Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/ev8TmaPpLDR1ruzyeKh09q70sQM.roa
File: ev8TmaPpLDR1ruzyeKh09q70sQM.roa (raw, json)
Hash identifier: ZVPJgC7qZcOOYwqQbZAIe4OQoe3k6ewDHBsYiVkcrsI=
Subject key identifier: 7A:FF:13:99:A3:E9:2C:34:75:AE:EC:F2:78:A8:74:F6:AE:F4:B1:03
Certificate issuer: /CN=9757052075961e9d90c27d07125a4b446cafd790
Certificate serial: 16EBC882
Authority key identifier: 97:57:05:20:75:96:1E:9D:90:C2:7D:07:12:5A:4B:44:6C:AF:D7:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1cFIHWWHp2Qwn0HElpLRGyv15A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/ev8TmaPpLDR1ruzyeKh09q70sQM.roa
Signing time: Sat 01 Jan 2022 13:59:00 +0000
ROA not before: Sat 01 Jan 2022 13:59:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49957
IP address blocks: 91.207.250.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 384551042 (0x16ebc882)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9757052075961e9d90c27d07125a4b446cafd790
Validity
Not Before: Jan 1 13:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7aff1399a3e92c3475aeecf278a874f6aef4b103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f6:e2:e6:1e:0b:de:55:db:0e:a3:e1:91:73:
81:ff:d0:07:de:52:31:fa:aa:26:33:db:36:dd:b7:
8f:a7:ca:d0:93:d0:79:4d:1e:f9:0b:02:a0:fe:84:
42:a6:4a:b9:42:85:5d:37:f8:58:0f:9b:5f:6c:2e:
bb:26:7e:79:af:e8:b5:45:1f:3b:44:30:5f:f7:6f:
68:13:d8:17:5d:80:d4:8f:e3:1a:64:22:5e:c6:27:
a7:e6:ce:79:3f:c5:0a:1d:ca:7d:d5:7d:e6:1d:98:
33:0c:92:cb:39:6a:1f:ed:24:a7:01:69:4c:29:bb:
d2:1c:4e:20:72:f9:bd:ef:72:50:72:dc:0a:b3:36:
59:9a:98:d5:be:02:5e:95:49:4c:8b:f4:ff:6e:4d:
25:5b:58:2f:a3:db:b7:44:35:4a:ef:17:62:ee:75:
60:c6:c1:57:ec:cd:1b:86:2c:25:8e:46:68:79:48:
f0:b4:68:81:6a:59:93:1a:77:b5:c4:af:8a:0d:c6:
29:d6:d1:f3:4a:c0:90:76:fb:3c:9c:b8:06:93:42:
09:d9:74:9f:69:52:49:72:00:d4:90:5d:1b:6f:f9:
31:c5:f4:64:0a:fa:10:df:bf:7c:ee:ff:46:71:11:
04:c8:50:13:e7:4c:17:97:0f:fd:d2:f8:3b:fd:c7:
34:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:FF:13:99:A3:E9:2C:34:75:AE:EC:F2:78:A8:74:F6:AE:F4:B1:03
X509v3 Authority Key Identifier:
keyid:97:57:05:20:75:96:1E:9D:90:C2:7D:07:12:5A:4B:44:6C:AF:D7:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1cFIHWWHp2Qwn0HElpLRGyv15A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/ev8TmaPpLDR1ruzyeKh09q70sQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/968d41-4d77-42be-80b1-beafe0efc09c/1/l1cFIHWWHp2Qwn0HElpLRGyv15A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.250.0/23
Signature Algorithm: sha256WithRSAEncryption
93:2b:34:fa:7f:d9:3c:dd:44:8e:aa:45:65:32:4f:0a:12:4f:
12:7a:2d:56:63:37:ad:ea:5f:1e:e6:4a:98:80:ee:9d:90:ad:
e8:7d:5a:c3:78:04:b4:2f:f6:25:51:15:d0:e4:7c:2f:8d:b2:
59:d0:66:4c:92:4f:ad:13:37:e4:6c:cf:9c:59:76:68:1a:2b:
66:dd:6f:28:d7:7f:05:f8:74:29:68:a0:f0:2f:71:4e:72:bf:
d1:f0:34:36:78:99:0d:ed:35:19:ed:0d:f3:20:da:04:42:b3:
71:b6:19:e0:f4:95:06:c8:f0:44:15:6e:70:53:4e:01:9d:7c:
51:e1:06:61:a6:68:45:e1:5a:41:1b:c2:ac:9c:7c:a8:83:d9:
5e:38:0d:6e:f4:b7:64:5c:49:06:02:ce:00:23:3d:b0:fb:b2:
1b:a1:56:80:4f:24:01:35:83:ec:5e:51:75:73:31:a9:70:35:
ad:86:50:f8:24:7f:2b:08:97:bb:82:99:ae:f1:95:32:23:69:
36:e2:4f:84:15:63:30:5b:e2:a3:52:82:26:08:ba:06:8c:90:
42:64:50:f5:23:6b:dc:30:45:48:2e:53:68:25:d7:8d:ed:cc:
d8:64:e3:59:8b:86:57:d0:3f:7a:36:0f:43:f8:9d:7d:dd:ee:
63:21:ff:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-ams.rpki-client.org