Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/4e8c8f-61e8-4739-b282-c57ac3c017ec/1/k8eHkFro8sDjWPLgPwtpqzRoPBo.roa
File: k8eHkFro8sDjWPLgPwtpqzRoPBo.roa (raw, json)
Hash identifier: Hz1lC++LOqp+PEGHsoibpXoSP8eG7Zk9yY7BLTZI1Io=
Subject key identifier: 93:C7:87:90:5A:E8:F2:C0:E3:58:F2:E0:3F:0B:69:AB:34:68:3C:1A
Certificate issuer: /CN=f9b10878ce301a26c7f841723ebe973dd5a91fa9
Certificate serial: 7BC7D1
Authority key identifier: F9:B1:08:78:CE:30:1A:26:C7:F8:41:72:3E:BE:97:3D:D5:A9:1F:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-bEIeM4wGibH-EFyPr6XPdWpH6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/4e8c8f-61e8-4739-b282-c57ac3c017ec/1/k8eHkFro8sDjWPLgPwtpqzRoPBo.roa
Signing time: Sat 01 Jan 2022 02:53:31 +0000
ROA not before: Sat 01 Jan 2022 02:53:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58281
IP address blocks: 91.240.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8112081 (0x7bc7d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9b10878ce301a26c7f841723ebe973dd5a91fa9
Validity
Not Before: Jan 1 02:53:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93c787905ae8f2c0e358f2e03f0b69ab34683c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d1:24:5d:58:d9:97:55:89:9b:41:bb:3c:88:
3d:79:64:76:64:19:af:44:e4:ca:df:cb:1c:17:85:
92:df:2c:bc:89:3c:b7:f5:8e:cb:a6:cf:8c:1c:e2:
d3:c3:38:9f:82:43:85:05:a1:39:4d:b3:24:7c:a8:
ca:81:87:8e:36:c6:40:60:a0:de:e4:f3:e7:8d:50:
dc:88:99:c0:83:60:41:a5:3c:5b:60:37:0c:97:9e:
d5:e1:17:6f:cc:a2:3f:56:a1:d4:71:68:7a:10:e6:
42:8e:9c:e2:02:c6:51:7b:9a:5f:7d:4a:f2:ca:cd:
b4:e1:67:85:1e:bd:3a:2e:a6:6b:53:8c:04:4d:47:
c1:7e:8e:16:ee:d3:e7:ad:61:ae:76:dc:45:cb:07:
07:73:f7:e8:44:a8:00:bc:f8:d4:cf:b6:77:1b:24:
a7:f4:1d:16:45:7f:b3:ec:47:d9:46:99:ed:c7:57:
f4:8e:7f:e5:31:9e:fc:bc:84:2d:bb:88:8e:f2:f8:
90:60:d2:6a:e0:95:b3:00:85:58:d1:bc:62:a9:68:
0e:a9:65:34:ab:db:32:47:aa:a0:2c:01:65:50:b4:
cb:25:e0:a1:62:34:08:2a:82:b8:3b:d8:16:13:68:
03:7b:8d:4a:3d:8c:92:c2:bc:b0:e6:c6:1e:29:72:
82:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C7:87:90:5A:E8:F2:C0:E3:58:F2:E0:3F:0B:69:AB:34:68:3C:1A
X509v3 Authority Key Identifier:
keyid:F9:B1:08:78:CE:30:1A:26:C7:F8:41:72:3E:BE:97:3D:D5:A9:1F:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-bEIeM4wGibH-EFyPr6XPdWpH6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4e8c8f-61e8-4739-b282-c57ac3c017ec/1/k8eHkFro8sDjWPLgPwtpqzRoPBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/4e8c8f-61e8-4739-b282-c57ac3c017ec/1/1-bEIeM4wGibH-EFyPr6XPdWpH6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.69.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:1d:f4:49:3c:54:2a:9e:6c:f9:2d:e9:b2:ec:9d:fd:9a:86:
b6:68:cd:d4:81:a6:ac:40:e6:4d:6e:ce:5a:9e:3d:f2:fc:85:
ec:db:e7:2e:c5:eb:dd:c0:9f:f4:72:0f:fc:d8:d0:33:2f:8f:
14:4a:8d:23:9f:dd:87:60:b3:78:75:af:34:2c:20:06:0b:e5:
b5:f6:29:dc:90:8a:2f:45:ae:df:6e:da:a5:90:e8:b5:06:27:
2b:23:e1:97:4d:19:c4:07:8d:89:ef:83:5c:3c:3b:13:a5:19:
09:ae:7b:17:00:c8:00:d5:02:23:88:6f:a5:eb:ed:55:36:31:
c8:83:c9:c2:e3:d5:20:1d:e2:22:6a:b2:e1:51:81:bb:58:2e:
96:75:01:f1:8c:03:c9:ba:c9:78:c3:ba:e5:5d:dd:95:c1:d0:
f7:3a:71:04:1c:23:64:17:5a:ee:f8:01:3a:ae:fc:d8:b9:d7:
c3:c7:4c:0b:46:f3:93:ad:20:76:ff:b3:b0:fd:5f:6c:4f:e2:
e2:cd:94:ce:56:24:85:8c:38:9e:4e:4c:26:74:80:03:d1:b2:
a3:bc:7c:02:02:57:9f:9a:ad:de:cd:56:ab:f4:90:3f:00:83:
d9:af:04:ca:20:a8:ae:03:7a:bd:47:be:1d:87:24:46:da:49:
89:de:ee:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:45 2023 by rpki-client on console-fra.rpki-client.org