Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/9e1f46-802b-49d1-91b8-483fc90708d5/1/I_u19h4ukhTDEoXHXtpZI-3K6-M.roa
File: I_u19h4ukhTDEoXHXtpZI-3K6-M.roa (raw, json)
Hash identifier: ws0g5VDVJEC7vosWk9nD7ieC8IpsnqsuMIOUydJ5fz0=
Subject key identifier: 23:FB:B5:F6:1E:2E:92:14:C3:12:85:C7:5E:DA:59:23:ED:CA:EB:E3
Certificate issuer: /CN=8eb2f81b8c47c2b588f451d4037c6837870b397f
Certificate serial: D32230
Authority key identifier: 8E:B2:F8:1B:8C:47:C2:B5:88:F4:51:D4:03:7C:68:37:87:0B:39:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrL4G4xHwrWI9FHUA3xoN4cLOX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/9e1f46-802b-49d1-91b8-483fc90708d5/1/I_u19h4ukhTDEoXHXtpZI-3K6-M.roa
Signing time: Sat 01 Jan 2022 07:54:26 +0000
ROA not before: Sat 01 Jan 2022 07:54:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59639
IP address blocks: 91.199.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13836848 (0xd32230)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb2f81b8c47c2b588f451d4037c6837870b397f
Validity
Not Before: Jan 1 07:54:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23fbb5f61e2e9214c31285c75eda5923edcaebe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:17:24:c1:18:29:99:47:23:49:ca:62:43:25:
11:d9:90:27:92:24:1e:1b:47:f1:ac:d0:42:6a:c4:
b3:2a:0d:59:09:bd:36:5b:6b:af:49:90:7d:a3:6d:
7f:45:d6:60:2a:34:ed:a1:53:c1:de:18:06:fc:06:
1c:7a:cc:5a:9e:a2:d7:0a:32:e2:d3:a2:2a:90:53:
02:b2:17:4f:3e:b1:ef:a7:15:ef:e3:f9:95:92:e5:
e8:8e:f2:79:6a:f6:79:94:4a:a6:58:fd:db:c0:14:
c8:a3:32:c6:45:2e:4a:21:58:d1:73:af:5d:58:e4:
6d:6d:27:cb:a6:db:18:82:c8:d4:b6:24:aa:72:26:
08:ef:45:9f:a1:b3:a8:07:fb:84:e3:05:34:c0:9b:
3d:90:06:42:a1:0c:fc:01:2a:ec:a0:13:d7:73:e0:
9a:d8:84:9d:92:72:96:7b:e2:25:5b:63:e3:69:c5:
11:74:d2:6a:40:1e:77:a7:0e:71:f6:71:38:e6:d2:
f4:09:a0:0f:3f:a7:1e:c8:00:98:a5:cb:a6:91:14:
fc:bd:62:fa:59:11:3b:01:08:da:d6:07:74:7e:9f:
6f:cc:e3:3f:46:d1:54:99:13:e5:a7:47:01:1c:70:
1c:86:6c:b9:85:0d:9e:cc:78:cd:1e:0f:a8:2b:38:
a8:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:FB:B5:F6:1E:2E:92:14:C3:12:85:C7:5E:DA:59:23:ED:CA:EB:E3
X509v3 Authority Key Identifier:
keyid:8E:B2:F8:1B:8C:47:C2:B5:88:F4:51:D4:03:7C:68:37:87:0B:39:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrL4G4xHwrWI9FHUA3xoN4cLOX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9e1f46-802b-49d1-91b8-483fc90708d5/1/I_u19h4ukhTDEoXHXtpZI-3K6-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9e1f46-802b-49d1-91b8-483fc90708d5/1/jrL4G4xHwrWI9FHUA3xoN4cLOX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.199.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:c7:96:7f:1f:26:ff:ea:23:82:62:d0:1a:0a:6c:3d:70:de:
f8:eb:16:9e:5c:e6:85:d6:e6:31:56:9b:45:15:02:00:cc:26:
89:f7:3a:47:9a:c1:08:96:9a:da:1d:79:3a:73:73:9e:60:4a:
07:73:12:75:fd:d2:40:53:f2:ab:9d:a8:d6:d2:28:2d:59:a3:
e6:84:63:41:4a:93:48:96:d3:10:a8:0a:7a:03:dd:0b:fa:99:
13:08:4c:45:5c:8d:ff:c3:bd:c0:22:3a:e1:20:a7:51:ec:69:
79:b0:e8:f0:b6:0f:19:dd:ed:73:cd:f3:f2:ff:6a:a5:08:5b:
8f:ed:0e:ce:ad:04:68:d3:4e:f9:6c:77:55:e8:65:e3:a7:43:
bb:9e:68:7a:20:6d:8a:95:21:42:28:1e:02:20:20:64:10:aa:
47:2f:88:8a:44:39:b2:c2:64:8b:5a:37:1e:fb:f1:bc:b8:a0:
31:37:a4:f5:a5:15:74:04:32:a6:ff:28:44:f9:da:e5:be:e4:
69:9c:30:17:fd:6d:dd:c3:4c:87:61:c7:d4:04:5c:dc:1b:6c:
d5:82:3c:63:73:73:d7:98:c1:5c:00:99:fa:13:fd:1c:98:f6:
48:c2:d9:f5:d6:e0:53:07:34:9b:c9:a5:4c:39:49:8d:a9:37:
4e:cd:f1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:18 2023 by rpki-client on console-fra.rpki-client.org