Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/a47574-57c9-4eba-a532-5ba6e5b07d9d/1/IVRyeaxf4U09vTqz9XdJHfWQHP0.roa
File: IVRyeaxf4U09vTqz9XdJHfWQHP0.roa (raw, json)
Hash identifier: R5qTLHlRQtAroQ7k4U36MhKCPkU4zRBNoqOlpBwnmOY=
Subject key identifier: 21:54:72:79:AC:5F:E1:4D:3D:BD:3A:B3:F5:77:49:1D:F5:90:1C:FD
Certificate issuer: /CN=befea9e231f7ef6f15ba93e25649ee254cd5e8ea
Certificate serial: 036F349A
Authority key identifier: BE:FE:A9:E2:31:F7:EF:6F:15:BA:93:E2:56:49:EE:25:4C:D5:E8:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vv6p4jH3728VupPiVknuJUzV6Oo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/a47574-57c9-4eba-a532-5ba6e5b07d9d/1/IVRyeaxf4U09vTqz9XdJHfWQHP0.roa
Signing time: Sat 01 Jan 2022 08:06:03 +0000
ROA not before: Sat 01 Jan 2022 08:06:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39413
IP address blocks: 91.232.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57619610 (0x36f349a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=befea9e231f7ef6f15ba93e25649ee254cd5e8ea
Validity
Not Before: Jan 1 08:06:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21547279ac5fe14d3dbd3ab3f577491df5901cfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e7:7f:26:e1:a9:a2:c9:3c:f4:a0:99:f5:0d:
3e:e0:62:84:76:03:9b:3f:04:71:f1:54:ba:f6:4f:
b8:87:6a:77:fc:f3:72:4b:26:52:01:75:6a:37:55:
40:8d:d3:6a:ce:f6:f1:13:0c:27:d4:c6:30:ae:19:
63:0f:58:8b:8f:5a:62:c1:27:dc:41:01:4a:04:20:
64:63:21:5a:1f:27:38:5a:b2:49:f1:90:e6:06:39:
dd:1f:47:94:13:37:58:50:b6:19:97:94:6e:ef:8e:
25:7a:2e:2d:83:59:4f:fa:75:60:96:e8:33:10:47:
fa:cc:54:23:30:98:98:20:ff:27:d9:34:b8:06:ff:
c5:32:e7:99:15:44:f8:b5:9b:39:8c:8c:34:36:9d:
b7:05:09:ff:33:52:ee:3e:9b:59:9c:52:88:31:a3:
4b:d8:19:e1:ee:4e:c6:34:4c:e6:f0:aa:ca:1b:94:
c5:c2:ed:66:b0:ea:e1:7e:80:29:ac:f9:39:23:6f:
3d:7a:92:d2:ad:90:11:22:5c:0b:bf:6e:f6:cb:ae:
88:34:14:46:d1:e7:16:ac:05:bb:4e:87:3d:35:97:
3d:da:d8:8e:0d:75:7a:db:93:85:3d:74:8b:b1:c4:
c9:98:31:7e:6b:97:69:f1:57:89:49:ca:7d:dc:8d:
17:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:54:72:79:AC:5F:E1:4D:3D:BD:3A:B3:F5:77:49:1D:F5:90:1C:FD
X509v3 Authority Key Identifier:
keyid:BE:FE:A9:E2:31:F7:EF:6F:15:BA:93:E2:56:49:EE:25:4C:D5:E8:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vv6p4jH3728VupPiVknuJUzV6Oo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a47574-57c9-4eba-a532-5ba6e5b07d9d/1/IVRyeaxf4U09vTqz9XdJHfWQHP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a47574-57c9-4eba-a532-5ba6e5b07d9d/1/vv6p4jH3728VupPiVknuJUzV6Oo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.157.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:c4:9e:65:60:78:7b:b7:6d:66:12:3d:4d:91:c5:58:f4:a6:
66:81:36:4e:58:a2:ed:c1:41:f7:68:48:ee:eb:21:a8:20:aa:
78:98:45:c2:58:a9:b9:b9:53:00:49:6b:f3:34:11:b2:c1:b2:
fd:7c:dc:e0:b2:eb:77:51:9a:d7:cb:b5:61:8a:61:a4:40:0d:
3f:a8:41:7b:ed:3d:13:2d:9f:95:98:41:38:51:49:9c:a3:46:
d3:a2:81:ca:03:4c:1a:27:50:55:3f:e5:be:6e:23:41:49:19:
dc:1b:5b:12:c9:4b:ef:04:dd:36:d7:5e:24:1d:21:e0:90:c6:
f9:ac:58:cb:46:e4:76:2b:5b:34:0b:5c:08:b2:fc:99:cf:99:
7e:ca:c6:ab:19:8c:99:d9:e8:67:2c:1b:d1:e7:5a:51:ab:a2:
62:08:10:6a:7c:98:c7:cd:02:14:1c:a9:20:6e:ae:ce:d3:03:
9b:63:4f:3b:53:b1:1e:30:62:e8:b2:ef:ad:e9:57:09:0a:92:
35:6c:d0:95:fa:f2:17:00:22:1e:4c:00:1e:65:8d:48:83:21:
d5:fa:83:6a:03:5c:e2:fe:50:65:38:69:71:59:e9:04:96:98:
0d:0c:c1:ec:f8:8b:52:cf:11:37:5e:ad:7a:ff:ea:01:41:f3:
fd:da:a2:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:31 2023 by rpki-client on console-fra.rpki-client.org