Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a6aeff-9b9a-4c18-9474-2272b4dbaa62/1/FJJQ_hurwR45AEskuc6-RHQ3HSQ.roa
File: FJJQ_hurwR45AEskuc6-RHQ3HSQ.roa (raw, json)
Hash identifier: 4+sfbtYrLitfnOJwJlxoMsf73oX0CFnIDya+WNASAbM=
Subject key identifier: 14:92:50:FE:1B:AB:C1:1E:39:00:4B:24:B9:CE:BE:44:74:37:1D:24
Certificate issuer: /CN=e12cfc7da8fa74a16dd38c17c20a0192cbb2d3fe
Certificate serial: 01CBA5
Authority key identifier: E1:2C:FC:7D:A8:FA:74:A1:6D:D3:8C:17:C2:0A:01:92:CB:B2:D3:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Sz8faj6dKFt04wXwgoBksuy0_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a6aeff-9b9a-4c18-9474-2272b4dbaa62/1/FJJQ_hurwR45AEskuc6-RHQ3HSQ.roa
Signing time: Wed 04 May 2022 19:42:55 +0000
ROA not before: Wed 04 May 2022 19:42:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56750
IP address blocks: 91.227.90.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117669 (0x1cba5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e12cfc7da8fa74a16dd38c17c20a0192cbb2d3fe
Validity
Not Before: May 4 19:42:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=149250fe1babc11e39004b24b9cebe4474371d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0f:fb:25:7a:80:02:b3:da:70:cf:38:34:46:
e5:4f:44:59:e2:91:e7:26:0e:f9:0a:8d:16:12:d8:
e2:9b:21:de:eb:65:ca:33:c0:1b:9a:a4:51:04:b2:
6f:49:b0:90:96:df:9f:83:af:28:f7:62:88:db:6e:
c4:a3:82:f5:e4:56:1e:05:fd:d3:0c:94:a5:61:ab:
8f:41:e5:f9:21:9b:4c:11:e0:05:c0:8a:cf:bd:c7:
72:65:3e:c9:c9:49:ec:5a:05:c2:94:66:fe:44:12:
b4:10:20:82:12:70:95:f8:77:ce:3a:97:e3:2c:bd:
64:3c:8a:07:c6:d9:26:30:12:69:55:da:84:08:16:
99:33:99:a7:6c:31:1c:d1:9a:a7:cc:1b:a3:d8:7a:
47:21:47:03:e4:cb:3a:3b:2e:e8:40:70:da:36:2a:
11:ea:05:50:d0:ce:fe:19:77:88:e7:ac:f3:9b:41:
23:3e:15:46:24:58:5e:03:c5:37:45:67:53:df:2e:
45:d8:61:f8:41:04:db:1c:76:ed:67:2f:e7:6f:ea:
e2:3e:71:88:09:57:e5:42:82:50:36:cd:48:c8:e2:
5c:e2:b2:58:75:62:71:be:cb:91:03:83:fb:28:c6:
06:6a:9e:17:78:a3:04:ca:5b:a5:6c:35:c2:af:03:
52:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:92:50:FE:1B:AB:C1:1E:39:00:4B:24:B9:CE:BE:44:74:37:1D:24
X509v3 Authority Key Identifier:
keyid:E1:2C:FC:7D:A8:FA:74:A1:6D:D3:8C:17:C2:0A:01:92:CB:B2:D3:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Sz8faj6dKFt04wXwgoBksuy0_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a6aeff-9b9a-4c18-9474-2272b4dbaa62/1/FJJQ_hurwR45AEskuc6-RHQ3HSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a6aeff-9b9a-4c18-9474-2272b4dbaa62/1/4Sz8faj6dKFt04wXwgoBksuy0_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.90.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:b1:05:cf:5c:cb:a9:be:c9:c8:90:11:07:90:e8:b2:35:e4:
57:18:15:11:13:2f:b8:73:7e:4f:fd:e8:b3:fe:b7:a7:a8:b4:
9c:d9:61:3c:c8:06:83:7b:53:3b:19:d9:76:10:6a:52:5c:55:
1f:db:96:67:24:ae:87:27:44:14:eb:44:31:cd:b3:d1:ff:b4:
9a:c2:2f:f4:62:01:db:e2:ee:58:39:48:69:37:73:f8:86:2c:
01:95:ec:b7:a3:85:35:55:4f:8d:77:80:92:59:2f:0c:5d:eb:
aa:70:c0:7b:45:81:5e:1c:01:9f:b7:6b:4d:54:2f:bf:2b:b5:
10:3b:c8:48:36:bd:30:97:70:d9:ff:e4:5c:93:73:af:fa:74:
0d:91:03:6c:1c:c9:b0:29:8f:8b:2b:a1:59:ee:70:1d:b2:a9:
cd:bd:10:a4:70:0e:e0:93:2d:09:87:87:c5:7c:a3:46:6f:70:
e4:c4:e2:a7:b2:22:00:1c:22:82:68:a9:23:73:3e:6a:df:00:
be:ca:ec:4e:f9:ab:66:4a:05:0d:9a:b5:20:6f:40:ab:5a:cd:
18:84:25:d9:42:2e:ce:1c:8b:76:e2:82:1f:d9:cf:ed:2f:23:
e3:f4:f6:ee:d4:64:3c:33:0f:54:c1:e0:f3:b0:86:51:c5:1d:
9b:3c:90:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:01 2023 by rpki-client on console-ams.rpki-client.org