Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/ou9GUz-U9_TfGoA3b0nEZ4kw_LU.roa
File: ou9GUz-U9_TfGoA3b0nEZ4kw_LU.roa (raw, json)
Hash identifier: 5xAI4/CkBZBIMB3vIzxPv4Vrs6M8yr8sghFzK23OpO8=
Subject key identifier: A2:EF:46:53:3F:94:F7:F4:DF:1A:80:37:6F:49:C4:67:89:30:FC:B5
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 239563
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/ou9GUz-U9_TfGoA3b0nEZ4kw_LU.roa
Signing time: Tue 01 Feb 2022 18:05:38 +0000
ROA not before: Tue 01 Feb 2022 18:05:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.232.103.0/24 maxlen: 24
91.231.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2332003 (0x239563)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Feb 1 18:05:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2ef46533f94f7f4df1a80376f49c4678930fcb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e8:17:2a:96:38:fa:c0:f7:17:05:e0:89:08:
c1:24:26:94:7b:11:fd:77:ad:1a:fe:e5:fd:62:8d:
ff:08:55:f0:d1:bb:54:63:c5:9e:a3:74:f7:86:a7:
81:26:f9:e3:0f:22:a3:9d:c5:05:e9:88:a7:72:d6:
17:91:cd:c0:9c:6f:8c:4f:94:a7:e2:73:bb:74:ad:
ae:bc:de:6a:b9:e5:5f:a5:1d:dc:75:53:b1:49:af:
cb:83:51:a3:7e:1b:cd:01:2b:49:21:1e:6f:dc:3d:
06:55:65:47:2c:d1:0c:4f:dc:4b:8a:09:49:78:a0:
97:76:c9:3f:2e:74:1b:fb:c4:8f:06:d7:77:e7:c4:
4c:7e:2d:7b:9f:a8:a3:5c:08:a1:7f:3e:fc:60:26:
c3:ac:9b:a4:d3:74:cc:6c:8d:05:14:99:c4:30:e4:
3c:5d:0e:ee:84:8b:95:f2:7d:15:36:0c:eb:0d:55:
25:7b:a0:c4:10:34:63:de:f4:30:e6:83:cd:15:a8:
42:18:19:c1:26:3e:cb:cd:67:21:89:cc:fb:21:5f:
ea:cf:3f:5c:24:5f:ec:9c:e1:a3:a6:e9:d3:c2:e5:
20:dd:92:4a:57:d8:43:09:d6:12:ad:f2:d5:f2:52:
1d:36:c8:ea:24:6a:65:0a:be:6d:80:da:df:b0:e1:
62:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:EF:46:53:3F:94:F7:F4:DF:1A:80:37:6F:49:C4:67:89:30:FC:B5
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/ou9GUz-U9_TfGoA3b0nEZ4kw_LU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
89:a5:a7:d5:6d:92:a5:61:40:91:0f:55:0e:56:01:b7:a0:b0:
22:7e:72:1a:bd:9d:79:92:21:5a:da:51:6e:0c:7f:70:5e:95:
a4:66:db:3d:cf:9a:7e:d9:84:0b:38:42:49:c9:e9:cf:60:63:
3e:cc:34:63:0f:ec:31:27:61:71:e6:68:95:22:3e:a9:96:a8:
f4:64:fd:47:aa:d7:05:3d:f2:bb:af:f8:a5:e0:f3:d3:d9:9b:
5c:45:ec:07:db:6d:7a:e2:cc:1d:79:49:98:78:d4:bb:b4:fb:
e7:3e:64:97:ef:af:62:49:41:94:a9:72:ad:7c:7f:94:85:4b:
7c:b4:32:62:f4:38:1a:8d:cb:9f:2a:20:59:1c:ba:8c:0f:03:
a8:9b:f5:9b:9b:64:13:4c:af:29:43:1f:e5:2e:4f:93:9b:6c:
bc:40:8e:5b:8b:72:f3:c4:61:a4:61:61:55:7a:56:d7:99:90:
64:a2:73:c3:cf:6f:87:ea:ab:00:a8:db:af:61:1f:61:c8:58:
c9:a3:45:69:d3:7e:93:da:9d:14:69:80:a0:4d:a0:75:93:db:
85:ff:b3:08:83:b1:7d:28:04:7b:69:de:33:81:4e:52:21:3e:
40:cd:0b:f8:1f:76:c2:70:16:85:13:21:8d:48:63:00:1f:67:
63:dc:a3:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org