Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/4acb39-9456-4497-8c65-3e21426c1ef3/1/sBSc5WjlDy79zWIlRoZ2zux32dU.roa
File: sBSc5WjlDy79zWIlRoZ2zux32dU.roa (raw, json)
Hash identifier: qe+6yB4JlqE/M+CZts3Cb9r+yCOVr+xlPcYYUMLLyuk=
Subject key identifier: B0:14:9C:E5:68:E5:0F:2E:FD:CD:62:25:46:86:76:CE:EC:77:D9:D5
Certificate issuer: /CN=29998b0e2dbbda028e4c3fd6a7cb67c78a302e79
Certificate serial: 01836A057EA060C09861EB2F18AC7A1DE386
Authority key identifier: 29:99:8B:0E:2D:BB:DA:02:8E:4C:3F:D6:A7:CB:67:C7:8A:30:2E:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZmLDi272gKOTD_Wp8tnx4owLnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/4acb39-9456-4497-8c65-3e21426c1ef3/1/sBSc5WjlDy79zWIlRoZ2zux32dU.roa
Signing time: Fri 23 Sep 2022 11:04:48 +0000
ROA not before: Fri 23 Sep 2022 11:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 91.242.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:6a:05:7e:a0:60:c0:98:61:eb:2f:18:ac:7a:1d:e3:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29998b0e2dbbda028e4c3fd6a7cb67c78a302e79
Validity
Not Before: Sep 23 11:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0149ce568e50f2efdcd6225468676ceec77d9d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:16:bc:9d:fc:e5:9e:78:d5:40:d2:70:6f:84:
b7:40:ed:c8:a5:a2:d8:0b:c5:eb:a9:f6:ef:ba:46:
6e:2b:02:9c:e0:5e:13:27:ea:44:05:79:89:d6:03:
ee:c2:8e:36:4a:62:ba:28:53:d2:14:f1:40:9d:74:
4d:d2:9a:96:ad:19:43:63:c7:90:65:4d:fe:00:4d:
e8:a9:f0:b9:6b:8d:50:37:68:7e:ed:aa:19:12:99:
8f:34:b3:e7:c8:69:ac:92:fa:2d:bd:6b:f1:95:e2:
d0:87:a4:e6:d6:ca:2e:3f:45:5f:89:ab:ea:cb:ec:
36:ab:9f:aa:cf:8e:d7:fa:10:eb:da:88:bf:0e:16:
a8:6e:03:54:29:f5:ac:75:f7:9a:44:07:34:14:fd:
c1:08:2f:4f:6c:fa:14:e4:f1:b3:e7:7c:56:5a:ea:
de:35:ab:3f:d8:05:97:a9:4c:d7:21:86:fe:70:62:
1c:d1:5a:ce:57:97:78:39:6b:c0:fc:45:44:d0:1b:
86:09:dd:29:3a:36:ed:dd:5f:42:e5:6b:9c:b5:54:
9e:f6:0b:2f:a9:4e:ee:eb:62:cb:c6:00:1a:de:ab:
9c:82:6a:4d:f6:c5:e9:2e:b1:d9:8d:c6:b0:8c:68:
3c:29:41:c3:7a:8a:15:87:13:76:51:cb:a4:2f:27:
83:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:14:9C:E5:68:E5:0F:2E:FD:CD:62:25:46:86:76:CE:EC:77:D9:D5
X509v3 Authority Key Identifier:
keyid:29:99:8B:0E:2D:BB:DA:02:8E:4C:3F:D6:A7:CB:67:C7:8A:30:2E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZmLDi272gKOTD_Wp8tnx4owLnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/4acb39-9456-4497-8c65-3e21426c1ef3/1/sBSc5WjlDy79zWIlRoZ2zux32dU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/4acb39-9456-4497-8c65-3e21426c1ef3/1/KZmLDi272gKOTD_Wp8tnx4owLnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.231.0/24
Signature Algorithm: sha256WithRSAEncryption
39:78:ee:5f:a2:ea:cd:b4:dd:e9:a9:16:46:fe:68:e1:af:ca:
24:6d:21:b0:29:ae:e7:37:9f:ae:b6:95:1a:ea:4b:a9:c2:8d:
df:57:35:39:69:1f:16:cd:d2:da:74:42:ea:53:37:58:61:b9:
63:42:43:3a:59:58:36:5d:c7:2b:35:bb:11:fd:78:84:3e:27:
7e:7c:26:43:6b:c5:36:5a:45:da:1a:14:26:f2:8a:2e:17:42:
ac:e9:74:33:fa:e2:58:8c:9c:46:0f:4a:d3:61:b7:04:77:50:
c0:4d:5a:aa:ca:34:a0:24:2e:ec:e2:b3:db:19:58:c4:b3:31:
91:38:73:d5:48:c5:45:92:fd:9e:4f:ff:1b:46:86:f8:3a:0f:
e6:e9:31:7f:33:71:1e:fd:89:5b:8a:85:ad:87:0f:13:67:c0:
8b:a2:6e:c5:00:dc:22:76:6a:07:59:32:1b:50:f6:34:0f:43:
ae:29:f3:11:ba:91:e0:6f:1c:73:a1:e8:49:fe:3a:dc:c7:20:
3a:9f:c5:e6:b7:3b:6a:cc:f1:10:09:e6:f8:84:d0:2f:cd:83:
21:2f:00:bd:dd:e2:b8:13:a4:b7:c8:2c:2f:84:91:c1:29:46:
cf:97:47:dc:90:c1:7e:0b:a9:72:f2:32:81:bb:6b:a9:8e:e9:
7d:34:5d:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:46 2023 by rpki-client on console-fra.rpki-client.org