15e0ccbe33f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9d:7a:e5:80:ad:95:13:57:7a:85:76:1f:b4:
27:14:4f:d1:7d:d0:ba:59:7a:4c:4f:4f:43:aa:08:
82:13:24:7e:88:12:46:28:1d:67:78:b8:52:8b:3a:
e7:57:c1:4f:23:ee:d8:2c:42:72:7f:ed:4d:f0:16:
f0:78:da:8e:8f:9e:dc:ee:f9:8a:2c:bd:e2:f8:5a:
a2:f2:95:09:0f:5a:e0:c4:39:06:d6:8b:3c:d8:04:
dc:33:13:6a:30:71:e6:f5:94:9c:ab:3b:6b:19:08:
e6:dd:34:c8:8c:9b:0e:6a:43:bb:c8:a7:16:34:0c:
61:f7:0c:8e:96:e2:58:26:22:d1:73:67:a5:14:0f:
35:ba:1d:8f:e8:cb:97:8d:8c:f6:ae:2e:e4:e8:13:
8c:d6:02:79:8b:40:ad:bc:aa:33:82:5c:59:a5:07:
24:d1:29:83:a2:09:c0:1b:d7:7e:f8:7d:27:79:55:
25:35:5b:86:e8:3e:07:d2:4c:97:33:a2:e8:2e:71:
5a:0c:a4:0b:ca:b9:c9:c0:59:aa:ab:aa:ea:a3:96:
fe:23:8c:5f:87:be:8b:e5:43:69:e5:77:cf:d1:e0:
58:28:c6:cd:fb:00:36:7e:96:22:1b:8f:56:57:b1:
82:b2:e3:00:a1:15:31:c5:78:80:ef:f1:a9:37:c1:
23:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:70:76:FF:06:EF:1F:DB:BD:0F:95:89:1F:5D:D1:5E:0C:CB:E3:3F
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/rXB2_wbvH9u9D5WJH13RXgzL4z8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.42.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:36:20:0e:95:a4:df:5b:d1:7a:99:d1:45:bf:c6:bc:6f:65:
43:2c:e3:77:12:1f:f5:ae:f8:6a:d9:13:55:ab:3c:81:c1:8d:
bc:f1:50:e8:96:89:52:f7:15:08:8b:5d:f7:5f:d1:84:ac:58:
16:b6:e2:f9:10:5a:5c:3a:e3:99:b7:39:d8:ba:9c:93:67:0e:
13:b2:01:61:22:c3:1f:88:8e:e4:1a:ea:31:0f:68:a7:90:4a:
df:0e:e3:0a:b2:94:6d:58:89:09:36:b8:e2:59:50:10:4a:13:
04:cb:ae:c8:5c:97:67:9a:3c:fc:10:1a:ca:8b:f1:46:88:a1:
38:1b:8b:1b:3f:a3:6b:e1:ed:99:be:3a:42:5f:3a:c3:1e:d9:
71:88:2f:f5:3f:de:9b:0c:49:8b:2a:94:83:51:07:2b:b9:41:
f5:36:4b:64:be:48:96:11:2b:ac:4a:36:45:35:0f:0b:6e:b5:
e1:11:6e:2b:31:3f:00:40:77:a5:7d:1c:50:b6:e1:bf:0f:e3:
a2:25:4b:a5:c3:b2:d7:a7:e9:ef:e3:72:0b:a7:c0:e2:6a:c3:
92:0d:c4:03:f4:05:e2:3d:86:fb:a7:d7:d6:c5:3a:ac:9b:c6:
50:6e:21:e1:15:df:87:65:10:a7:fc:54:5b:f2:4a:b7:49:47:
1f:fd:49:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:46 2023 by rpki-client on console-ams.rpki-client.org