Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4RqOSEqq6LU96QcJNrpcbcIPDzE.roa
File: 4RqOSEqq6LU96QcJNrpcbcIPDzE.roa (raw, json)
Hash identifier: QyOrOlxNGALVr0qoTde03vJidV3TE4/YZpz0KKdl+kE=
Subject key identifier: E1:1A:8E:48:4A:AA:E8:B5:3D:E9:07:09:36:BA:5C:6D:C2:0F:0F:31
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 99214E
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4RqOSEqq6LU96QcJNrpcbcIPDzE.roa
Signing time: Thu 24 Mar 2022 07:16:57 +0000
ROA not before: Thu 24 Mar 2022 07:16:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 91.231.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10035534 (0x99214e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Mar 24 07:16:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e11a8e484aaae8b53de9070936ba5c6dc20f0f31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b7:c7:ef:53:8f:ba:51:d0:b0:93:84:af:22:
8c:d0:09:5c:ee:48:0b:0a:7a:45:7a:aa:bb:3b:a5:
1c:e5:1f:ea:ea:bc:3b:f7:f3:d1:6d:67:6b:a2:ae:
5c:a6:38:82:da:f3:96:67:57:e1:2f:07:05:c3:b5:
fe:8a:9c:2f:f0:d5:8d:3c:5c:18:20:0a:4c:5c:be:
30:7b:e8:fd:8c:d3:65:7c:84:26:4a:e4:81:35:5f:
24:77:fb:c0:6e:29:54:fb:1e:bb:ad:99:2e:55:d5:
01:3c:40:e9:0f:38:cb:59:57:88:8a:c0:61:fd:09:
67:46:8f:6c:bf:b4:66:84:80:75:8b:a8:c8:b9:54:
f7:f1:e8:3b:d9:3e:16:ef:b1:28:83:de:73:b5:e1:
c5:7d:5e:6f:a3:1b:66:de:00:f3:ad:39:8a:53:cb:
a8:26:9f:4d:79:53:6e:fd:db:6d:de:bb:12:d1:a9:
d2:28:b0:e7:66:ec:de:c8:25:4b:a1:a8:4d:81:52:
55:01:08:be:8a:98:b5:81:3e:16:e1:45:5e:fb:9c:
5b:e7:ba:30:df:6c:5d:b7:44:1c:7d:97:8f:f2:a1:
1e:ce:d0:c5:20:d4:30:36:cb:f0:e2:d9:ee:0e:12:
5c:df:c0:86:7d:00:c8:b2:66:f7:70:94:59:eb:7b:
2d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:1A:8E:48:4A:AA:E8:B5:3D:E9:07:09:36:BA:5C:6D:C2:0F:0F:31
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4RqOSEqq6LU96QcJNrpcbcIPDzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:b4:ff:ec:68:b7:72:3b:b3:5f:67:84:75:0a:30:21:2f:b2:
74:e9:d4:c8:11:73:db:2e:e2:b3:9d:4c:f3:fc:42:11:b9:e0:
4c:c3:3b:b4:7e:50:ac:ce:c8:1d:ab:98:fc:15:fd:c7:b2:07:
bf:40:df:10:d4:79:5b:a8:84:8d:56:2d:a5:65:f3:3b:db:3c:
bc:f4:52:f7:42:e5:cf:14:c2:5f:de:83:20:8a:12:ba:d5:5e:
d8:b1:ac:0c:4c:f6:ba:88:30:89:1b:cf:07:3a:e7:a8:23:71:
e5:87:46:37:f4:e6:34:e2:1e:b9:15:7d:ad:0b:2e:b9:bc:f2:
69:a1:db:c7:32:dd:0c:5b:01:bc:24:2e:e7:82:83:66:7d:5f:
89:6a:41:64:8e:98:58:c9:8d:dc:71:56:c6:59:8b:a4:6b:b8:
01:23:d4:2b:21:f6:d3:f6:13:55:51:f6:81:1e:fa:ad:42:bb:
44:7f:6d:67:3d:68:c0:ab:95:c8:1e:f6:3b:9d:68:bc:15:66:
26:ed:a1:bf:c2:c5:d1:5f:be:4d:7c:ab:0f:e1:54:62:e8:f2:
9e:07:94:01:48:b9:d6:76:b7:55:4c:df:82:2e:5f:4e:f8:79:
55:33:03:ab:ed:fa:97:a8:4e:7d:0b:62:a3:28:e6:e2:a3:a6:
d4:9a:4d:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-ams.rpki-client.org