Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/exW3o4m1HuSY0fraGqopAN9JP5Q.roa
File: exW3o4m1HuSY0fraGqopAN9JP5Q.roa (raw, json)
Hash identifier: 1oRP94fWTLCmxJofekOnHx8xNn4byll434qgvYUqQ1E=
Subject key identifier: 7B:15:B7:A3:89:B5:1E:E4:98:D1:FA:DA:1A:AA:29:00:DF:49:3F:94
Certificate issuer: /CN=c77111ec5549115cb347654d8fe5b2709d27f7df
Certificate serial: 015C8A18
Authority key identifier: C7:71:11:EC:55:49:11:5C:B3:47:65:4D:8F:E5:B2:70:9D:27:F7:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3ER7FVJEVyzR2VNj-WycJ0n998.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/exW3o4m1HuSY0fraGqopAN9JP5Q.roa
Signing time: Sat 01 Jan 2022 11:59:17 +0000
ROA not before: Sat 01 Jan 2022 11:59:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41505
IP address blocks: 91.208.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22841880 (0x15c8a18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c77111ec5549115cb347654d8fe5b2709d27f7df
Validity
Not Before: Jan 1 11:59:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b15b7a389b51ee498d1fada1aaa2900df493f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c9:62:33:63:7a:f1:71:41:b0:4b:9c:8f:0a:
55:de:3d:6b:5e:7c:6a:2f:64:20:87:21:75:a0:7e:
2f:80:76:8f:94:37:9e:3d:06:e6:4d:22:1f:e9:d1:
3c:eb:a8:87:74:69:4b:48:0c:e2:6f:3b:2c:0c:38:
95:8c:a0:a2:e5:45:07:35:8c:b7:a3:c4:d8:f2:e5:
5c:25:58:cc:e3:5d:52:a8:82:90:6d:7c:6a:3b:f7:
82:4f:2a:41:ec:21:46:27:36:cf:34:ff:56:5a:af:
de:26:be:f0:c7:c2:34:1b:02:42:27:70:d0:bf:57:
89:e1:31:4d:bb:05:f9:b1:1f:de:b6:52:ea:8d:b1:
94:fb:ca:35:0a:15:dc:fc:e1:ad:9c:3a:9a:8e:56:
39:c9:a3:c7:65:f5:14:a4:b7:ce:d1:97:88:ef:0b:
0a:bd:7e:74:46:5a:22:5e:9a:00:7f:23:c2:09:34:
65:97:29:e5:7e:88:66:67:83:7c:cb:fe:93:61:18:
cd:9b:ea:5e:64:80:50:64:ad:de:3f:9c:6c:4b:cf:
0a:27:86:cd:7f:60:0e:2d:b3:28:06:41:ee:b2:48:
c5:ce:99:d7:57:a3:81:98:e4:1e:8d:0e:9e:f3:36:
88:86:39:43:e4:bf:1b:2b:55:70:a1:0e:d0:03:21:
94:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:15:B7:A3:89:B5:1E:E4:98:D1:FA:DA:1A:AA:29:00:DF:49:3F:94
X509v3 Authority Key Identifier:
keyid:C7:71:11:EC:55:49:11:5C:B3:47:65:4D:8F:E5:B2:70:9D:27:F7:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3ER7FVJEVyzR2VNj-WycJ0n998.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/exW3o4m1HuSY0fraGqopAN9JP5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/e2d1ad-cfe0-4494-aa75-e0c2b94792ca/1/x3ER7FVJEVyzR2VNj-WycJ0n998.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.101.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:be:06:a1:21:4c:5e:e1:20:86:f4:0c:02:9b:bb:d7:a2:f4:
38:c0:e0:29:62:fb:47:12:f2:8c:dd:c1:db:ca:46:cd:96:d0:
68:07:b4:3b:da:5d:dd:d8:16:80:5f:a3:b9:9d:9f:32:4c:0e:
a5:3c:37:39:70:88:10:65:c3:49:63:2d:ce:dd:a8:79:24:8d:
1b:df:26:25:df:3e:66:5b:3a:ae:c5:a5:be:97:9a:6f:c9:29:
ae:e3:30:71:63:67:72:80:0f:b7:6f:1f:5a:d3:d4:48:eb:27:
87:d7:93:71:0e:b4:84:07:56:57:11:82:8e:7a:27:0f:7b:86:
f5:80:22:b7:cd:61:1c:7b:cf:52:a6:f8:e8:fa:35:b5:61:a2:
b2:1e:45:52:e6:11:fb:ff:95:f9:89:21:38:7a:95:40:69:d0:
03:fc:bf:10:3d:0c:e9:d2:08:be:7b:ae:a9:6e:0c:c6:7e:e6:
ad:82:cf:3b:d7:ba:f9:f3:e5:3c:b3:00:68:5f:f5:b4:ea:5a:
df:b9:cd:9e:a0:1f:d8:8b:8a:02:93:25:29:19:4a:3e:43:c2:
70:20:61:09:7c:d1:5d:b9:15:2c:c3:25:9b:ec:47:a3:51:e2:
93:3f:88:99:0d:d4:f1:12:e3:b6:f9:eb:47:6b:e9:08:5c:e3:
96:ec:9c:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org