Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/Ez2H6k3cDHCiXxCcf5HV2BrrPFs.roa
File: Ez2H6k3cDHCiXxCcf5HV2BrrPFs.roa (raw, json)
Hash identifier: RFQttG/vyl/QzQhaTMJLd1mpi8bfVSTowlXUwe8shXA=
Subject key identifier: 13:3D:87:EA:4D:DC:0C:70:A2:5F:10:9C:7F:91:D5:D8:1A:EB:3C:5B
Certificate issuer: /CN=927105c9d1fb0690554971f464ca21f4a45c106a
Certificate serial: 06CB42
Authority key identifier: 92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/Ez2H6k3cDHCiXxCcf5HV2BrrPFs.roa
Signing time: Wed 04 May 2022 07:20:27 +0000
ROA not before: Wed 04 May 2022 07:20:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49123
IP address blocks: 91.212.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 445250 (0x6cb42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927105c9d1fb0690554971f464ca21f4a45c106a
Validity
Not Before: May 4 07:20:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=133d87ea4ddc0c70a25f109c7f91d5d81aeb3c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9b:74:26:f1:7d:a9:ce:85:fd:fa:24:88:c4:
ef:f7:a3:f4:37:44:72:78:6a:41:09:0e:51:25:53:
92:3f:bd:c3:0d:df:3b:1d:80:f4:15:01:43:7e:5d:
a4:8a:3b:7c:2e:c9:27:94:80:13:34:cc:ff:c9:7d:
f0:93:0e:25:82:1e:86:5a:1c:67:d4:6b:c3:12:58:
b6:9a:f9:d5:df:ac:b2:3a:38:de:19:f2:c0:7b:7a:
1e:da:47:d0:45:41:b1:2e:e5:65:7a:26:35:1b:68:
d0:30:48:8f:7d:bc:7e:25:8d:e7:5c:66:6f:57:f5:
fe:61:65:54:40:3b:47:5f:0a:8f:01:c4:9d:35:3a:
df:95:51:2a:17:ab:65:b7:fb:c1:98:ce:d9:93:7e:
b2:09:70:74:31:06:cd:36:de:f7:bb:ab:4b:15:e2:
f0:1d:54:8c:6a:29:f5:ff:7f:5b:d7:ed:0c:8e:30:
2e:b5:18:73:95:ba:e8:dd:8b:41:e8:e4:11:c9:a6:
ef:e3:96:fa:3b:75:87:24:14:f3:0b:ff:aa:3d:f1:
4e:38:95:34:ee:f6:9b:f9:cb:c2:9a:8a:8c:3e:e3:
31:95:ad:53:e3:60:6b:8e:8d:e5:86:a0:fa:7e:ee:
56:ab:b2:ff:86:c0:f6:14:2a:55:f9:99:6c:8e:b3:
60:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3D:87:EA:4D:DC:0C:70:A2:5F:10:9C:7F:91:D5:D8:1A:EB:3C:5B
X509v3 Authority Key Identifier:
keyid:92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/Ez2H6k3cDHCiXxCcf5HV2BrrPFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.143.0/24
Signature Algorithm: sha256WithRSAEncryption
81:f0:f2:0d:68:d8:d4:83:f6:05:62:d9:31:d0:32:2b:b3:18:
7b:92:fa:ba:e4:a0:ae:a6:93:e3:9e:0b:9e:40:f0:16:24:5c:
79:1f:58:bd:9b:7b:dc:71:fd:54:6f:29:fa:92:7c:bd:ad:55:
b3:db:1e:5f:40:2a:e4:95:7e:c9:1f:f3:e7:4a:28:79:d0:1f:
dc:d3:d5:5f:4a:31:c2:ee:38:68:c1:b7:0f:51:1d:00:97:c3:
90:85:ff:19:fa:87:b1:5a:c3:71:6d:41:68:85:6c:9e:e0:38:
93:d8:91:3f:c2:eb:43:1b:3f:61:ae:cb:d2:0a:ee:20:08:bb:
c4:22:b4:8a:95:19:60:b5:6f:43:b2:9b:21:b9:1e:1e:94:5f:
89:3c:90:9e:8c:30:34:db:01:44:24:43:68:ba:62:0a:0e:34:
b5:7a:77:a3:fb:ca:ac:9c:26:4b:21:a8:d1:cc:28:72:75:ca:
24:0a:ba:39:38:b5:0f:85:13:93:0e:6e:49:bb:03:aa:50:30:
93:98:0c:33:76:0f:e6:d3:c7:8a:da:a3:1d:a9:fc:ad:c4:0f:
70:8e:eb:e1:f5:be:a6:1c:7e:fa:6a:c5:e2:9b:61:76:8e:d9:
f2:39:e1:4f:f0:44:27:bd:f5:3a:21:5c:ad:99:e5:21:c5:ed:
02:e0:0c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:06 2023 by rpki-client on console-fra.rpki-client.org