Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/dea778-09c8-4572-b3bb-c6059a3aa340/1/RFfQFvq9QZXRZzDSBg3wKitQ-64.roa
File: RFfQFvq9QZXRZzDSBg3wKitQ-64.roa (raw, json)
Hash identifier: o/RPik4WMp95RJVcumRLOvYfOOz/lMvIf4jLq7Fwako=
Subject key identifier: 44:57:D0:16:FA:BD:41:95:D1:67:30:D2:06:0D:F0:2A:2B:50:FB:AE
Certificate issuer: /CN=bac55ec7cff0ef5650725adf3aefe6051a10cb6a
Certificate serial: 01839910567D475AAB35918D05874B4C62D8
Authority key identifier: BA:C5:5E:C7:CF:F0:EF:56:50:72:5A:DF:3A:EF:E6:05:1A:10:CB:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/usVex8_w71ZQclrfOu_mBRoQy2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/dea778-09c8-4572-b3bb-c6059a3aa340/1/RFfQFvq9QZXRZzDSBg3wKitQ-64.roa
Signing time: Sun 02 Oct 2022 14:18:48 +0000
ROA not before: Sun 02 Oct 2022 14:18:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196695
IP address blocks: 91.200.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:99:10:56:7d:47:5a:ab:35:91:8d:05:87:4b:4c:62:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bac55ec7cff0ef5650725adf3aefe6051a10cb6a
Validity
Not Before: Oct 2 14:18:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4457d016fabd4195d16730d2060df02a2b50fbae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:8a:6e:6b:73:47:4f:1d:33:4d:96:9c:b1:f9:
b2:30:fc:99:ca:0c:64:71:0b:1d:5e:f4:c6:bc:aa:
e1:f5:9c:06:ca:d0:30:2f:52:31:45:e0:04:98:2b:
96:71:e7:f3:2a:60:28:2d:27:8f:40:b3:a9:0e:c3:
32:a0:51:ed:d7:1f:5c:39:3f:11:f9:30:32:3d:1f:
67:51:f7:38:20:ad:99:6b:50:4f:d5:49:39:20:03:
fb:91:50:db:60:24:36:2d:e8:e6:ce:77:1b:e0:df:
d9:9a:82:e4:47:a2:fb:b5:3c:73:50:88:53:5e:7a:
7a:65:1c:da:2d:31:1a:b1:f9:43:f3:f0:d0:4e:4e:
d1:91:01:d3:57:eb:4f:5d:df:8d:31:1e:72:24:02:
3a:98:80:f9:8e:e8:7a:07:37:dc:85:8e:a8:4a:88:
52:18:c3:37:90:58:64:9e:ac:20:99:13:56:e8:a0:
97:f3:69:31:b3:fa:16:18:9e:d2:3c:33:3a:77:a8:
3c:99:63:36:ba:b9:b5:42:1e:be:c0:e9:c0:a8:da:
d3:b3:01:2b:a1:cd:de:f4:ec:05:17:51:07:de:0b:
86:9a:ba:73:1b:68:c8:38:b3:50:9a:bb:98:89:b8:
74:50:a0:c2:51:ec:3b:16:59:39:64:f2:84:73:9d:
d1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:57:D0:16:FA:BD:41:95:D1:67:30:D2:06:0D:F0:2A:2B:50:FB:AE
X509v3 Authority Key Identifier:
keyid:BA:C5:5E:C7:CF:F0:EF:56:50:72:5A:DF:3A:EF:E6:05:1A:10:CB:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/usVex8_w71ZQclrfOu_mBRoQy2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/dea778-09c8-4572-b3bb-c6059a3aa340/1/RFfQFvq9QZXRZzDSBg3wKitQ-64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/dea778-09c8-4572-b3bb-c6059a3aa340/1/usVex8_w71ZQclrfOu_mBRoQy2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.146.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:b3:ab:03:ce:fc:fa:f4:b3:e8:bf:14:eb:59:70:6b:2c:b4:
52:06:32:16:9f:4d:ab:10:2f:b1:55:37:7c:e2:cc:2d:fa:61:
4a:57:fc:f5:fa:65:13:46:a4:a7:a3:f7:01:ab:1e:5f:4d:90:
dd:2b:70:7a:91:a4:7c:d1:f0:13:ae:79:81:85:ac:bc:90:f4:
80:cd:b0:59:34:d6:77:bb:d3:01:a2:19:21:eb:e9:b5:94:84:
0e:6d:90:11:b8:3e:26:c0:8d:26:cd:37:4e:97:b1:84:a3:1a:
23:06:ab:40:81:58:dd:86:6e:dc:a9:05:e1:a4:4b:15:e6:94:
f2:85:73:86:a9:1f:54:a9:e9:fc:e6:b3:6a:07:e5:55:90:5b:
33:38:59:b7:46:d9:ca:d7:82:f5:fd:8a:9c:82:c7:90:19:e3:
e1:f5:58:2d:96:c5:38:8f:f7:49:a8:ab:17:bc:12:d2:d1:38:
e3:cb:3d:c0:7c:6e:4d:c7:5c:d6:2b:10:5f:d3:3a:5c:99:53:
5f:c0:17:85:b8:b4:80:97:03:eb:04:fa:40:f6:5a:af:72:7a:
b7:b3:43:ee:af:34:fb:60:ef:82:ef:d4:9f:a2:77:0f:f6:b2:
6b:59:f7:43:71:ea:0d:77:5f:3e:e8:4d:60:50:5c:df:56:c2:
9c:32:89:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:03 2023 by rpki-client on console-fra.rpki-client.org