Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/DsLTM9IbyTR_eldDKG3p8fqHl8Q.roa
File: DsLTM9IbyTR_eldDKG3p8fqHl8Q.roa (raw, json)
Hash identifier: yw9YKp+cMywDbHtEWmVkizdbcTIV+9c5oEuky3SBDKU=
Subject key identifier: 0E:C2:D3:33:D2:1B:C9:34:7F:7A:57:43:28:6D:E9:F1:FA:87:97:C4
Certificate issuer: /CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Certificate serial: 0A8F17
Authority key identifier: E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/DsLTM9IbyTR_eldDKG3p8fqHl8Q.roa
Signing time: Mon 31 Jan 2022 14:58:17 +0000
ROA not before: Mon 31 Jan 2022 14:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.132.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 691991 (0xa8f17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Validity
Not Before: Jan 31 14:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ec2d333d21bc9347f7a5743286de9f1fa8797c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4c:92:51:7e:9d:bc:c6:bd:7e:e1:83:88:8f:
dd:75:10:fd:52:e9:eb:56:1d:5f:6b:f9:65:20:35:
c9:82:27:ad:d0:e8:e5:cd:4d:97:64:6d:b0:b0:86:
6a:51:bd:4e:34:db:54:06:d9:f8:c1:96:c5:aa:27:
67:10:bb:37:b4:d3:ca:2b:0f:fe:fc:c3:30:52:c5:
89:a9:dc:eb:99:2f:2b:8b:39:3c:65:77:42:06:f9:
a9:08:eb:0f:20:b5:b1:9c:e2:ee:bf:b6:de:9b:ed:
24:b7:20:31:d4:9b:ef:cc:6f:6c:af:69:4f:3d:29:
d8:cc:33:fb:ed:27:c6:7e:cc:c3:b8:84:9f:21:d5:
28:93:7a:eb:f4:31:31:9e:54:69:44:b4:b9:03:1c:
60:40:7a:ac:25:95:68:69:20:9f:97:99:8f:c5:12:
7e:c7:b6:1b:67:d6:ee:d5:73:b8:a7:0e:f6:1c:c8:
48:0e:c5:0e:e4:f2:86:49:d6:03:87:67:ae:70:51:
59:3c:d7:70:42:20:25:95:75:fd:07:5f:be:e4:d3:
96:a6:95:f7:8f:56:5e:77:d3:19:a6:63:7c:0e:6e:
0b:8a:94:ef:f9:dd:56:61:ea:4a:39:d3:50:11:60:
f6:e5:a3:9e:99:4c:b3:eb:3d:f3:81:ec:55:04:c7:
76:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C2:D3:33:D2:1B:C9:34:7F:7A:57:43:28:6D:E9:F1:FA:87:97:C4
X509v3 Authority Key Identifier:
keyid:E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/DsLTM9IbyTR_eldDKG3p8fqHl8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/4UCgR8izCtxtnuMmpmnf0BHZtdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.227.0/24
Signature Algorithm: sha256WithRSAEncryption
35:d4:64:02:1d:82:b8:77:d4:b5:b6:e3:af:74:5f:16:7a:bf:
b0:87:1b:3f:92:3b:65:73:0f:43:86:b0:db:2d:82:71:be:85:
f2:a6:16:5f:77:99:f0:6f:0e:b0:d1:e5:b0:ea:f8:f0:70:50:
ae:65:a5:2c:bd:d4:7b:46:76:97:d3:bc:be:9a:2c:63:9b:20:
7b:67:95:26:20:8c:b7:56:7d:10:25:aa:7b:d0:d6:4b:41:be:
3b:08:44:4a:37:76:66:7d:74:e4:6b:a6:59:2b:43:d4:49:51:
40:fc:b7:63:7f:29:ea:b5:b6:69:ce:b2:d6:3f:63:1e:60:4c:
c0:a0:7d:d2:70:30:d3:be:8e:fc:30:fc:cf:d4:3c:f1:70:70:
1c:e3:01:23:87:f6:83:99:1d:3a:4d:36:f6:2a:c1:2f:f2:f7:
83:8a:1c:c9:d6:89:9e:3a:d0:75:f7:42:0f:21:53:f0:16:6c:
f3:49:80:44:de:89:f5:c1:19:fd:60:47:26:7d:22:ae:bc:f5:
dd:b0:68:7d:cd:a5:1e:ac:51:2b:10:5e:ce:1f:ff:62:21:fa:
b5:24:c3:12:ba:35:be:32:1a:a3:2d:8d:6c:c4:c9:d6:de:c4:
cd:c6:56:f0:81:0e:17:54:9d:c8:28:87:ec:3f:02:4c:54:3b:
bb:a1:3e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:48 2023 by rpki-client on console-fra.rpki-client.org