Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/tU4R22vYtkMAnaEVww6V7cR0fXo.roa
File: tU4R22vYtkMAnaEVww6V7cR0fXo.roa (raw, json)
Hash identifier: 8wzmz4mXLdjvNHUgUcQos2FUKOXLoKV+myG2x0X1klk=
Subject key identifier: B5:4E:11:DB:6B:D8:B6:43:00:9D:A1:15:C3:0E:95:ED:C4:74:7D:7A
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 0182870B9E8EFD497A3478627729FAD9F400
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/tU4R22vYtkMAnaEVww6V7cR0fXo.roa
Signing time: Wed 10 Aug 2022 09:17:41 +0000
ROA not before: Wed 10 Aug 2022 09:17:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 91.199.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:0b:9e:8e:fd:49:7a:34:78:62:77:29:fa:d9:f4:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Aug 10 09:17:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b54e11db6bd8b643009da115c30e95edc4747d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b4:53:e4:44:96:cc:6e:81:07:32:2c:bb:db:
67:67:69:47:e6:74:64:83:a4:9e:5a:79:9a:5f:85:
a0:a9:fb:25:37:89:b8:87:c7:22:2d:35:21:22:d1:
5c:91:41:f5:5c:01:df:6c:f8:4d:e0:c1:f1:71:a1:
db:a2:25:af:ce:00:0e:ce:ee:c4:ae:5c:ca:60:32:
db:2b:89:2e:da:95:52:c4:cf:38:dc:c3:35:db:03:
10:cc:b3:e1:87:4d:e1:22:c7:82:46:18:f1:d9:37:
da:a7:8d:0a:87:43:87:04:58:c1:d0:56:83:d2:b5:
2d:f7:ad:0f:80:e5:ad:29:92:7d:e4:27:da:38:28:
85:73:64:dc:37:5e:2f:fd:db:17:de:1e:f9:38:80:
7f:d5:84:8f:5f:c9:8c:20:ac:55:e2:5f:2f:f0:6d:
d8:d2:ea:e0:1e:f8:87:8b:44:e0:12:78:b4:be:c8:
df:89:df:8e:e0:ae:41:bf:48:3d:24:f9:97:93:93:
55:bd:bc:db:cb:d6:54:86:08:18:8a:7c:32:23:bb:
a9:37:f3:5b:be:34:7e:b7:8d:94:7a:df:95:52:d7:
a5:8b:b3:14:39:4a:76:59:50:dd:e8:96:be:6e:bd:
10:38:23:34:de:40:9f:0e:3d:8b:0c:ff:44:02:f3:
e7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4E:11:DB:6B:D8:B6:43:00:9D:A1:15:C3:0E:95:ED:C4:74:7D:7A
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/tU4R22vYtkMAnaEVww6V7cR0fXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.44.0/24
Signature Algorithm: sha256WithRSAEncryption
90:ee:21:74:45:fb:68:db:61:ca:58:90:92:db:61:c7:e4:c3:
07:76:9a:04:0e:49:d7:11:fe:50:8b:73:af:8e:2c:c3:04:ca:
60:cf:88:6b:3d:aa:12:68:bf:36:d2:fd:5e:57:14:44:ff:0a:
f9:22:aa:f7:9f:cd:12:0c:2f:eb:af:dc:50:8a:81:a6:e4:d0:
5a:5d:7a:d7:31:2f:08:d3:0f:99:a9:4c:a7:1a:c9:e5:2c:15:
2b:c0:3a:3f:bc:43:8d:66:29:06:98:0f:74:cd:8f:43:70:73:
fe:e9:75:f9:79:4d:4a:e3:38:7e:13:16:3f:08:c7:c9:9f:87:
62:99:ee:60:c8:e3:a8:dc:0b:c3:ff:8c:d4:db:80:13:bc:c8:
b5:8f:56:d3:0c:de:39:25:f3:53:9e:e3:c9:b0:f2:f8:9a:f1:
76:26:87:e7:89:49:80:a0:6b:58:c9:6d:97:e7:17:e3:ca:ef:
ba:a3:1e:25:f7:06:31:2e:2a:fc:1b:cd:31:8b:a9:b9:e1:da:
d1:be:74:63:c3:84:34:e4:3d:1a:41:cf:7f:4d:bd:8e:79:a2:
7d:91:cb:54:33:82:4c:47:1a:dd:36:dd:14:84:79:00:7b:ab:
21:6a:3f:17:84:80:2e:41:82:94:85:aa:6c:4d:aa:72:0a:59:
8f:dc:fe:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:01 2023 by rpki-client on console-fra.rpki-client.org