Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/4UA7mxUH9CTw8uiSz74WBkHV7dI.roa
File: 4UA7mxUH9CTw8uiSz74WBkHV7dI.roa (raw, json)
Hash identifier: IGDwO9Prm3LRtwG3gPyerftE32rVa1qk1ypWJRUo5jA=
Subject key identifier: E1:40:3B:9B:15:07:F4:24:F0:F2:E8:92:CF:BE:16:06:41:D5:ED:D2
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0E2754F0
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/4UA7mxUH9CTw8uiSz74WBkHV7dI.roa
Signing time: Mon 24 Jan 2022 22:45:42 +0000
ROA not before: Mon 24 Jan 2022 22:45:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 92.50.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237458672 (0xe2754f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 24 22:45:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1403b9b1507f424f0f2e892cfbe160641d5edd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:48:b4:e6:5d:0a:ec:2b:f4:35:18:73:48:38:
b4:7a:63:85:c2:c3:a8:dd:d7:f2:17:51:54:54:aa:
78:7a:10:25:49:84:94:d9:9e:19:12:59:cf:77:f8:
98:88:84:b0:e3:1c:7b:c4:91:38:fe:ad:89:38:5a:
c0:20:17:f1:23:33:76:fe:9a:2f:18:1a:cf:6b:26:
c6:86:dc:6f:1d:56:bf:27:ab:4e:3f:f2:b4:eb:91:
62:21:88:07:8c:ba:d4:f1:96:59:ac:a4:44:0a:a2:
ea:ca:4a:6e:fd:60:77:fb:cf:a6:d8:57:4c:e9:2f:
a3:35:ec:22:b7:c1:81:70:8f:88:a7:b3:76:30:d9:
b5:f2:86:5f:b5:4c:ae:0b:54:69:cd:a9:5a:50:86:
a7:9c:17:9a:8e:b7:ff:ba:a1:ae:89:91:33:81:59:
48:e8:66:f7:49:b8:c4:64:37:ec:93:3b:1c:31:ad:
43:c0:c1:12:a6:b5:44:b2:a7:16:a8:c6:dc:e7:3d:
d0:91:ed:2b:68:4a:64:f3:44:ab:89:1d:a1:9b:ee:
8d:d0:f1:fb:82:70:d9:d2:9a:d0:e9:b4:3b:17:a0:
23:38:4f:5f:6f:04:fb:80:29:e7:8b:56:67:7c:0c:
5a:51:55:8d:09:e0:c3:19:c8:a9:5f:35:f1:72:05:
d2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:40:3B:9B:15:07:F4:24:F0:F2:E8:92:CF:BE:16:06:41:D5:ED:D2
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/4UA7mxUH9CTw8uiSz74WBkHV7dI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.50.4.0/22
Signature Algorithm: sha256WithRSAEncryption
95:2d:b5:96:1a:c7:e3:74:f0:a0:af:b7:fd:59:bd:19:7d:4b:
c5:fd:26:b9:11:74:1d:2f:ce:36:7a:01:02:d7:7d:cc:60:30:
63:c7:89:b6:71:8d:49:2f:91:a9:66:b5:e4:87:4f:c9:f7:e6:
a6:1c:ed:2a:eb:9b:f8:f5:3e:f9:a9:d7:c9:ff:af:54:79:44:
87:ea:c2:35:82:cc:1d:02:78:9c:b9:b5:46:36:cd:47:4e:e1:
3d:24:3f:cd:68:e7:f8:06:4d:26:17:52:50:5f:5d:24:88:64:
ae:93:5a:21:4a:05:a4:7a:ce:5a:f8:fb:e1:74:e3:5d:28:88:
aa:ca:88:35:27:80:78:f7:67:8f:9d:0e:a5:d8:74:83:4a:0f:
37:f5:fb:e8:f6:73:d7:91:55:f8:ea:f1:cb:f4:79:8d:dc:50:
96:db:b5:3f:d4:68:78:a3:9c:d5:c6:98:32:e1:31:3e:06:20:
dd:c5:39:7c:db:63:65:57:62:2c:f8:8b:f0:28:b7:09:c0:99:
18:e0:f7:0c:5a:36:d0:50:29:9b:a7:27:ce:7e:87:6b:94:b3:
fc:ab:12:5c:45:4c:d2:a1:1d:59:28:73:d6:07:ef:24:70:6c:
65:43:9a:56:64:a3:99:24:c5:99:58:8b:66:44:5f:7b:3f:6e:
6b:46:19:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:59 2023 by rpki-client on console-fra.rpki-client.org