Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/4LRNiYL-O-WXfbKZxir5xbTvZCc.roa
File: 4LRNiYL-O-WXfbKZxir5xbTvZCc.roa (raw, json)
Hash identifier: 3AKVhjZUnawoLBRdbtGrk6WM2SNWP/sO4H2L2uzWOsE=
Subject key identifier: E0:B4:4D:89:82:FE:3B:E5:97:7D:B2:99:C6:2A:F9:C5:B4:EF:64:27
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0184FCE694F8E77EF010C97611886C4749FB
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/4LRNiYL-O-WXfbKZxir5xbTvZCc.roa
Signing time: Sat 10 Dec 2022 16:38:00 +0000
ROA not before: Sat 10 Dec 2022 16:38:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 91.103.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:fc:e6:94:f8:e7:7e:f0:10:c9:76:11:88:6c:47:49:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Dec 10 16:38:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0b44d8982fe3be5977db299c62af9c5b4ef6427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:02:ab:b1:d8:a4:d7:cf:0e:ba:37:12:55:58:
c7:3e:76:0b:8b:df:a9:01:8f:5d:09:18:02:03:0a:
f6:b5:e0:20:42:4a:92:44:13:c1:8b:f6:91:a0:c0:
0e:88:67:d1:f2:68:91:9a:be:71:e0:98:c7:3a:85:
e2:bd:71:4d:ff:6e:94:4f:48:74:31:a6:69:4b:cb:
0c:af:9e:70:b5:56:c5:6d:5d:dc:b2:e9:94:b3:a2:
c9:4a:d8:b3:a2:ae:3d:33:66:7c:40:db:1a:c1:02:
8a:e6:07:56:31:fa:ab:6f:41:4f:e4:d8:1b:6c:c8:
f1:17:23:54:b3:76:2d:6d:ef:50:17:53:3c:53:24:
5e:3d:5e:59:d3:27:b8:20:c6:cd:e1:a8:9a:1c:c6:
c0:43:68:46:89:cd:12:8b:c3:89:81:af:bf:25:e3:
91:28:15:d8:07:9f:a5:fa:fd:42:2c:b9:28:c7:33:
de:f8:90:6c:92:e5:f7:03:05:bf:6b:54:3a:4f:26:
04:ef:b0:79:7c:b4:a1:29:14:6b:47:f5:ca:1d:f0:
97:b7:75:05:e8:75:61:7f:89:3a:48:99:a6:ec:a2:
ac:bc:00:3a:ca:fd:cd:4a:1e:7c:1f:16:9d:e4:a4:
c2:6e:e4:da:ed:8a:29:ee:94:8e:88:7f:a6:3e:df:
91:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B4:4D:89:82:FE:3B:E5:97:7D:B2:99:C6:2A:F9:C5:B4:EF:64:27
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/4LRNiYL-O-WXfbKZxir5xbTvZCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.124.0/22
Signature Algorithm: sha256WithRSAEncryption
88:34:a3:d0:7c:00:76:3b:80:5d:c2:53:85:a7:8e:df:b3:b6:
c8:a2:8b:0b:1e:20:b5:27:55:aa:ea:4b:7a:96:28:cf:c1:52:
3d:2d:d7:bf:1d:22:fd:42:e0:c7:74:93:5b:cf:60:0a:67:a4:
95:4d:fb:d4:e3:ae:26:4a:74:35:23:f3:d3:78:fe:8e:64:7c:
86:a3:54:5a:f7:13:6c:0f:28:13:31:b7:0d:aa:b3:98:26:82:
da:a3:9e:6d:22:bb:a1:27:4e:c3:a9:62:d5:ce:68:6c:03:17:
bd:fb:6e:dc:ed:2d:5d:5e:0e:01:26:f3:fa:28:ce:d7:86:1d:
1a:5e:ed:5b:82:61:d6:68:c6:27:2f:d1:0c:b2:1b:0f:a0:db:
91:d7:91:3b:a3:73:19:54:a8:1d:20:5e:ba:87:9d:10:63:b5:
d3:84:77:b2:d5:9a:52:6d:54:88:57:d4:36:f7:31:11:10:07:
f1:fa:11:2e:70:f9:ad:0f:b3:f0:8c:da:bc:07:ce:ce:78:64:
24:c4:f1:cd:ff:31:7b:82:48:0b:89:60:1b:21:b4:c9:0c:41:
f7:d3:f9:46:b2:1c:36:5b:4b:ea:44:ad:ae:4f:4b:e4:20:6e:
2e:da:1d:ce:5b:54:ae:81:e4:97:32:43:85:dd:d7:30:4b:b0:
8d:4e:09:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:42 2023 by rpki-client on console-ams.rpki-client.org