Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/4rtQRyizN8T6Ha30xFdaxg4twDQ.roa
File: 4rtQRyizN8T6Ha30xFdaxg4twDQ.roa (raw, json)
Hash identifier: dTLs9EzGYxJJ4HubCdPcZYJFl8huuFoB6J8Dgf/X+Hg=
Subject key identifier: E2:BB:50:47:28:B3:37:C4:FA:1D:AD:F4:C4:57:5A:C6:0E:2D:C0:34
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 01821F21D4D8387F21028FA02E705E68C9D2
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/4rtQRyizN8T6Ha30xFdaxg4twDQ.roa
Signing time: Thu 21 Jul 2022 05:01:26 +0000
ROA not before: Thu 21 Jul 2022 05:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30058
IP address blocks: 91.213.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:21:d4:d8:38:7f:21:02:8f:a0:2e:70:5e:68:c9:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Jul 21 05:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2bb504728b337c4fa1dadf4c4575ac60e2dc034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:30:06:d1:94:d4:27:fb:e2:51:d1:f4:2f:58:
99:e7:23:a0:c4:fe:da:f7:64:a3:cc:de:db:9c:2e:
d6:d6:70:9c:36:60:6e:cc:87:f9:8a:3d:57:3b:04:
0c:e7:0e:5c:29:74:40:16:a1:26:9a:85:1d:f9:90:
d5:52:46:13:ac:48:2f:28:58:af:a0:11:c5:b4:87:
00:89:83:48:fc:75:39:c4:b6:10:77:65:fb:aa:70:
3e:a8:6a:bf:80:fb:99:5e:e6:2e:5c:b7:b1:bf:df:
c1:5f:89:4e:e9:70:b8:b7:ee:e4:da:65:5b:82:be:
c4:43:2c:7f:27:bb:a1:1a:cb:e8:8c:cd:f1:d5:3c:
21:4a:ee:4f:d0:06:84:0c:c4:fe:eb:8a:95:e4:09:
1d:06:91:88:c7:f1:ee:70:c5:08:fa:11:56:31:ca:
f3:11:79:a1:41:8b:21:42:13:bd:c6:5d:ad:23:2b:
44:2c:aa:e8:1a:d5:e3:be:8c:9e:75:96:b4:09:2e:
d3:d0:c1:05:07:05:ad:1b:a0:6c:3f:56:52:c8:bc:
3c:a6:2f:af:65:df:e0:e6:e7:b9:28:68:20:b8:49:
a0:64:05:7c:48:39:72:5b:9a:5b:f1:27:2d:cb:5c:
bd:24:51:49:7f:73:fb:ff:f7:9a:71:3f:77:3e:cb:
a4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BB:50:47:28:B3:37:C4:FA:1D:AD:F4:C4:57:5A:C6:0E:2D:C0:34
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/4rtQRyizN8T6Ha30xFdaxg4twDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.174.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:b3:22:8c:0e:0c:f3:15:e1:75:d5:e7:c9:bd:53:f0:fe:59:
2f:d9:62:04:d2:d1:a2:bc:c6:55:40:fb:34:d9:c6:cd:14:cc:
c4:54:99:7f:79:eb:c6:71:b8:69:66:89:16:3a:22:6b:fa:23:
a7:db:13:e7:13:b2:5c:1a:51:b0:01:91:8d:47:b4:ee:e9:f7:
e8:d3:59:ed:53:0c:0b:c4:c8:04:1d:89:1e:ce:9b:ec:4d:84:
dd:c8:1a:5a:50:b3:b0:54:ff:2d:bf:d2:34:1e:57:4f:20:31:
34:85:1f:e1:9a:f9:23:96:20:68:5c:39:07:25:09:96:a2:8c:
9c:a0:17:f6:4f:c7:e5:57:f6:2f:bc:ee:c6:15:7f:d1:73:d4:
65:8d:4e:9f:2e:cf:37:6c:57:c2:8d:62:f2:2d:64:b8:8c:22:
40:d7:c9:42:8e:1f:97:8d:90:52:2c:6e:ed:fc:b0:78:db:5a:
c8:4b:56:19:93:12:2a:fa:b5:3c:31:05:2d:0b:59:11:5e:9c:
0d:ff:37:43:bc:77:ff:68:6f:d7:df:82:73:dc:b7:f0:f4:85:
9b:16:98:da:3a:95:a7:48:4f:a4:08:5f:14:1b:03:de:22:ae:
4a:fa:b0:5a:a7:0d:7d:c9:5a:fc:e3:be:af:61:bf:5b:30:31:
34:60:90:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:01 2023 by rpki-client on console-fra.rpki-client.org