Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/4U6Q8jBv0wIiK0iudUFA4gJGyvg.roa
File: 4U6Q8jBv0wIiK0iudUFA4gJGyvg.roa (raw, json)
Hash identifier: 15iLf3pmmEAsFwyUR+iJ8gGDNWJ3eOOFbYsjqRA1/K4=
Subject key identifier: E1:4E:90:F2:30:6F:D3:02:22:2B:48:AE:75:41:40:E2:02:46:CA:F8
Certificate issuer: /CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Certificate serial: 058E3F09
Authority key identifier: 74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/4U6Q8jBv0wIiK0iudUFA4gJGyvg.roa
Signing time: Sat 01 Jan 2022 08:53:05 +0000
ROA not before: Sat 01 Jan 2022 08:53:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41152
IP address blocks: 91.228.22.0/23 maxlen: 23
193.148.64.0/22 maxlen: 22
91.227.246.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93208329 (0x58e3f09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b4cd3edf521df8ec0a151111272d3fb91b99c3
Validity
Not Before: Jan 1 08:53:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e14e90f2306fd302222b48ae754140e20246caf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e2:a9:d4:a5:1d:86:be:06:ae:63:44:db:c7:
1e:3f:70:a4:a4:f1:15:19:5f:b1:64:e4:d8:d7:2b:
ba:e3:e6:5b:ab:ad:c7:5d:dc:b0:fa:a8:93:36:ad:
a4:76:d2:34:03:8f:b9:b2:9d:ec:90:e3:f0:88:0c:
56:ad:5b:8d:ff:9a:68:02:8c:04:e8:dc:0d:69:6f:
94:31:83:5f:7b:8c:ce:c5:4a:5e:66:22:09:b3:56:
14:0f:66:8d:61:5c:cf:76:95:91:ea:e2:7e:9e:15:
98:f5:fe:ac:b8:3a:c0:bf:ca:bd:06:7e:77:d9:76:
0c:65:db:c5:30:d3:db:c4:62:4c:c5:72:c5:da:e6:
32:2c:07:28:70:78:ca:76:dc:27:33:cf:c3:b0:9c:
9c:82:cb:69:c2:7e:5e:0b:2f:13:a4:df:ff:4d:3d:
07:a3:d1:62:ce:41:cf:78:47:e9:34:07:b6:f8:27:
7f:e7:eb:2d:77:6c:4f:23:f0:77:5c:1c:42:dd:c4:
2f:3a:60:ce:16:17:31:78:a9:25:d3:11:3b:aa:24:
3c:8f:fe:b0:46:e5:9c:65:9f:f5:4c:50:3b:38:12:
b0:a4:ba:33:0d:c7:c2:d0:89:81:8b:14:91:92:9c:
cb:20:34:81:bb:c8:b6:c6:cf:d8:3b:98:66:be:1e:
f4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:4E:90:F2:30:6F:D3:02:22:2B:48:AE:75:41:40:E2:02:46:CA:F8
X509v3 Authority Key Identifier:
keyid:74:B4:CD:3E:DF:52:1D:F8:EC:0A:15:11:11:27:2D:3F:B9:1B:99:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLTNPt9SHfjsChURESctP7kbmcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/4U6Q8jBv0wIiK0iudUFA4gJGyvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/9e47e9-3281-4d17-a6bc-e2a7fb848318/1/dLTNPt9SHfjsChURESctP7kbmcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.246.0/23
91.228.22.0/23
193.148.64.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:54:95:cc:a0:f7:86:7e:4f:82:e2:ec:70:76:1e:53:76:08:
e9:b9:ca:03:a9:24:03:c7:0a:d6:0c:55:71:66:73:c7:a3:38:
92:c9:f2:20:dd:e8:31:51:d8:12:83:a1:a2:3b:35:83:43:95:
3f:0a:85:66:8f:b1:79:b4:7d:17:74:7b:02:18:9b:2c:bb:10:
53:6e:d7:8f:8e:4e:a0:a7:d9:5f:fb:5f:07:9c:fa:28:4e:2c:
42:71:4c:75:b0:90:a1:ce:35:42:ba:7e:e5:41:09:ed:69:11:
18:1e:2d:a8:27:aa:98:54:64:ea:f5:c4:47:b5:f8:9c:46:ea:
48:e8:32:05:2d:d4:c2:8e:12:ad:78:99:66:ff:60:38:b2:a1:
7d:26:2b:a8:69:9f:9c:4f:60:55:af:9b:19:0c:df:64:2d:24:
7b:4d:de:44:43:c0:b6:d8:51:e6:8e:a9:6f:ec:3c:82:ab:12:
6b:17:f9:21:94:af:35:43:7f:30:ac:ad:aa:ce:f3:65:c1:5b:
99:b7:f0:6e:6d:58:45:36:7a:79:2e:d5:51:a0:a1:24:71:81:
a9:de:2b:27:a2:d7:8d:2c:ae:ac:5f:8b:04:d3:83:09:ee:da:
24:ce:c4:09:cc:dd:07:b7:9e:b7:59:fc:16:d2:e5:ad:92:b2:
04:fd:35:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:21 2024 by rpki-client on console-ams.rpki-client.org