Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/9WGKITMVYCgu368lGpz7_O7CS1E.roa
File: 9WGKITMVYCgu368lGpz7_O7CS1E.roa (raw, json)
Hash identifier: RPHW43wLRCYh0RQnOg2AXp+TnSdPUkqxu+wKk6xMWqs=
Subject key identifier: F5:61:8A:21:33:15:60:28:2E:DF:AF:25:1A:9C:FB:FC:EE:C2:4B:51
Certificate issuer: /CN=45166fa37c764cdc62a00bca2b2b2c879ff699d9
Certificate serial: 994C
Authority key identifier: 45:16:6F:A3:7C:76:4C:DC:62:A0:0B:CA:2B:2B:2C:87:9F:F6:99:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RRZvo3x2TNxioAvKKyssh5_2mdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/9WGKITMVYCgu368lGpz7_O7CS1E.roa
Signing time: Mon 02 May 2022 08:55:11 +0000
ROA not before: Mon 02 May 2022 08:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58195
IP address blocks: 91.239.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39244 (0x994c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45166fa37c764cdc62a00bca2b2b2c879ff699d9
Validity
Not Before: May 2 08:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5618a21331560282edfaf251a9cfbfceec24b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:38:6f:da:7a:7d:c8:4e:62:2b:c3:ab:bb:92:
2a:fb:44:76:62:16:73:e6:53:0e:fd:9c:12:bb:6a:
ed:82:89:c4:26:2b:38:3e:de:53:81:d3:ba:05:b0:
a4:24:4a:fe:56:3b:39:0b:5a:e9:9f:f1:fd:d8:d8:
da:be:d1:54:ad:e4:0f:bd:d7:8e:85:5a:63:ad:3d:
79:d6:a0:c9:d6:fd:49:1e:11:ad:4b:47:47:c3:93:
e3:ae:d0:6e:23:a2:f3:d0:99:3a:03:98:cc:4f:f9:
0a:cb:3b:54:da:06:5b:f8:e0:13:32:67:89:7d:f3:
f1:c4:49:1c:fd:d8:3e:66:c9:4f:ee:30:31:07:b9:
69:18:55:1b:c0:54:dd:43:81:47:d3:59:ac:15:22:
5f:a9:58:aa:68:bd:35:2d:dd:59:0c:e7:a3:d8:e6:
38:9f:11:a7:25:43:6e:49:64:74:80:67:d3:23:f4:
da:89:1a:17:57:b4:ed:00:69:f2:15:04:cb:7f:53:
ef:5c:89:15:2c:19:ff:ca:14:89:b7:99:e4:50:46:
fc:89:3b:73:83:ef:0a:f2:65:0e:29:39:98:b0:81:
22:55:ed:37:d5:c6:74:98:df:59:71:6f:b8:ec:97:
c6:5b:3a:6e:c7:a6:3d:c8:8c:17:4a:e6:0b:c8:22:
f4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:61:8A:21:33:15:60:28:2E:DF:AF:25:1A:9C:FB:FC:EE:C2:4B:51
X509v3 Authority Key Identifier:
keyid:45:16:6F:A3:7C:76:4C:DC:62:A0:0B:CA:2B:2B:2C:87:9F:F6:99:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RRZvo3x2TNxioAvKKyssh5_2mdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/9WGKITMVYCgu368lGpz7_O7CS1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/08e2cd-f91a-4025-92ef-e0660d023104/1/RRZvo3x2TNxioAvKKyssh5_2mdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.173.0/24
Signature Algorithm: sha256WithRSAEncryption
58:22:9a:1a:97:c3:2b:2b:05:da:c7:c4:33:6f:ca:29:75:51:
c8:ca:ca:38:9d:b9:06:29:40:a1:a5:85:90:d7:fe:e3:00:af:
14:87:82:a1:32:5c:23:69:ff:40:4a:43:48:f3:93:b0:f9:a6:
d7:b1:e9:9f:5e:fb:78:75:a6:6d:73:0b:df:70:9c:30:02:6a:
5e:95:90:67:ca:8e:79:b8:ca:37:f5:2f:82:9b:4c:3d:1a:b2:
53:46:21:39:95:91:08:2a:39:14:2f:77:da:eb:0e:df:ea:75:
58:00:25:46:d5:27:0e:96:b5:2e:69:bc:35:ee:75:dc:0a:7a:
f2:1f:b0:9c:65:e7:b3:95:84:17:ed:ad:89:92:2c:3f:6e:73:
f1:e1:59:bf:00:0b:71:7c:af:ee:93:a6:68:2c:d5:73:f3:be:
2b:6f:8c:75:98:28:37:8e:33:57:0c:e6:f2:62:23:e6:c7:63:
71:71:19:4f:57:c6:07:19:5b:7d:e6:ec:83:9f:90:0a:a5:c0:
68:f5:d1:13:45:44:70:7d:8f:47:61:3f:90:d1:11:4a:ad:82:
d0:31:81:a8:2b:fd:3d:13:15:7f:4c:af:5e:2f:aa:f5:7f:10:
d0:c0:1b:ca:89:71:0f:76:67:af:c3:fc:8f:33:f4:55:f1:72:
e8:bc:2c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:46 2023 by rpki-client on console-ams.rpki-client.org