Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/2fbbf5-b0b5-4ca5-9327-6c4f2e027911/1/ng1V0BkQJ5m84T2z7W4Ede_E39U.roa
File: ng1V0BkQJ5m84T2z7W4Ede_E39U.roa (raw, json)
Hash identifier: 3flTK19FxcxEjP/MTvKMHqB3nInHWYZkBqDnhsvNyWw=
Subject key identifier: 9E:0D:55:D0:19:10:27:99:BC:E1:3D:B3:ED:6E:04:75:EF:C4:DF:D5
Certificate issuer: /CN=e3025c689a52c898fd7279329f36b406cc8fbc17
Certificate serial: 04050C7A
Authority key identifier: E3:02:5C:68:9A:52:C8:98:FD:72:79:32:9F:36:B4:06:CC:8F:BC:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wJcaJpSyJj9cnkynza0BsyPvBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/2fbbf5-b0b5-4ca5-9327-6c4f2e027911/1/ng1V0BkQJ5m84T2z7W4Ede_E39U.roa
Signing time: Sat 01 Jan 2022 12:59:39 +0000
ROA not before: Sat 01 Jan 2022 12:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 91.243.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67439738 (0x4050c7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3025c689a52c898fd7279329f36b406cc8fbc17
Validity
Not Before: Jan 1 12:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e0d55d019102799bce13db3ed6e0475efc4dfd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ea:81:5d:04:75:dc:24:2c:95:ec:de:87:cd:
7f:2a:74:37:23:9d:c8:f0:14:2e:2b:fa:5e:13:a0:
42:bc:7a:19:0e:0c:ea:c8:5a:67:ab:de:7c:e8:f3:
69:ca:aa:da:82:45:b3:73:6b:65:dc:bd:7b:88:30:
21:15:3e:2b:87:8d:16:31:58:0c:f8:d7:9f:a9:32:
b5:70:f7:0d:f9:c0:fe:5d:b3:f3:ec:74:1d:82:15:
fb:e1:fc:17:08:f8:a9:10:46:b1:36:f1:b8:ea:96:
5a:47:64:50:f5:2c:32:ae:12:e7:f8:99:4c:9c:da:
0b:02:18:e5:05:0d:f7:0d:54:f2:52:99:d2:db:6f:
e0:1c:17:f5:81:0c:bd:d2:16:f6:37:12:45:6f:a6:
8e:44:7c:d0:75:d7:3f:14:be:ba:25:25:df:1e:b8:
8e:0d:8b:04:87:84:c7:e7:d1:1f:e3:ce:58:94:48:
f4:1d:f6:bf:31:2b:4f:ea:e4:b6:c0:05:b6:92:01:
a3:f6:e0:03:57:d2:58:52:68:3f:fc:5c:ec:34:85:
e2:b0:37:9e:a8:67:ed:a4:42:65:2d:18:32:08:c3:
91:69:85:34:79:e8:e0:37:cf:ba:36:15:56:11:f5:
0c:f5:89:ee:16:81:8e:29:48:2c:a2:a7:78:c9:cb:
c1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:0D:55:D0:19:10:27:99:BC:E1:3D:B3:ED:6E:04:75:EF:C4:DF:D5
X509v3 Authority Key Identifier:
keyid:E3:02:5C:68:9A:52:C8:98:FD:72:79:32:9F:36:B4:06:CC:8F:BC:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wJcaJpSyJj9cnkynza0BsyPvBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2fbbf5-b0b5-4ca5-9327-6c4f2e027911/1/ng1V0BkQJ5m84T2z7W4Ede_E39U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/2fbbf5-b0b5-4ca5-9327-6c4f2e027911/1/4wJcaJpSyJj9cnkynza0BsyPvBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.119.0/24
Signature Algorithm: sha256WithRSAEncryption
71:33:2e:b2:10:a1:b1:4c:69:2c:cd:40:78:72:29:65:bf:5c:
99:0b:dc:c0:51:55:d0:6c:36:f2:8b:51:ea:bd:1b:77:a3:41:
76:97:38:b9:65:ce:f6:0a:5e:a8:20:3c:a9:cb:05:bb:15:c9:
c5:99:47:a2:95:ed:34:e5:ec:45:1e:cb:4b:d9:7f:03:bb:66:
29:dd:b0:34:d1:c4:53:5d:76:95:7b:f9:29:88:c1:01:d0:f4:
0f:02:41:9a:79:dc:96:2b:65:65:12:ca:01:48:5e:19:92:6b:
a4:fe:22:1d:1e:65:e3:ca:ee:19:01:63:4d:b5:26:ce:78:63:
db:54:9e:1c:1d:a7:ff:da:3d:0c:1c:32:96:c1:40:8a:b0:da:
63:36:92:84:c5:3f:47:a9:a9:4f:9d:80:e1:f7:cb:3d:b8:b8:
4e:0f:30:eb:dd:9a:b7:d4:a6:7c:fb:2d:52:7a:ad:8c:fc:fe:
bb:ab:18:4b:98:d8:16:57:c4:52:8f:8d:7c:21:ba:1f:e2:f6:
a1:2d:26:06:e5:48:8c:f4:fc:3d:4d:97:a3:61:dc:8d:61:1a:
10:b1:78:0b:85:34:b1:3b:69:85:1b:0b:b9:1d:cc:74:a6:eb:
d0:d2:8b:d1:f2:ba:69:1e:35:d7:fc:c3:24:69:29:43:5f:08:
7a:89:ed:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org