Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/Zm4PF0TFeI_9WtVUddGbJisvkwY.roa
File: Zm4PF0TFeI_9WtVUddGbJisvkwY.roa (raw, json)
Hash identifier: vBSQqcJnqyeyr9k7ajEwBfIrSroSkzMWM/5eVApuaA0=
Subject key identifier: 66:6E:0F:17:44:C5:78:8F:FD:5A:D5:54:75:D1:9B:26:2B:2F:93:06
Certificate issuer: /CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Certificate serial: 05DA5094
Authority key identifier: E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/Zm4PF0TFeI_9WtVUddGbJisvkwY.roa
Signing time: Sat 01 Jan 2022 14:58:51 +0000
ROA not before: Sat 01 Jan 2022 14:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51435
IP address blocks: 91.217.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98193556 (0x5da5094)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Validity
Not Before: Jan 1 14:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=666e0f1744c5788ffd5ad55475d19b262b2f9306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:bc:bc:5b:c7:ae:cb:cd:bb:87:a7:7a:1e:91:
e1:bf:d1:ac:7a:e9:ec:2e:d9:22:05:a1:e8:3d:c7:
2a:75:00:05:50:ba:c7:17:ce:7a:e0:ea:eb:9e:9b:
09:91:41:fe:b3:fa:f6:4b:b8:03:ec:53:91:b8:2a:
60:04:15:52:a1:22:d2:f4:c3:63:46:38:a2:c7:43:
c7:fc:aa:c5:38:a5:bd:f1:4a:f5:e7:20:f5:76:65:
3e:ec:d3:9c:cd:4d:78:c5:98:f7:fc:3a:00:aa:b1:
9a:1c:bb:fb:ba:da:11:a5:fc:c2:7d:0c:ca:c3:d8:
b7:bc:db:51:35:0d:10:0c:2c:21:47:06:df:25:c2:
b9:05:a3:bd:6a:64:46:fe:62:b8:b5:de:cb:2f:da:
10:a1:d9:1d:04:bc:5b:92:b5:7c:ab:31:86:d4:7f:
c9:a2:58:cc:69:8f:f6:cb:9c:81:6a:da:cb:dd:1f:
75:b5:37:d7:b1:46:ee:a0:98:e6:1c:a8:e9:2d:65:
6b:fd:a0:12:57:8b:6c:c2:5d:67:13:a8:d8:c4:37:
41:47:0b:42:3d:54:82:64:c5:bb:9c:05:96:dc:28:
0b:18:7c:1f:2b:79:a2:c5:37:5f:ee:e9:b7:d6:78:
2e:fd:74:f5:e9:b2:e6:99:e4:b3:88:7f:a1:82:4f:
64:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6E:0F:17:44:C5:78:8F:FD:5A:D5:54:75:D1:9B:26:2B:2F:93:06
X509v3 Authority Key Identifier:
keyid:E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/Zm4PF0TFeI_9WtVUddGbJisvkwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.147.0/24
Signature Algorithm: sha256WithRSAEncryption
99:f9:27:6e:dd:d5:dd:83:49:1a:92:c9:ae:ae:72:3a:5f:da:
7b:28:3f:8b:2b:ef:e3:98:9a:18:20:59:af:4f:ef:0d:bc:3c:
33:70:33:f3:b8:be:59:36:91:dd:e7:19:1c:cb:8d:1d:e5:78:
09:c4:d5:75:fc:2d:95:da:b4:91:01:27:9e:4a:45:67:ef:d2:
84:6b:ee:75:39:02:47:ca:ac:10:c8:1e:64:1d:16:d2:b3:c9:
c1:12:95:ac:21:83:0a:2f:fe:56:67:2a:0c:2e:c1:17:93:1b:
1f:bf:e8:1e:c0:8b:20:e0:dc:43:cb:0e:e4:1d:2b:6a:b8:62:
06:f8:63:24:40:50:3c:00:23:d1:a2:c5:65:90:ee:a3:32:37:
18:b5:87:6a:35:c0:78:6a:d9:f0:94:fb:0f:4c:c5:76:5b:18:
c9:b5:e6:96:68:03:2b:14:35:b4:bf:46:29:ac:ad:c7:72:be:
05:93:9d:d0:76:ed:66:e9:af:c6:2c:c0:ef:78:36:73:69:cd:
1b:55:cd:9a:53:89:2f:68:6d:1a:40:29:ba:d3:a9:df:38:80:
7c:e3:b2:ad:47:4d:68:86:fb:a2:04:08:8e:a4:89:fc:9e:f5:
86:1e:01:17:47:8b:5e:c1:89:af:96:f2:66:40:d7:e1:6c:40:
90:95:6f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-ams.rpki-client.org