Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d35d28-8ac1-459a-9129-3f7039345289/1/r0rWfBgMLtpfuJfBjSk_z3c5_n4.roa
File: r0rWfBgMLtpfuJfBjSk_z3c5_n4.roa (raw, json)
Hash identifier: wCyEUXjCvzjLcDebkKN9oOwRi2U8bvYcwMsZj9xsrjo=
Subject key identifier: AF:4A:D6:7C:18:0C:2E:DA:5F:B8:97:C1:8D:29:3F:CF:77:39:FE:7E
Certificate issuer: /CN=496e79694637ee05579e1804c14d851e382a14c8
Certificate serial: 0182F8E351D1929C5C3B0570BB3AF19F3925
Authority key identifier: 49:6E:79:69:46:37:EE:05:57:9E:18:04:C1:4D:85:1E:38:2A:14:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SW55aUY37gVXnhgEwU2FHjgqFMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d35d28-8ac1-459a-9129-3f7039345289/1/r0rWfBgMLtpfuJfBjSk_z3c5_n4.roa
Signing time: Thu 01 Sep 2022 11:50:23 +0000
ROA not before: Thu 01 Sep 2022 11:50:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35297
IP address blocks: 91.236.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:e3:51:d1:92:9c:5c:3b:05:70:bb:3a:f1:9f:39:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=496e79694637ee05579e1804c14d851e382a14c8
Validity
Not Before: Sep 1 11:50:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af4ad67c180c2eda5fb897c18d293fcf7739fe7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:5b:7c:04:4f:aa:07:3f:5b:91:67:f2:77:0e:
8a:c8:8d:0a:d8:cb:e6:36:ae:07:ec:29:43:41:dc:
f4:16:3a:86:79:3e:98:0f:bc:78:71:5b:b8:b8:7b:
98:57:b2:53:76:a9:61:33:6c:d2:14:f2:72:38:4c:
bd:e5:2c:cf:2b:90:9f:50:14:0f:80:a0:f2:e6:85:
fb:ab:fc:32:27:16:ef:29:41:83:7a:2b:59:d6:17:
42:75:cb:c7:10:d8:6a:99:c6:d7:77:16:7d:51:39:
66:c2:43:80:89:31:eb:1f:43:2e:98:26:2d:53:1d:
8f:28:55:fd:6d:89:6d:11:8a:83:ef:84:3d:0c:de:
21:33:1b:5a:84:46:6a:05:38:1f:26:0a:e1:21:67:
b1:b1:94:c8:be:96:00:35:2b:67:16:f5:9a:d6:6e:
11:9f:fa:e9:29:4e:95:00:01:9d:2f:c1:bf:92:97:
ce:0a:17:8c:48:49:16:04:fc:30:e9:15:38:44:6b:
04:b2:17:c7:e4:d4:ec:96:76:32:84:46:e6:28:6e:
6b:52:39:3b:d5:8a:a2:87:e0:2d:8b:46:76:5d:2a:
22:fa:4a:92:45:2d:4c:dc:5c:22:e7:db:59:2e:f0:
44:49:fa:9e:d7:d7:15:30:ab:c2:43:61:9b:e4:ee:
98:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4A:D6:7C:18:0C:2E:DA:5F:B8:97:C1:8D:29:3F:CF:77:39:FE:7E
X509v3 Authority Key Identifier:
keyid:49:6E:79:69:46:37:EE:05:57:9E:18:04:C1:4D:85:1E:38:2A:14:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SW55aUY37gVXnhgEwU2FHjgqFMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d35d28-8ac1-459a-9129-3f7039345289/1/r0rWfBgMLtpfuJfBjSk_z3c5_n4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d35d28-8ac1-459a-9129-3f7039345289/1/SW55aUY37gVXnhgEwU2FHjgqFMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.155.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:51:4e:58:84:47:5d:43:8e:18:74:56:8d:c6:c0:be:c3:10:
44:e9:71:a3:1e:0b:df:ae:fa:db:a8:1f:96:c7:40:98:f0:cc:
52:63:25:36:df:c4:3f:47:1a:b4:82:ca:ca:ab:95:2d:ea:ec:
b7:56:d7:f2:1e:29:9a:30:09:b4:f7:db:c8:00:11:aa:71:e4:
80:71:12:3a:45:37:00:f8:09:6d:a2:76:4f:c7:2d:b5:c0:6d:
b6:5a:79:54:59:bd:46:91:2e:09:08:ec:17:43:9b:9d:29:15:
3d:a7:70:7b:09:79:3d:6a:30:09:d5:3d:fc:88:63:03:e3:8d:
6e:44:30:f0:2d:b1:5b:e7:e3:4b:d0:34:0a:3b:02:2f:b7:6c:
b9:50:59:6c:5f:61:b7:db:ff:77:fe:61:32:72:cd:77:46:14:
8e:f0:49:e2:3a:38:31:78:e6:17:43:07:29:ce:c6:3a:d4:7e:
ca:4d:98:46:84:eb:e0:cd:1d:0c:fe:97:cb:52:6c:c1:e6:d1:
90:5c:e3:1e:20:e9:23:c1:6e:b5:41:13:d4:51:f5:ce:9d:f7:
f8:af:ed:fe:b4:1e:70:be:97:26:15:a0:2e:c3:dd:92:6c:1a:
5c:a7:07:70:3f:92:63:8a:e1:37:b6:80:db:64:21:04:62:da:
6b:c5:ae:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:08 2023 by rpki-client on console-ams.rpki-client.org