Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/B19CnIBGFNASLmLYGnz-hLwbXoA.roa
File: B19CnIBGFNASLmLYGnz-hLwbXoA.roa (raw, json)
Hash identifier: owzMcJo4t7+Y/tgADYGGRLAm/tH+FKLgz7sESDKuYaA=
Subject key identifier: 07:5F:42:9C:80:46:14:D0:12:2E:62:D8:1A:7C:FE:84:BC:1B:5E:80
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 09AEB0AE
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/B19CnIBGFNASLmLYGnz-hLwbXoA.roa
Signing time: Sat 01 Jan 2022 09:56:55 +0000
ROA not before: Sat 01 Jan 2022 09:56:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 91.103.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162443438 (0x9aeb0ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Jan 1 09:56:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=075f429c804614d0122e62d81a7cfe84bc1b5e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f9:e3:7f:ad:fd:e2:ed:0e:d4:8f:bc:dd:65:
76:cd:7e:d4:1e:ce:8c:bd:49:f7:13:d7:8a:be:cd:
e7:cb:48:9a:53:66:e0:7f:92:d0:05:05:ed:0c:ef:
7c:88:85:9a:c1:56:29:26:d8:27:0a:da:54:2f:0d:
f4:33:a2:a6:53:44:4e:0b:2e:e7:fa:79:c2:67:13:
d5:6b:be:2c:2a:25:09:26:8f:f8:d7:7e:dc:46:25:
6e:4f:9d:e3:03:e2:04:29:5f:d8:a3:e9:87:58:73:
e5:bc:1f:70:88:e6:be:88:51:e4:9a:1c:56:ad:fa:
25:67:52:b1:68:52:f3:70:37:4b:65:81:a2:6a:d6:
22:05:b3:4d:41:39:84:47:60:40:9c:b3:72:2e:18:
a3:57:2b:f0:c4:a2:1e:ff:65:54:6b:da:6e:6a:57:
62:fb:3d:0b:d1:bc:34:6e:5b:08:a6:8d:7b:9a:96:
47:61:e5:8d:cf:a3:93:81:15:f4:ca:bc:18:be:3a:
9a:21:b7:3b:07:02:1f:af:ab:d3:a1:50:14:8b:06:
02:37:f8:c7:49:85:9c:55:7d:10:db:ef:1b:a9:eb:
a0:a2:bf:9c:10:cf:1a:bb:11:9b:77:3c:9c:8b:05:
25:5d:12:2a:3f:68:01:66:a8:4d:0f:c9:4c:91:d1:
cb:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:5F:42:9C:80:46:14:D0:12:2E:62:D8:1A:7C:FE:84:BC:1B:5E:80
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/B19CnIBGFNASLmLYGnz-hLwbXoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.120.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:da:71:45:09:51:3c:0f:96:2e:21:f1:1b:a0:ad:ba:99:08:
61:5b:54:95:86:59:0f:6c:e1:5c:66:23:0e:24:21:c9:7e:4f:
ec:d3:e0:16:34:8f:75:8d:5f:83:10:48:51:ac:71:16:bc:1d:
e6:05:ed:08:fc:15:2c:f6:61:98:71:db:47:c6:ea:d9:c4:12:
cd:71:38:56:84:1f:80:fe:d6:c9:fe:fa:84:cd:4d:b1:ff:e7:
af:5d:42:0c:bc:5a:55:fa:8a:90:e6:7e:5c:27:3b:f6:65:7b:
3f:c8:09:5c:ee:cd:46:b4:c7:2e:3c:60:d7:b3:fc:a2:9f:6d:
5b:1f:a5:9a:ed:d9:30:53:53:31:d5:43:29:7d:eb:20:16:47:
2f:30:0c:f3:57:41:eb:9f:d9:9f:fa:5f:bd:54:bb:1a:37:9a:
9d:a7:0d:15:ed:17:72:56:8a:a8:88:2b:b8:a8:4e:94:de:a1:
11:0b:ca:d2:7d:cf:c2:57:e9:14:26:cc:1e:fe:27:37:bc:c1:
fe:eb:eb:47:74:1d:03:2d:c2:8d:45:63:66:54:3d:62:67:29:
17:49:91:d5:02:e1:c1:74:e9:34:eb:4e:81:f6:a6:30:8f:04:
e0:7a:de:6b:f7:aa:35:09:2f:f2:b2:90:04:86:10:02:9a:3c:
12:f6:b3:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:42 2023 by rpki-client on console-ams.rpki-client.org