Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/zjex05YMjYpzvknlUiwQC2ozhUQ.roa
File: zjex05YMjYpzvknlUiwQC2ozhUQ.roa (raw, json)
Hash identifier: WSFBECU3NvLEySSJaYBmRpztRPM5rfKeJH/2tl+xReg=
Subject key identifier: CE:37:B1:D3:96:0C:8D:8A:73:BE:49:E5:52:2C:10:0B:6A:33:85:44
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 035107D1
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/zjex05YMjYpzvknlUiwQC2ozhUQ.roa
Signing time: Fri 18 Feb 2022 07:08:37 +0000
ROA not before: Fri 18 Feb 2022 07:08:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 91.199.32.0/24 maxlen: 24
91.199.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55642065 (0x35107d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Feb 18 07:08:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce37b1d3960c8d8a73be49e5522c100b6a338544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:74:e9:c7:5d:fa:3e:a2:09:53:4f:09:9c:65:
6f:9c:e7:d6:d5:0a:28:31:24:4d:3e:78:06:53:29:
7f:bb:df:e6:2a:4e:44:63:be:c4:00:9d:f6:af:90:
31:88:d3:9c:a0:b8:d8:ec:3f:ea:5f:e4:22:da:ff:
4d:fe:83:a9:7f:a3:b1:66:b7:0e:2b:23:c2:0b:7e:
09:52:56:74:0f:85:38:93:60:82:fb:8a:89:1d:ad:
9b:a9:9f:0f:f4:da:1e:fd:99:a1:3c:5b:6c:bf:d3:
3d:94:ef:0c:f3:df:9f:72:55:e8:69:5a:b9:88:e5:
26:b9:c5:3b:a1:62:56:e9:c4:7d:43:6a:38:25:f9:
22:4d:ec:62:62:26:69:d7:72:fa:5f:bc:fe:00:14:
dd:bf:85:8c:8b:d7:61:42:f8:d2:50:f8:90:c5:0d:
a3:58:4c:cf:73:a4:a0:79:93:01:ec:62:2d:54:19:
89:6f:34:0c:3a:8a:11:c5:06:50:ef:51:86:2a:59:
48:7e:24:77:be:a9:7a:a6:6d:1b:a8:88:3b:b9:08:
c5:eb:35:36:db:7c:a7:c8:d5:3c:53:0e:5b:92:9d:
f7:0e:2b:73:50:eb:a2:86:6a:0c:ea:6f:d2:b3:b2:
63:55:be:5c:37:bb:96:20:a9:0e:e3:83:e6:86:66:
88:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:37:B1:D3:96:0C:8D:8A:73:BE:49:E5:52:2C:10:0B:6A:33:85:44
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/zjex05YMjYpzvknlUiwQC2ozhUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.32.0/24
91.199.42.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:fd:9a:3e:e0:55:c6:2e:42:dc:20:18:fc:4f:de:8b:72:16:
45:30:6b:a7:bb:08:47:ce:b0:f0:b3:13:1f:10:0a:6e:57:15:
5c:64:66:80:4d:01:ce:6f:e7:76:91:27:d7:fa:f1:6d:6d:6c:
09:67:da:e4:24:c1:5d:20:85:56:e6:08:54:8d:df:47:f7:e6:
24:5a:af:54:d5:0e:69:0a:e5:09:bf:3a:ab:b1:3f:cc:7b:ce:
b3:52:fb:41:a1:d2:5f:4e:e4:a2:2e:7f:f0:71:f0:57:4c:7e:
ec:c7:20:c4:db:94:f9:73:f9:8b:1f:18:c0:eb:2e:9d:2a:52:
90:47:cc:24:82:67:28:a5:ac:4d:06:f3:59:3e:0e:2d:48:bd:
e8:70:c5:3a:65:ad:18:b2:48:67:b0:20:0d:44:13:83:03:fe:
ec:1f:05:7c:4d:5a:3e:b0:05:c1:96:4a:a3:93:fe:6d:09:f6:
b2:fb:bc:93:8c:b8:2d:14:6a:22:3d:b5:18:7c:0d:d6:2f:a7:
e6:6c:2f:c3:22:3e:34:30:92:6d:68:1f:38:6e:e1:53:08:fb:
03:cf:f7:d8:0c:20:ec:3f:69:47:6c:68:a9:cb:5c:ba:35:17:
69:b1:63:93:aa:ae:44:fa:67:6e:46:ec:9d:a6:2b:e3:33:60:
dc:67:72:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:46 2023 by rpki-client on console-ams.rpki-client.org