Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/FmzJ50aET03fvJ_kTALLbMs0CAU.roa
File: FmzJ50aET03fvJ_kTALLbMs0CAU.roa (raw, json)
Hash identifier: MYM3zfktmLPW3PQAsh+a2tHmTkfq+fMzcqw9bjc7BIA=
Subject key identifier: 16:6C:C9:E7:46:84:4F:4D:DF:BC:9F:E4:4C:02:CB:6C:CB:34:08:05
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018488AB15B3C643C8A9F03A4DDC1DAD14E4
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/FmzJ50aET03fvJ_kTALLbMs0CAU.roa
Signing time: Fri 18 Nov 2022 02:57:04 +0000
ROA not before: Fri 18 Nov 2022 02:57:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9910
IP address blocks: 91.132.58.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:88:ab:15:b3:c6:43:c8:a9:f0:3a:4d:dc:1d:ad:14:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Nov 18 02:57:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=166cc9e746844f4ddfbc9fe44c02cb6ccb340805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:54:fe:7b:b7:15:99:81:87:b7:14:0a:1a:27:
a7:71:e1:6e:60:de:76:45:c7:e8:c1:35:4a:31:5d:
9b:22:90:3d:aa:33:43:c1:99:40:ae:cb:e6:b9:44:
86:05:a5:04:dd:e2:c0:da:8d:0d:c2:1f:c6:44:d1:
e9:79:56:cf:16:a6:e1:b8:14:5e:56:ee:9b:85:af:
f1:8e:3f:ba:76:e2:47:8d:29:52:91:6a:48:dd:62:
06:17:d6:1c:05:de:b4:62:23:f0:30:ae:1a:11:42:
01:7c:58:90:b2:bd:27:05:e3:dd:c8:5d:de:bf:04:
e3:bd:ee:d5:06:8f:48:a3:c4:e0:8f:b2:28:dc:29:
d2:64:30:d9:d7:c1:4c:26:29:14:ba:59:d7:95:8a:
b4:85:03:21:7e:85:a9:d3:a2:0d:fa:b3:43:7c:22:
1e:a9:24:0f:f7:51:a6:34:ef:6e:60:b2:bd:b2:40:
c8:7c:93:28:1a:c8:c4:43:66:02:5d:5a:c5:37:a2:
79:7d:04:fd:b7:f4:5f:65:36:4c:c9:c2:2c:83:22:
62:e9:c9:e5:dc:85:81:4e:5e:5c:c7:10:b0:fd:c1:
f8:e5:ac:16:62:85:70:50:53:71:af:f5:29:47:82:
cc:92:49:ea:69:d9:dd:78:e8:14:35:49:24:6a:a7:
fe:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:6C:C9:E7:46:84:4F:4D:DF:BC:9F:E4:4C:02:CB:6C:CB:34:08:05
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/FmzJ50aET03fvJ_kTALLbMs0CAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.58.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:4c:b7:4a:83:8a:37:ee:b4:ee:6f:ac:5a:92:cc:d8:c4:45:
e9:aa:29:b8:7f:2d:7d:93:c9:95:06:26:f2:0f:f5:44:a0:31:
5d:47:31:30:65:ff:01:0b:4a:45:05:02:f6:48:47:07:c3:1b:
51:56:27:9c:ad:df:86:ee:aa:cb:41:5c:3b:8a:14:0d:97:39:
1f:97:9d:b4:cb:ca:66:4c:bc:1c:b3:c0:86:80:a8:9d:41:da:
26:b3:8a:06:3b:1d:80:b8:9b:f0:36:74:a7:df:03:0a:12:ee:
10:7e:12:83:aa:c7:06:50:da:ef:d7:28:27:81:d1:f2:f5:6a:
9e:36:e4:f0:12:fb:c8:27:93:c4:64:97:08:44:10:aa:25:d9:
53:b7:ca:ca:63:36:02:d5:5a:64:c4:af:95:bf:22:c0:1f:49:
31:26:d1:8b:e9:db:8e:0e:ac:d3:10:26:85:5f:17:fe:d7:1a:
18:23:01:27:69:6b:5d:47:14:d6:a1:c9:57:d2:75:7c:9b:46:
3c:d6:fc:dd:09:cf:a4:88:fe:dd:dc:78:cc:d2:0c:b5:f2:48:
5d:59:f1:9e:25:fc:34:8c:a4:5b:96:6a:ab:eb:e5:95:3f:6d:
00:a4:99:a2:28:54:f7:77:86:da:7d:48:81:67:ef:28:a1:46:
53:0b:29:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:42 2023 by rpki-client on console-fra.rpki-client.org