Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/a0ab51-9dae-410d-8fd9-08fadeb2dbe7/1/EOw9VIpnPKDyCra_mYiX-QOv9eQ.roa
File: EOw9VIpnPKDyCra_mYiX-QOv9eQ.roa (raw, json)
Hash identifier: +ezwtut4vEPqrie4XrPU+1v1Ia9UmfS901AQXQo1Wd0=
Subject key identifier: 10:EC:3D:54:8A:67:3C:A0:F2:0A:B6:BF:99:88:97:F9:03:AF:F5:E4
Certificate issuer: /CN=807bd62fd8d35308dbc8b1fd5f1727af57abd220
Certificate serial: 3818
Authority key identifier: 80:7B:D6:2F:D8:D3:53:08:DB:C8:B1:FD:5F:17:27:AF:57:AB:D2:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gHvWL9jTUwjbyLH9Xxcnr1er0iA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/a0ab51-9dae-410d-8fd9-08fadeb2dbe7/1/EOw9VIpnPKDyCra_mYiX-QOv9eQ.roa
Signing time: Fri 22 Apr 2022 08:32:12 +0000
ROA not before: Fri 22 Apr 2022 08:32:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48837
IP address blocks: 91.236.58.0/24 maxlen: 24
91.212.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14360 (0x3818)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=807bd62fd8d35308dbc8b1fd5f1727af57abd220
Validity
Not Before: Apr 22 08:32:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10ec3d548a673ca0f20ab6bf998897f903aff5e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0f:41:b0:c7:28:54:34:db:08:f3:d6:a7:5d:
ee:b2:b9:f6:38:c6:bb:dc:4a:4c:a9:1a:e2:36:7e:
31:29:d3:f8:4d:f0:bf:d4:97:64:96:fb:d1:39:b2:
8a:4c:e0:04:a9:ae:15:68:16:6c:bb:dd:ac:a4:6b:
9f:69:28:f3:46:f0:76:20:0b:eb:45:0a:d3:64:20:
25:bf:a2:10:67:ab:84:10:dc:81:c2:9c:69:d1:f0:
63:64:37:48:7e:f7:a3:42:67:6e:65:e5:7c:29:cd:
ea:19:88:f4:a0:dd:ce:ac:b2:58:c6:6a:5e:46:56:
87:fa:c2:45:50:d2:c9:e1:cb:a2:30:70:f0:0b:c3:
07:44:6d:75:2a:75:af:69:04:7b:e3:08:ba:f5:d5:
e1:e5:e8:f8:26:5e:c5:1a:7b:5d:76:f9:b9:a7:ba:
b4:21:ed:50:78:07:2a:03:d6:ba:14:3d:91:56:20:
4d:15:34:d5:f8:3e:55:46:af:f6:e2:4e:51:d4:da:
f1:73:2d:b6:df:8c:f7:3e:c0:dc:bd:e6:c3:23:a7:
58:e8:64:8c:59:c8:b6:6e:c7:bc:fb:e7:35:60:35:
2d:31:e3:eb:8d:12:3d:ec:d5:cf:2f:33:d7:ab:bc:
8a:07:f2:3c:e9:ce:39:17:fd:ce:e9:d5:94:26:7d:
ad:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:EC:3D:54:8A:67:3C:A0:F2:0A:B6:BF:99:88:97:F9:03:AF:F5:E4
X509v3 Authority Key Identifier:
keyid:80:7B:D6:2F:D8:D3:53:08:DB:C8:B1:FD:5F:17:27:AF:57:AB:D2:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gHvWL9jTUwjbyLH9Xxcnr1er0iA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/a0ab51-9dae-410d-8fd9-08fadeb2dbe7/1/EOw9VIpnPKDyCra_mYiX-QOv9eQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/a0ab51-9dae-410d-8fd9-08fadeb2dbe7/1/gHvWL9jTUwjbyLH9Xxcnr1er0iA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.66.0/24
91.236.58.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:83:35:ee:7f:85:0c:d6:43:87:68:8d:d1:69:2c:fb:86:88:
76:98:1e:06:71:78:16:05:58:d3:0c:08:8b:a3:a6:b0:e5:3d:
e4:6d:ac:d4:f9:e6:d7:89:1a:7c:58:a2:68:ab:25:c9:ce:71:
76:f4:b8:8c:78:52:03:17:3b:6b:7e:da:c7:8e:77:a9:21:ee:
93:99:c2:39:3c:22:eb:42:4d:46:0c:b3:b3:bc:18:37:40:22:
e1:78:ad:dc:46:5c:c1:c1:62:fa:a7:be:08:c0:8f:e8:fd:1d:
07:ee:2a:b9:d2:c5:01:d8:62:69:76:6e:af:a3:2f:04:0c:d1:
a5:e8:3b:d5:2f:e2:c7:8d:55:71:3b:25:6a:31:79:2c:49:e0:
72:7c:d5:cb:03:5a:b2:2c:17:39:f6:83:2e:c9:22:df:86:6e:
d3:09:ad:6a:2c:f1:cc:69:2d:25:69:f4:bb:fd:37:47:65:bf:
81:43:d6:d0:10:62:96:2e:57:ed:d0:2a:5b:7e:44:7c:d5:3d:
99:70:7a:d3:cd:cf:a4:53:80:99:3c:da:99:f6:bc:1f:84:4d:
b9:70:09:40:95:55:7b:e5:68:61:4c:ce:98:ba:f7:02:b7:d9:
a7:a4:b8:75:38:9c:51:de:4e:0e:a3:07:7a:d4:3f:5d:c0:44:
9c:ee:27:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:46 2023 by rpki-client on console-fra.rpki-client.org