Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/56be8a-c8be-48f9-a67c-f5cd0d7116eb/1/vsWrZeg9tkXxTDZF7FQJuJyce0w.roa
File: vsWrZeg9tkXxTDZF7FQJuJyce0w.roa (raw, json)
Hash identifier: 2y5XMAJ6u1oElyo9d80dhsoC78kSJj5fXeq5z2GsM4E=
Subject key identifier: BE:C5:AB:65:E8:3D:B6:45:F1:4C:36:45:EC:54:09:B8:9C:9C:7B:4C
Certificate issuer: /CN=25c674ab1806dd6afe213be38e92a35fbc64ce34
Certificate serial: 1E15
Authority key identifier: 25:C6:74:AB:18:06:DD:6A:FE:21:3B:E3:8E:92:A3:5F:BC:64:CE:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JcZ0qxgG3Wr-ITvjjpKjX7xkzjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/56be8a-c8be-48f9-a67c-f5cd0d7116eb/1/vsWrZeg9tkXxTDZF7FQJuJyce0w.roa
Signing time: Thu 12 May 2022 11:33:34 +0000
ROA not before: Thu 12 May 2022 11:33:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58023
IP address blocks: 91.237.248.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7701 (0x1e15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c674ab1806dd6afe213be38e92a35fbc64ce34
Validity
Not Before: May 12 11:33:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bec5ab65e83db645f14c3645ec5409b89c9c7b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d0:a8:9b:93:0b:7a:3a:e8:81:f7:35:f9:29:
62:dc:12:ee:c4:4a:ac:c4:39:09:a5:0e:d8:96:26:
5d:dd:0b:12:d4:5e:93:04:fe:c7:f5:52:9d:a4:ba:
c8:dd:35:18:17:10:e7:64:ee:6d:15:b7:b5:4c:0a:
59:7a:dd:b1:ae:c2:e0:86:aa:56:23:f2:a2:a7:9c:
d7:e4:a9:f6:85:6f:b4:fd:67:6c:d7:2a:3b:00:42:
5a:7e:5d:d8:cf:50:62:f5:39:ec:28:cc:50:87:2a:
b5:61:a3:19:12:b4:4f:bb:19:5c:b3:ee:27:db:c7:
48:32:4a:73:8a:e7:04:55:1d:ce:47:33:34:81:de:
92:60:83:f4:a1:90:01:96:8a:d8:08:a7:6e:3f:2f:
ae:77:f9:3c:31:38:e2:85:7f:81:a1:d7:a8:88:a2:
22:07:c6:4a:a6:9b:6a:12:39:a2:1c:ff:83:fd:7b:
a1:fa:87:39:a6:c1:59:db:11:5a:c6:0e:c6:7b:83:
0c:43:e5:2e:f6:64:d1:6f:76:25:df:79:ee:c7:e8:
cf:a8:58:9a:32:64:c9:42:8e:fd:b0:f0:38:5c:b7:
25:87:a9:d6:f5:5b:d4:bc:ec:00:14:ff:cf:04:bf:
67:be:e8:59:8f:3f:12:48:d8:81:aa:20:4f:c7:32:
e8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C5:AB:65:E8:3D:B6:45:F1:4C:36:45:EC:54:09:B8:9C:9C:7B:4C
X509v3 Authority Key Identifier:
keyid:25:C6:74:AB:18:06:DD:6A:FE:21:3B:E3:8E:92:A3:5F:BC:64:CE:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JcZ0qxgG3Wr-ITvjjpKjX7xkzjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/56be8a-c8be-48f9-a67c-f5cd0d7116eb/1/vsWrZeg9tkXxTDZF7FQJuJyce0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/56be8a-c8be-48f9-a67c-f5cd0d7116eb/1/JcZ0qxgG3Wr-ITvjjpKjX7xkzjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.248.0/24
Signature Algorithm: sha256WithRSAEncryption
68:13:d1:e1:13:3a:91:c8:5b:01:d4:84:42:c8:34:c1:23:4a:
44:30:00:37:28:16:11:46:0e:92:fb:97:69:f6:ef:70:d8:ab:
51:d2:7e:f8:72:0e:da:d8:53:64:a7:9e:ef:bd:0d:b9:9e:2a:
69:02:71:b9:33:5e:e8:7f:6a:82:35:fd:f9:0c:ca:30:5d:7c:
16:f6:22:a4:89:5c:1c:c2:90:8b:c0:67:06:e5:d0:85:4f:25:
56:20:9a:e5:10:95:9b:82:ca:f9:ab:df:07:4d:40:29:bd:86:
cb:ad:e6:dd:f8:be:31:22:15:52:33:c6:cf:2a:55:48:c8:b0:
37:3d:32:e4:b8:c4:ce:a2:9f:44:80:ff:fa:11:50:95:f7:24:
36:f0:bc:d6:3f:52:61:b0:8e:e2:01:94:c0:18:96:51:71:5c:
a4:d4:76:a0:9b:32:8a:fc:a6:ed:b1:12:c7:66:ae:7d:ad:c2:
e1:03:87:05:d6:d7:84:97:d9:fc:42:df:6e:04:b1:0b:2f:e4:
8c:db:b5:70:4e:36:c9:f4:ab:7d:7e:5e:d8:0b:68:09:0b:55:
20:73:d1:67:52:ba:a7:91:b4:00:ff:02:ef:d3:4a:aa:3e:46:
8e:22:10:0e:c5:1c:4d:07:80:8e:29:61:7a:15:90:51:0d:c6:
28:25:cc:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:02 2023 by rpki-client on console-ams.rpki-client.org