Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hEF1gSP-EBIcZloknNXvTlppwlU.roa
File: hEF1gSP-EBIcZloknNXvTlppwlU.roa (raw, json)
Hash identifier: z+7HktXounGq5iFazO3g1byW6FfdOjuYaY294H86CLw=
Subject key identifier: 84:41:75:81:23:FE:10:12:1C:66:5A:24:9C:D5:EF:4E:5A:69:C2:55
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 03D75197
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hEF1gSP-EBIcZloknNXvTlppwlU.roa
Signing time: Sat 01 Jan 2022 13:04:03 +0000
ROA not before: Sat 01 Jan 2022 13:04:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56989
IP address blocks: 91.109.160.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64442775 (0x3d75197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 13:04:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8441758123fe10121c665a249cd5ef4e5a69c255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:02:7d:c9:8b:ae:92:64:cd:74:c4:a2:e4:6a:
bf:ee:47:3d:92:1e:a9:b3:26:04:ad:3f:68:47:0b:
f4:74:ef:61:86:ae:e2:12:94:0f:b5:eb:11:46:ae:
ed:89:ab:f8:93:06:db:d7:2f:36:07:88:dc:dd:05:
aa:3b:02:de:13:be:a7:e5:89:95:92:db:33:ef:7b:
51:8d:1b:5d:a5:c9:ae:a9:13:88:5b:35:48:ae:12:
73:89:8e:d8:11:c5:c9:df:af:66:75:05:dd:13:3f:
6b:fc:0d:0b:95:f1:aa:b4:07:31:c8:01:cb:2c:30:
c3:c6:61:e2:99:a8:6a:a5:f9:c8:58:3c:84:5b:de:
d6:a8:23:af:40:b2:96:1e:00:71:4f:e0:55:aa:52:
f2:1f:b2:b8:2b:55:51:0a:5e:19:37:3f:7c:23:e6:
0e:cd:ab:83:d9:6c:02:08:5c:a3:79:12:d4:8d:a9:
32:de:5c:fb:93:40:c8:8f:91:ca:4f:4f:36:ea:ee:
8e:2c:51:18:27:85:9d:f8:a7:20:a7:cb:47:65:ae:
21:1a:e3:26:c2:ab:b9:c9:7f:c2:8b:eb:f5:83:ad:
a2:ac:7c:f0:6b:74:f1:b0:bc:b7:39:90:60:95:ff:
8d:92:92:49:c8:21:41:29:f8:c2:21:f6:91:9b:e6:
eb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:41:75:81:23:FE:10:12:1C:66:5A:24:9C:D5:EF:4E:5A:69:C2:55
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/hEF1gSP-EBIcZloknNXvTlppwlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.109.160.0/21
Signature Algorithm: sha256WithRSAEncryption
25:ca:e8:3e:9d:3b:00:bd:97:36:5d:ec:3d:8f:aa:74:67:33:
b3:aa:f3:c1:b3:1f:d9:b1:b4:63:79:a5:99:6e:ba:f1:6b:6a:
5b:da:25:0e:5c:51:e8:77:48:47:dd:45:42:57:d7:6f:23:a6:
04:af:04:cb:b3:a6:e4:4b:29:b4:c5:b0:dd:71:d6:2c:3f:f8:
e1:54:60:44:6b:80:df:a7:67:b3:c7:d4:5b:94:79:d6:77:c3:
2a:a6:95:4f:fa:17:52:ef:c3:9e:ba:75:16:55:f5:eb:5e:26:
44:30:78:bf:e0:4a:e7:28:9e:0b:26:92:d0:d5:0c:6a:9f:95:
75:1a:4c:d9:d8:ed:ae:02:36:88:01:b0:93:07:be:c3:a1:65:
42:9d:9b:15:4c:38:7d:a6:c6:db:e2:26:9e:98:3e:01:f8:45:
47:29:f2:05:f4:4c:bd:d7:ab:fe:0e:d0:7f:1a:56:e9:0b:1e:
3d:d2:15:da:78:a6:15:9b:48:e3:c6:63:0d:eb:6a:4e:5c:8a:
76:c6:4e:2e:28:ba:34:8d:e7:57:86:11:1d:df:9e:8e:cc:13:
49:71:6c:d4:6c:80:d6:76:8c:a0:df:5d:0f:31:32:12:8c:a3:
5d:fb:18:18:02:38:4c:24:3d:a2:05:8c:f1:12:d7:53:a1:43:
00:74:c7:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:54 2023 by rpki-client on console-fra.rpki-client.org