Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/sMWkAJNWN4VYIPyoBCY2R2VEjHU.roa
File: sMWkAJNWN4VYIPyoBCY2R2VEjHU.roa (raw, json)
Hash identifier: F/9rb8PgjZyi6C0rhHAO6XS1kjXGXapWEcBYXwKzYWA=
Subject key identifier: B0:C5:A4:00:93:56:37:85:58:20:FC:A8:04:26:36:47:65:44:8C:75
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 0183A437D3BBEF24037137B7CDCF946D50FF
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/sMWkAJNWN4VYIPyoBCY2R2VEjHU.roa
Signing time: Tue 04 Oct 2022 18:17:45 +0000
ROA not before: Tue 04 Oct 2022 18:17:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.225.226.0/24 maxlen: 24
91.225.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a4:37:d3:bb:ef:24:03:71:37:b7:cd:cf:94:6d:50:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Oct 4 18:17:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0c5a400935637855820fca80426364765448c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:10:ee:9d:88:88:61:c5:6d:e1:7b:e8:8c:7f:
cb:c9:8d:94:7e:66:21:f9:cd:0d:21:43:48:96:31:
ac:0f:f4:ff:8f:d9:e4:08:3f:5b:01:a3:39:2e:78:
7e:17:f0:f0:95:c0:7c:b1:c5:fa:54:4d:56:66:8b:
35:ee:0a:f8:58:62:d3:eb:3b:0b:11:99:03:01:75:
ac:64:e7:00:62:4f:a7:3d:e1:da:55:bb:4c:69:81:
9e:5c:78:b3:62:f1:d8:6d:f0:31:82:06:e4:40:b0:
1f:f8:cf:12:3e:86:5f:8e:c5:60:b0:a6:62:fa:23:
50:98:72:59:5f:9a:a6:75:f3:18:21:f6:8e:7d:05:
bc:87:3f:16:21:fb:4c:22:fa:1a:40:ce:e8:f0:41:
6e:82:a1:fd:83:84:40:ef:9a:62:85:f1:bf:bc:ba:
fd:95:02:6e:1e:59:79:ed:7e:7e:21:b4:ed:2a:15:
f2:45:90:b1:13:a1:db:14:93:c0:41:59:85:4a:7d:
34:50:6e:cd:9c:04:55:3d:0a:a6:cd:20:f7:0b:30:
76:1d:4c:be:38:00:52:81:fc:6b:59:d1:49:6b:d0:
aa:94:fd:69:bd:8c:9a:fe:e3:a0:4e:c0:1c:51:ec:
8c:cc:74:61:8f:64:d1:8c:56:ae:0d:54:2f:1f:14:
47:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C5:A4:00:93:56:37:85:58:20:FC:A8:04:26:36:47:65:44:8C:75
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/sMWkAJNWN4VYIPyoBCY2R2VEjHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.225.0-91.225.226.255
Signature Algorithm: sha256WithRSAEncryption
3e:81:ec:56:ce:6d:b2:9e:99:a2:27:e8:51:33:d2:05:22:74:
a7:33:10:24:68:8f:0d:be:36:67:16:d2:a7:96:af:56:44:b9:
c5:ae:b3:8c:d6:63:24:26:cd:df:bc:06:f7:fa:72:22:c6:54:
e1:08:11:b7:10:db:71:b2:ab:8a:dc:7d:bc:2d:3e:cd:ec:2c:
ce:36:c9:ef:6b:b9:9e:2c:ac:c9:c7:f3:cf:05:21:5f:f5:ea:
e9:fb:3a:27:3c:6f:07:1a:d4:de:9b:53:de:e7:e8:da:d2:69:
f7:4c:3a:50:32:51:d6:d7:d7:46:62:fc:b1:a0:61:09:17:22:
1d:29:cd:06:a9:69:95:ba:f3:04:f9:85:15:cc:d5:46:73:03:
1e:2d:92:6f:3b:01:21:47:3f:68:ab:c9:d1:c9:9b:ce:4a:b6:
c6:4b:57:c6:58:60:62:59:92:49:9f:74:cd:3b:de:00:14:de:
3f:17:46:ea:6f:85:70:af:d6:40:5f:4e:bb:13:ec:ba:4b:55:
2c:b3:01:ed:9b:ea:f4:96:3d:88:f7:06:a6:28:25:4f:3f:64:
09:a2:bd:5d:7d:cb:ef:42:91:98:77:0b:84:cf:13:f8:7d:ba:
fe:4f:41:e2:14:c0:d5:cd:64:db:b5:47:7a:83:f5:e1:32:ce:
60:1b:34:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:58 2023 by rpki-client on console-fra.rpki-client.org