Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/iISEaROqwxXE-xWqq_7utlSRLlw.roa
File: iISEaROqwxXE-xWqq_7utlSRLlw.roa (raw, json)
Hash identifier: PnNEn/LX+Ewn2ya6oCSYLEqSLrZttm45wJupmPGonHA=
Subject key identifier: 88:84:84:69:13:AA:C3:15:C4:FB:15:AA:AB:FE:EE:B6:54:91:2E:5C
Certificate issuer: /CN=e8022432529c8c3cc6ab710244e5f035203e70a1
Certificate serial: 015F67DE
Authority key identifier: E8:02:24:32:52:9C:8C:3C:C6:AB:71:02:44:E5:F0:35:20:3E:70:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AIkMlKcjDzGq3ECROXwNSA-cKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/iISEaROqwxXE-xWqq_7utlSRLlw.roa
Signing time: Sun 30 Jan 2022 10:45:09 +0000
ROA not before: Sun 30 Jan 2022 10:45:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.190.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23029726 (0x15f67de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8022432529c8c3cc6ab710244e5f035203e70a1
Validity
Not Before: Jan 30 10:45:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8884846913aac315c4fb15aaabfeeeb654912e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:66:84:a8:82:0b:f8:e9:64:15:86:8b:55:00:
fc:a1:9c:92:e8:9f:c2:3d:a3:8a:d4:ab:fa:50:11:
b1:b2:85:ab:fd:32:c2:06:fd:18:58:41:58:60:97:
d3:c1:8f:6c:54:c2:89:10:33:6a:96:65:10:b5:dc:
bf:c7:c4:a6:88:97:90:a3:3c:30:df:4d:3b:7f:8b:
83:f5:0b:1a:49:b0:7d:20:55:a8:44:62:0b:a0:0a:
b0:3a:1a:2a:4d:8e:af:b7:24:41:24:2c:54:64:b7:
7c:6a:b4:10:3b:e9:58:15:3e:d1:97:00:d5:52:61:
ac:1a:9b:51:bb:df:46:ad:6d:bf:fc:5e:4e:e4:2d:
09:d0:03:70:63:20:01:44:df:9d:98:b9:5e:93:93:
74:e7:b6:7e:bf:60:c6:6b:b8:64:89:a2:46:ee:57:
50:15:a4:d4:df:37:b8:ee:6c:2c:1d:b1:c2:5a:fa:
8d:88:b6:54:b0:48:bd:2e:50:ae:92:60:73:58:58:
5b:42:c9:71:5c:76:68:b9:85:9f:8c:06:0f:20:26:
a6:c4:e9:61:f0:c8:f2:69:5d:ea:ee:ea:9c:c1:b0:
a5:f9:7f:28:19:2b:8a:df:f4:57:37:72:d1:78:50:
1d:a0:1e:78:b4:67:70:90:2d:f8:1f:6a:ff:12:87:
91:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:84:84:69:13:AA:C3:15:C4:FB:15:AA:AB:FE:EE:B6:54:91:2E:5C
X509v3 Authority Key Identifier:
keyid:E8:02:24:32:52:9C:8C:3C:C6:AB:71:02:44:E5:F0:35:20:3E:70:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AIkMlKcjDzGq3ECROXwNSA-cKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/iISEaROqwxXE-xWqq_7utlSRLlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/6AIkMlKcjDzGq3ECROXwNSA-cKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.154.0/24
Signature Algorithm: sha256WithRSAEncryption
63:ba:ea:00:a2:86:ab:58:fb:e1:d5:13:06:ab:74:56:f8:88:
de:e3:20:36:a4:41:39:95:a7:b8:c9:56:a2:68:0b:6a:4e:d6:
e8:35:f8:a9:b9:e2:74:b6:fe:03:dd:76:d5:9a:13:1c:cd:83:
0b:76:0d:51:1a:24:78:4e:26:85:be:b7:c9:4c:fc:ed:6f:49:
f4:fa:15:12:a4:41:29:ed:7e:2e:cb:38:b8:45:57:c4:57:31:
95:84:b9:da:68:a8:ec:bb:9e:c1:64:90:6d:48:58:82:db:50:
5f:06:32:28:d7:28:02:4d:85:ce:0d:e6:66:6b:c6:1c:08:5b:
6b:e4:37:6e:53:7a:d8:64:b1:28:4e:eb:57:a4:26:84:a3:c2:
75:87:93:8b:6e:df:46:fd:e8:65:3a:5e:01:e0:71:bf:84:64:
e0:f9:cb:6a:bc:37:d0:ab:da:db:1c:b6:68:93:9a:47:b5:dd:
0d:60:ef:1a:55:72:f2:75:c5:fb:f4:c2:b8:1b:c1:c2:05:6e:
b8:ea:17:c8:88:e0:e9:9c:8c:18:5e:e1:8b:7a:a5:8c:c5:5d:
d5:ea:a7:03:0c:62:96:94:d9:61:5f:55:e4:a7:f6:fe:2e:9d:
3d:cf:9b:1c:7f:e2:be:a2:46:2c:52:9b:b5:64:16:6f:18:6a:
4a:93:85:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:47 2023 by rpki-client on console-fra.rpki-client.org