Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/235e61-42e4-4225-8fa6-0cadd847448b/1/sTJBYTRaKUT8JSLVZIZILX2V8hI.roa
File: sTJBYTRaKUT8JSLVZIZILX2V8hI.roa (raw, json)
Hash identifier: Q+k0MnI4R3y8B/PsR0invRDn3TcQNUm3rYj25QrkKIY=
Subject key identifier: B1:32:41:61:34:5A:29:44:FC:25:22:D5:64:86:48:2D:7D:95:F2:12
Certificate issuer: /CN=e68ce86d409e824376560fe3b1a168f2ba0082e3
Certificate serial: 01831CB02D3FCC134AB8EB0BE909A5FD12FF
Authority key identifier: E6:8C:E8:6D:40:9E:82:43:76:56:0F:E3:B1:A1:68:F2:BA:00:82:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ozobUCegkN2Vg_jsaFo8roAguM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/235e61-42e4-4225-8fa6-0cadd847448b/1/sTJBYTRaKUT8JSLVZIZILX2V8hI.roa
Signing time: Thu 08 Sep 2022 10:40:51 +0000
ROA not before: Thu 08 Sep 2022 10:40:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47961
IP address blocks: 91.207.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:b0:2d:3f:cc:13:4a:b8:eb:0b:e9:09:a5:fd:12:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e68ce86d409e824376560fe3b1a168f2ba0082e3
Validity
Not Before: Sep 8 10:40:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1324161345a2944fc2522d56486482d7d95f212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2f:9b:36:50:b6:7f:72:51:69:ed:d4:87:87:
14:7c:35:e6:cf:7f:d1:08:70:64:4f:56:03:50:ae:
e7:e5:0a:8e:77:06:63:0b:7c:b1:67:b5:5d:9d:9d:
ee:bc:49:71:e0:e4:c9:77:d9:d5:ae:5e:df:72:45:
f5:13:7b:2a:af:9d:04:f3:5f:f5:67:4e:79:0d:b3:
90:85:15:2b:a1:9e:53:92:57:c0:9a:8d:ca:11:32:
39:2c:71:61:1b:3e:f8:35:57:a4:ac:d2:ac:46:50:
c8:ce:dd:f3:29:20:09:ae:65:bf:df:ef:ab:b1:b1:
85:62:1a:a4:57:09:43:a7:01:4b:fa:6b:f8:02:de:
94:fa:5e:f8:20:b7:80:56:ef:0d:84:69:b9:01:04:
98:c9:d9:c4:47:a9:81:13:52:6f:80:8d:a4:38:1d:
af:43:0d:c9:3d:f0:28:f2:0b:42:7e:53:11:b2:9a:
af:66:42:b4:49:b2:86:08:3a:97:b9:86:97:96:5e:
73:93:05:2b:e2:9f:ee:49:d1:4b:8a:3b:ad:e4:9a:
47:d8:b8:a8:39:94:47:fe:1a:53:f3:61:b8:44:04:
da:28:b8:af:e8:33:07:61:03:b2:81:07:62:de:57:
52:8b:74:17:8f:32:66:3b:a8:50:45:b0:41:b0:f2:
65:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:32:41:61:34:5A:29:44:FC:25:22:D5:64:86:48:2D:7D:95:F2:12
X509v3 Authority Key Identifier:
keyid:E6:8C:E8:6D:40:9E:82:43:76:56:0F:E3:B1:A1:68:F2:BA:00:82:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ozobUCegkN2Vg_jsaFo8roAguM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/235e61-42e4-4225-8fa6-0cadd847448b/1/sTJBYTRaKUT8JSLVZIZILX2V8hI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/235e61-42e4-4225-8fa6-0cadd847448b/1/5ozobUCegkN2Vg_jsaFo8roAguM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.35.0/24
Signature Algorithm: sha256WithRSAEncryption
d8:f2:1a:c5:4c:50:c5:fc:df:0a:92:06:da:67:28:50:7b:48:
5e:c5:05:eb:1e:00:d7:c8:08:8b:eb:8e:e6:9b:53:98:03:97:
76:be:2c:f5:e3:03:21:3f:87:9d:1d:7a:a0:f5:cb:4a:5c:67:
ea:85:a2:8c:13:24:ff:c7:a3:dc:d1:27:3d:48:3e:4f:9a:53:
a9:ba:ff:a7:7f:66:1d:17:f7:cd:25:1d:e7:3d:38:6a:03:58:
97:0e:84:07:11:5f:a6:c0:a7:4b:0f:28:20:75:e0:cc:8d:19:
4d:c7:d9:db:2f:a6:21:9b:7e:b9:7d:02:47:80:fa:0c:1a:da:
5d:e2:8a:f5:78:66:1f:1f:06:e2:29:0e:18:12:db:fd:ba:ae:
79:7b:be:df:13:a0:c6:db:df:cd:fa:c7:7b:ca:4e:39:78:22:
d8:50:82:ef:5a:02:ed:81:27:d9:c0:22:59:32:f1:a6:30:64:
1e:0b:9c:c6:39:60:39:56:4f:0b:1d:88:f9:22:e5:dc:bd:8e:
05:e2:05:7d:63:8c:f7:45:41:72:43:23:41:64:f6:35:20:d9:
4d:ba:1a:16:28:10:f0:30:ec:71:42:8a:ef:d5:7a:f9:59:f6:
b9:db:f2:41:9b:c2:04:1f:58:1e:5d:34:76:93:6f:1c:3b:dc:
95:ad:63:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:48 2023 by rpki-client on console-fra.rpki-client.org