Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/IEFrlws85sBjrDP2A0Zdf52BaSY.roa
File: IEFrlws85sBjrDP2A0Zdf52BaSY.roa (raw, json)
Hash identifier: jDkOSdAFI/r8+7qrOLokuG8J/SC3NWlndu8tMGETRFs=
Subject key identifier: 20:41:6B:97:0B:3C:E6:C0:63:AC:33:F6:03:46:5D:7F:9D:81:69:26
Certificate issuer: /CN=50980fb6ade858f2652e736993126c85759f06d9
Certificate serial: 057C02AD
Authority key identifier: 50:98:0F:B6:AD:E8:58:F2:65:2E:73:69:93:12:6C:85:75:9F:06:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJgPtq3oWPJlLnNpkxJshXWfBtk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/IEFrlws85sBjrDP2A0Zdf52BaSY.roa
Signing time: Sat 01 Jan 2022 12:05:40 +0000
ROA not before: Sat 01 Jan 2022 12:05:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 91.204.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92013229 (0x57c02ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50980fb6ade858f2652e736993126c85759f06d9
Validity
Not Before: Jan 1 12:05:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20416b970b3ce6c063ac33f603465d7f9d816926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:04:54:5b:e8:6e:6b:49:37:72:64:cd:2c:cd:
fc:51:d5:bf:a7:3d:d9:5a:e7:10:07:41:73:32:8c:
87:70:c2:8f:77:5f:f0:9f:d9:04:04:8a:34:a3:5a:
97:a6:54:9b:e1:cb:56:b3:1c:df:62:3c:96:0a:02:
d2:03:a8:c4:47:25:81:e2:f8:16:04:60:c6:bf:86:
3e:ab:2a:3a:f1:c9:76:f6:12:17:02:fd:2d:d4:e8:
8a:cb:f3:4d:b0:41:9f:3a:c3:7d:4c:65:5c:28:d4:
3f:c6:90:7d:0e:83:61:69:6f:38:0b:2f:28:4e:65:
93:b8:c8:db:98:7a:25:17:a5:fe:c4:9b:61:ee:48:
26:cd:64:1b:0a:56:94:b8:71:4c:6c:1b:e5:ad:df:
77:e0:c9:58:94:88:51:8a:a6:94:f9:7b:0e:07:b2:
a6:6e:ad:a8:0c:75:66:72:40:85:c7:3d:bd:cb:c4:
18:ff:91:00:14:94:3e:ec:e1:55:14:5e:1b:71:57:
8a:aa:f0:5e:3b:fd:69:eb:64:ed:ff:4d:a7:fc:16:
62:75:3d:cd:a3:05:68:e7:69:4b:a2:21:55:6c:37:
a1:9f:a6:68:04:e3:ce:db:dd:ab:37:ee:d7:51:26:
9a:80:92:c3:36:56:21:d9:3b:56:c1:9a:00:51:b6:
d5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:41:6B:97:0B:3C:E6:C0:63:AC:33:F6:03:46:5D:7F:9D:81:69:26
X509v3 Authority Key Identifier:
keyid:50:98:0F:B6:AD:E8:58:F2:65:2E:73:69:93:12:6C:85:75:9F:06:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJgPtq3oWPJlLnNpkxJshXWfBtk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/IEFrlws85sBjrDP2A0Zdf52BaSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/3c7af6-f466-4d87-b9f1-cca79a69820a/1/UJgPtq3oWPJlLnNpkxJshXWfBtk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.181.0/24
Signature Algorithm: sha256WithRSAEncryption
31:95:be:a2:2c:8a:2b:b7:f3:fc:f1:f8:f8:48:41:0e:85:d7:
44:c1:03:53:cc:a7:17:2b:3e:e3:e5:77:15:6f:f4:1b:bb:d9:
fe:c4:94:f9:e4:d2:42:8e:39:b5:49:5f:64:7d:45:02:a2:d6:
d6:27:1c:bb:f8:9a:1f:5d:6c:c3:80:a4:ba:db:79:4b:c3:7e:
db:fc:b7:22:db:4a:c5:0a:d1:93:b8:67:b2:53:97:86:2e:2f:
cd:23:55:72:fc:02:d4:b3:2f:d1:3c:12:bc:27:0e:b9:10:74:
e8:74:4b:02:76:d8:d3:3e:c4:c4:cf:4d:e3:b4:35:73:5b:2f:
3f:cc:1e:30:5e:2a:b7:25:c4:e6:83:47:93:5e:cc:fd:29:31:
7f:29:ba:0e:e9:0a:ed:a0:b1:3a:e0:99:db:b6:0a:b7:af:11:
03:d2:fd:78:32:98:e4:85:db:fd:bb:96:fd:7f:74:6b:c0:bd:
55:ae:4e:de:a1:40:c2:28:ea:8f:d5:e6:00:e9:b1:e0:2e:8e:
d3:56:fd:44:54:3f:e8:77:6b:e4:be:e3:2d:d2:5b:0e:5d:e0:
72:c0:79:a9:7a:c6:24:7d:4b:b1:79:d9:b4:f1:fa:11:40:6f:
14:73:77:d4:39:3d:03:33:0f:59:99:3c:48:88:bb:58:2e:91:
5a:67:75:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:33 2023 by rpki-client on console-ams.rpki-client.org