Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/AxdJGzISxZIdLpLhpwDDboM4rcw.roa
File: AxdJGzISxZIdLpLhpwDDboM4rcw.roa (raw, json)
Hash identifier: HYFSWp66QTY+5qX2JivAGJRUdJOgHoiH/M4mFhSoBss=
Subject key identifier: 03:17:49:1B:32:12:C5:92:1D:2E:92:E1:A7:00:C3:6E:83:38:AD:CC
Certificate issuer: /CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Certificate serial: FB73
Authority key identifier: E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/AxdJGzISxZIdLpLhpwDDboM4rcw.roa
Signing time: Wed 26 Jan 2022 14:27:26 +0000
ROA not before: Wed 26 Jan 2022 14:27:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.132.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64371 (0xfb73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Validity
Not Before: Jan 26 14:27:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0317491b3212c5921d2e92e1a700c36e8338adcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:04:a3:67:6f:89:9c:9e:f2:8e:5a:64:70:6f:
fc:1c:55:c1:ee:14:f0:35:b7:7e:d0:77:f0:f5:57:
2e:3e:f6:e6:e7:16:87:54:1a:9e:ba:8e:50:6a:e4:
8d:6f:bb:01:32:d7:70:cf:81:49:8f:cc:46:41:a8:
15:de:76:3e:0a:29:a7:1e:d4:f2:80:3b:bf:4c:ab:
e9:95:8a:1f:0a:4f:15:58:03:ac:bc:47:0d:13:8d:
ea:7a:9d:3e:fa:f6:fd:3c:01:64:70:a8:73:3b:02:
b8:a4:8c:19:5b:8b:16:4e:be:6d:76:9a:10:9f:4b:
1e:44:a6:50:83:38:76:6f:eb:8a:4b:3f:26:40:d6:
2b:41:84:67:03:f7:21:78:ce:85:45:54:75:4d:91:
56:72:c0:9e:ab:87:9b:fd:57:dc:c8:ab:1e:d4:2b:
d1:dd:21:b4:c0:fe:af:ab:f4:38:9e:24:31:3a:37:
f5:6e:6d:8d:e2:db:3b:bc:c5:45:d9:20:09:f1:95:
65:1b:c0:95:22:86:11:0f:73:d4:89:a6:11:e4:da:
93:cd:71:b1:68:73:61:21:17:d4:6a:7e:51:ac:9b:
92:8a:77:ae:ce:a1:2b:68:bf:25:2f:35:53:6f:ea:
9d:31:67:f8:3c:f1:12:ee:0a:a5:fb:f6:bb:1f:cf:
a1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:17:49:1B:32:12:C5:92:1D:2E:92:E1:A7:00:C3:6E:83:38:AD:CC
X509v3 Authority Key Identifier:
keyid:E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/AxdJGzISxZIdLpLhpwDDboM4rcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/4UCgR8izCtxtnuMmpmnf0BHZtdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.227.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:df:91:91:94:48:ce:ad:a2:39:c0:7b:18:8f:56:b1:ff:74:
24:88:72:25:4e:b4:8f:6a:31:09:6d:9b:7d:c6:f6:23:17:89:
64:2f:68:77:92:ff:e7:a8:3f:d9:b4:84:ed:25:fc:b5:0b:76:
9a:29:d3:f3:75:69:4e:a2:20:cf:55:cc:0b:2d:34:8b:bf:7a:
c3:50:a2:df:e5:ab:01:81:25:57:33:28:78:27:69:67:68:cf:
76:7e:cc:7a:c3:38:7c:54:51:36:db:39:e1:bd:a0:c5:a3:39:
23:70:d0:b3:c5:f7:1d:cc:7a:7b:05:2c:7d:d9:5f:a8:f6:a3:
e6:e3:c3:bc:8e:38:08:9a:49:c4:31:60:53:b6:c2:db:e3:e0:
59:f9:9f:19:42:dc:40:11:cf:7a:81:38:8e:5a:3c:08:3d:40:
d5:00:a2:73:ff:06:c5:0c:c3:af:92:36:e8:72:b6:af:b2:e5:
c0:fe:bc:0b:e1:ba:37:2a:1e:c0:e0:5a:35:2e:a8:b8:0b:46:
5c:37:62:26:ce:7f:9d:43:ab:8c:ae:14:dc:a6:65:bd:f8:9f:
cd:e5:53:c7:7d:ed:0e:fc:15:24:53:50:7e:fe:45:32:90:8b:
ac:f2:41:b9:c8:07:18:0d:7b:b9:03:0f:69:80:94:ba:29:cb:
2e:11:be:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-fra.rpki-client.org