Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/09fzDCLHWT9KtGgfk3hFZmB3khY.roa
File: 09fzDCLHWT9KtGgfk3hFZmB3khY.roa (raw, json)
Hash identifier: OOFXTYFtLRWcVQ/vOWfyDmVUl+/h6Byxki0py3QKWkw=
Subject key identifier: D3:D7:F3:0C:22:C7:59:3F:4A:B4:68:1F:93:78:45:66:60:77:92:16
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: E0147E
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/09fzDCLHWT9KtGgfk3hFZmB3khY.roa
Signing time: Tue 26 Apr 2022 07:00:32 +0000
ROA not before: Tue 26 Apr 2022 07:00:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56339
IP address blocks: 91.232.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14685310 (0xe0147e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Apr 26 07:00:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3d7f30c22c7593f4ab4681f9378456660779216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5f:ec:61:26:69:72:a2:16:47:3f:52:86:2d:
6a:c4:33:52:83:25:98:4a:a0:f6:d2:94:f9:7b:2e:
be:58:99:4a:b0:a8:69:ab:07:29:cf:0b:a3:05:b8:
99:c0:52:58:a2:44:2b:15:c8:9f:8a:36:6e:6e:66:
f0:f0:5c:53:72:62:7e:a4:7b:d1:1f:24:30:c6:c9:
3f:04:7b:47:86:97:50:60:8f:a0:08:a6:c1:03:9e:
b9:a5:7f:20:da:6f:ca:07:65:bd:88:ce:75:45:a7:
d7:3d:20:19:ce:4a:1b:fc:ce:7f:f9:76:b9:e7:e9:
c3:88:4c:82:1c:83:07:d1:56:f7:10:e8:ee:40:bd:
d9:88:0d:13:fc:13:b5:eb:b4:1b:b6:8a:3f:e8:03:
3b:a3:e7:1f:bc:1c:7b:d6:1c:91:44:6c:c9:ab:a9:
b0:d3:15:58:d6:6d:ce:47:6a:ab:1f:27:83:13:3f:
ed:a9:37:d8:1a:ba:44:13:a3:4a:21:05:76:57:18:
34:6c:d1:9f:db:5f:db:b3:04:c5:32:63:f7:e1:be:
80:1f:6b:26:3d:77:00:b1:09:b0:9e:5d:9b:ef:08:
bb:4e:03:59:39:74:41:b1:8f:c4:9f:53:9b:c5:c7:
f7:f4:7e:14:29:a3:66:bb:ad:cc:c9:c6:54:79:40:
a7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:D7:F3:0C:22:C7:59:3F:4A:B4:68:1F:93:78:45:66:60:77:92:16
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/09fzDCLHWT9KtGgfk3hFZmB3khY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
39:6c:34:a1:bf:c2:56:6e:4e:57:ca:da:41:98:46:c2:2d:d1:
60:85:06:a9:98:6a:6f:94:dc:93:58:1e:f8:c2:24:80:e2:df:
b2:13:77:f3:45:c2:38:92:d9:83:ae:92:32:90:69:a9:b6:ae:
0b:b6:c6:b8:8c:b8:55:6e:71:f7:0b:51:6b:75:4e:65:ff:8e:
3e:ad:2c:0c:09:71:80:4a:33:6b:76:d0:82:18:e3:1e:e9:52:
f3:2a:a6:a6:ba:bc:6b:3b:df:61:c4:55:30:69:f0:d5:15:a0:
83:b0:8d:8e:d9:98:f1:e9:02:25:21:d8:48:61:01:7f:d4:b4:
10:fa:e3:3c:74:a1:86:85:c2:bb:f1:fb:36:88:e3:42:10:16:
ed:7c:d5:be:97:52:92:db:1b:da:73:76:b3:8b:ba:76:40:e0:
4d:02:5f:e8:78:8c:2b:03:11:31:79:89:37:aa:43:ab:25:82:
41:b0:9b:9e:45:ee:49:88:65:44:4e:df:58:32:97:a9:ed:41:
7c:cd:ec:70:21:f5:89:e6:82:1e:19:8a:b9:d5:8a:23:1f:1d:
57:69:09:08:0e:43:37:a0:d5:2c:7a:87:6f:79:ce:fd:e0:a2:
c9:4b:d4:c3:0d:bb:8e:3d:3e:8e:3c:96:c4:37:0a:e2:7a:8a:
c6:33:2d:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org