Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/7EYUHEryfX_pwMKXk4cXvkoikts.roa
File: 7EYUHEryfX_pwMKXk4cXvkoikts.roa (raw, json)
Hash identifier: Xx5cS2cmyJ+RZMFu/QcRh/NRrvjm+d1sRI77d5nu/JI=
Subject key identifier: EC:46:14:1C:4A:F2:7D:7F:E9:C0:C2:97:93:87:17:BE:4A:22:92:DB
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0B4BD239
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/7EYUHEryfX_pwMKXk4cXvkoikts.roa
Signing time: Tue 31 May 2022 08:28:19 +0000
ROA not before: Tue 31 May 2022 08:28:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 91.103.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 189518393 (0xb4bd239)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: May 31 08:28:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec46141c4af27d7fe9c0c297938717be4a2292db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ad:93:79:a0:30:48:83:8e:47:77:27:c2:0e:
e4:67:8b:83:c0:a0:aa:26:67:6b:02:c9:ab:7a:a0:
58:2c:ae:72:a1:0d:a7:3e:81:48:0a:f5:77:36:50:
0f:01:44:75:f2:7e:3f:7d:52:75:0b:41:ef:97:f2:
44:fa:dd:8d:d3:71:22:31:08:8f:bd:3b:f3:53:b0:
35:5e:2e:4a:53:70:64:5d:79:c5:04:ac:64:92:91:
a9:df:73:fc:47:31:17:4c:74:b9:ce:c3:e1:be:ff:
92:ed:83:f8:76:22:c3:fd:7a:f5:98:26:52:c8:9a:
90:1c:a1:61:e3:fe:18:a9:b6:1a:dd:c0:a1:87:ae:
62:f6:0b:a7:20:df:4f:98:48:08:24:49:4e:f9:04:
53:99:70:eb:9a:92:fb:3a:e7:4f:d1:7a:bc:20:c8:
da:fd:04:a9:0f:c4:44:d3:4d:40:26:3a:ff:35:d5:
17:48:2c:0c:22:a2:84:9f:0c:52:0d:96:b8:7e:b6:
be:11:82:43:67:0a:f2:61:b0:68:c5:d0:34:9a:cb:
09:b8:01:3d:73:e8:19:7f:c0:c6:52:19:e6:38:eb:
75:75:1a:b5:69:9e:f4:d7:64:d7:d7:b6:17:18:46:
8c:d3:6f:e2:31:a4:de:0d:93:13:4f:b0:b0:50:ed:
63:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:46:14:1C:4A:F2:7D:7F:E9:C0:C2:97:93:87:17:BE:4A:22:92:DB
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/7EYUHEryfX_pwMKXk4cXvkoikts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.124.0/22
Signature Algorithm: sha256WithRSAEncryption
83:b7:e1:a5:3c:aa:74:af:0e:8d:ab:ab:80:28:0a:52:d8:36:
37:bb:45:87:67:b5:64:35:91:f1:16:93:85:08:a4:f2:41:95:
3e:ae:56:ca:dd:bc:2b:ed:3b:60:e1:56:29:1e:88:03:db:7d:
8c:8a:b9:9d:1e:0b:57:38:0b:c9:29:7f:f8:5b:be:48:31:18:
4f:21:85:76:b5:09:e8:37:51:95:a0:cd:d8:8c:fb:9f:54:19:
6e:87:c1:08:2d:5d:e7:93:09:cb:80:f0:79:5c:dc:67:72:ae:
52:fc:8b:06:e2:c0:2f:38:c2:82:e0:83:3d:fe:96:06:93:f5:
c2:5b:e8:8c:4f:7d:ac:7d:50:c0:73:5e:e5:5a:96:36:d9:a8:
9b:a5:67:ae:9c:d1:b3:dc:11:02:ee:77:9a:4d:66:f0:31:36:
7b:29:82:3c:f5:36:8a:fc:4b:32:49:da:bc:c7:49:ae:e4:bb:
ab:71:8f:ab:c3:a7:63:5f:3a:ce:63:7a:fc:b1:39:4d:ec:4e:
7e:54:55:32:a7:06:77:15:b2:73:d3:01:fe:63:ad:c3:be:23:
8d:2a:b3:f8:1c:9a:b3:91:6b:bb:2c:91:37:0e:06:78:26:28:
97:98:3e:d4:aa:e0:5f:a3:15:99:b3:6f:0b:86:76:2a:7e:7b:
9b:ba:c6:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:01 2023 by rpki-client on console-fra.rpki-client.org