Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/qfniwrfTaeNsucVuDNPYqOdbCSA.roa
File: qfniwrfTaeNsucVuDNPYqOdbCSA.roa (raw, json)
Hash identifier: 337JQPFjYUvfnCRqrJyd7iqos6L7On08oTBUSIZDpH8=
Subject key identifier: A9:F9:E2:C2:B7:D3:69:E3:6C:B9:C5:6E:0C:D3:D8:A8:E7:5B:09:20
Certificate issuer: /CN=e92e146a1e9e83b3756f048b6c1b31e0fc7d207d
Certificate serial: 018562654F1212C418A9A21D07C72E8798F9
Authority key identifier: E9:2E:14:6A:1E:9E:83:B3:75:6F:04:8B:6C:1B:31:E0:FC:7D:20:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/qfniwrfTaeNsucVuDNPYqOdbCSA.roa
Signing time: Fri 30 Dec 2022 09:38:04 +0000
ROA not before: Fri 30 Dec 2022 09:38:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51753
IP address blocks: 91.220.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:65:4f:12:12:c4:18:a9:a2:1d:07:c7:2e:87:98:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e92e146a1e9e83b3756f048b6c1b31e0fc7d207d
Validity
Not Before: Dec 30 09:38:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9f9e2c2b7d369e36cb9c56e0cd3d8a8e75b0920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d7:6a:08:fe:fe:85:88:a8:95:0a:aa:8e:c6:
5e:32:b9:b2:c8:b7:86:d9:49:6f:2f:11:d6:93:2c:
e7:07:d4:bd:aa:d1:c7:48:5c:54:ec:d3:72:70:6c:
98:5b:d9:aa:b7:2d:a9:ef:06:f9:3f:76:6a:b6:58:
e1:54:4f:75:2d:59:5d:bc:d6:d4:4e:c7:60:82:87:
8c:af:24:6a:0c:48:96:c5:e9:75:b4:85:dc:f0:d9:
e9:36:d6:58:d8:7c:a4:b3:5a:fc:fa:97:23:56:4e:
84:be:db:d0:69:ef:f4:9f:d2:aa:29:81:6c:c7:87:
55:ed:61:aa:58:bc:20:80:89:69:e3:e1:aa:b6:19:
56:d0:cf:b5:6a:c0:67:e5:66:99:a2:b3:46:ec:2c:
d3:77:d4:e2:8e:bc:76:4f:35:9a:91:e3:44:1f:da:
26:24:d0:3a:9f:35:fa:ab:2a:97:ce:a2:af:88:c7:
b4:55:5c:88:bc:18:ab:44:81:3b:69:b4:20:e0:d9:
ec:5f:31:f8:86:bc:93:ec:7c:8b:85:fb:5e:6e:40:
3c:6d:a8:19:80:c6:a1:a0:03:dc:10:1b:4a:e6:48:
5c:f0:6e:8b:57:d4:84:3b:a0:92:61:99:99:fd:28:
6c:3a:f1:eb:e5:bc:d1:2b:90:70:31:fa:08:bf:d8:
cd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F9:E2:C2:B7:D3:69:E3:6C:B9:C5:6E:0C:D3:D8:A8:E7:5B:09:20
X509v3 Authority Key Identifier:
keyid:E9:2E:14:6A:1E:9E:83:B3:75:6F:04:8B:6C:1B:31:E0:FC:7D:20:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6S4Uah6eg7N1bwSLbBsx4Px9IH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/qfniwrfTaeNsucVuDNPYqOdbCSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/eb0e6b-091d-4ff1-90bb-74a395aa5606/1/6S4Uah6eg7N1bwSLbBsx4Px9IH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.66.0/24
Signature Algorithm: sha256WithRSAEncryption
53:fb:58:34:c0:ef:78:e9:7f:32:57:69:2d:85:78:e2:b1:58:
4a:43:e4:6a:eb:73:a4:85:5c:4c:f8:ed:12:92:32:6f:8b:25:
92:99:92:40:f6:60:a4:47:64:b5:0c:ec:5d:07:c1:b6:2a:e2:
7b:44:ee:fb:f5:2d:fb:05:3d:57:7c:41:76:39:3f:42:ef:fe:
eb:e8:71:52:16:9c:9c:b8:31:1f:f1:c5:4d:bf:f5:5a:f0:10:
4f:7a:7b:c7:9d:c6:50:19:24:02:40:c0:7b:60:28:7a:87:63:
ad:dd:08:1b:f6:de:71:95:7d:b3:99:22:2c:08:2c:33:64:33:
8e:e5:48:ab:3e:10:9b:c0:96:fa:ac:d2:4d:9f:1c:14:10:a5:
aa:21:15:6f:e2:77:98:97:c4:04:d7:dc:8c:fa:bf:85:e4:a5:
b3:d0:6b:9e:42:7c:16:36:fb:1a:e5:0f:45:4e:a8:66:cd:6a:
eb:2a:86:89:4a:5b:fe:f1:9a:b4:df:ae:28:e8:8e:ad:e8:d0:
4e:d5:57:12:dd:a5:25:34:78:eb:e7:ec:4f:43:dd:8f:db:71:
b6:91:68:95:d1:ba:68:2b:93:f3:c8:aa:57:40:80:e2:74:e7:
ef:75:5b:cd:06:8b:24:5a:37:55:6b:10:84:5c:be:58:22:b1:
ac:46:00:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:39 2023 by rpki-client on console-fra.rpki-client.org