Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/pv43ofEhw5aYYFFBb-6S2rkjC8o.roa
File: pv43ofEhw5aYYFFBb-6S2rkjC8o.roa (raw, json)
Hash identifier: jNtAtSY5MAUFGvpxCtACfeAXvWZPU4HZJeGxuSLU/Ws=
Subject key identifier: A6:FE:37:A1:F1:21:C3:96:98:60:51:41:6F:EE:92:DA:B9:23:0B:CA
Certificate issuer: /CN=e8022432529c8c3cc6ab710244e5f035203e70a1
Certificate serial: 011EC8EC
Authority key identifier: E8:02:24:32:52:9C:8C:3C:C6:AB:71:02:44:E5:F0:35:20:3E:70:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6AIkMlKcjDzGq3ECROXwNSA-cKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/pv43ofEhw5aYYFFBb-6S2rkjC8o.roa
Signing time: Sat 01 Jan 2022 13:00:53 +0000
ROA not before: Sat 01 Jan 2022 13:00:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.190.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18794732 (0x11ec8ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8022432529c8c3cc6ab710244e5f035203e70a1
Validity
Not Before: Jan 1 13:00:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6fe37a1f121c396986051416fee92dab9230bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:89:d8:b6:15:0b:5f:90:51:91:46:33:6a:2c:
13:4c:e1:ff:a2:f1:e4:01:2d:60:86:08:bb:72:5f:
15:63:ae:6c:31:34:6a:77:9e:d4:8e:32:1e:7f:10:
a3:6a:ce:51:d6:61:20:21:b3:27:ec:e7:6d:1a:74:
6e:59:c4:65:69:08:13:a9:ea:e6:45:cc:21:82:19:
55:21:ca:49:83:59:0a:d8:0c:b3:fe:26:13:61:2a:
ba:fa:5d:d7:54:2f:60:2b:cf:c4:c1:d6:56:55:84:
d2:20:fb:21:ea:15:81:b7:f3:bd:6a:34:f0:49:a2:
0e:9b:3a:df:0e:1f:f3:09:43:84:af:aa:e5:c7:7f:
09:4f:5a:67:ed:a8:5f:51:36:15:3f:6e:f5:1d:4f:
2b:e3:dd:90:28:ef:fd:05:ed:85:2c:89:07:4e:52:
9a:fb:df:d0:eb:7e:18:a3:77:eb:77:43:6b:26:53:
2f:5d:6e:f1:4b:92:74:7f:33:1c:14:72:74:34:01:
cb:cc:5e:19:5a:e7:a4:2d:f4:e9:9f:0f:9c:db:5a:
2a:7c:d2:cd:bb:1b:89:dc:5b:d2:97:1b:ff:18:d3:
09:19:27:66:90:40:4c:30:65:45:fa:9a:45:28:36:
4e:dd:2b:9c:cf:12:1a:38:90:d1:70:10:af:ae:bd:
4a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FE:37:A1:F1:21:C3:96:98:60:51:41:6F:EE:92:DA:B9:23:0B:CA
X509v3 Authority Key Identifier:
keyid:E8:02:24:32:52:9C:8C:3C:C6:AB:71:02:44:E5:F0:35:20:3E:70:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6AIkMlKcjDzGq3ECROXwNSA-cKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/pv43ofEhw5aYYFFBb-6S2rkjC8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/1d29a0-da4b-41a1-b564-49cc67ba1b63/1/6AIkMlKcjDzGq3ECROXwNSA-cKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.154.0/24
Signature Algorithm: sha256WithRSAEncryption
29:7f:4e:77:68:9c:83:0e:00:d5:7a:0c:a4:78:1d:79:0c:5e:
4a:9a:6e:44:45:96:ce:45:7d:b4:0c:4c:fd:78:57:89:63:f5:
e9:ce:e0:ff:99:13:ec:85:ee:a4:97:e2:bb:5a:2a:de:3e:22:
3e:e8:af:15:8c:e9:e9:d4:5d:01:ff:21:98:17:32:2e:71:7f:
1d:b8:fa:ef:ea:65:a7:18:e1:38:f9:2b:25:1c:64:ba:07:ba:
e0:f0:ce:8a:5c:6b:c6:54:c0:36:a2:08:57:ed:45:1d:bc:a4:
af:d3:85:72:f1:eb:05:a6:99:ed:27:e6:37:a2:b0:ce:cb:86:
d3:2e:f4:11:e0:62:1f:46:e6:e7:3d:bc:d0:4b:df:b6:3c:3b:
21:64:36:bb:c2:35:a4:cd:72:d0:d9:94:06:cb:d8:de:31:52:
47:39:37:3f:43:95:30:a1:a8:42:b1:58:cd:e5:97:7a:46:17:
16:7b:70:95:e1:09:28:63:a8:e5:77:08:e6:02:c5:6c:aa:16:
9f:43:99:68:d7:0a:40:9c:a7:cb:50:29:30:4e:07:4d:ed:3b:
c4:a0:dc:6c:56:43:6d:ed:b4:f6:aa:f2:ae:33:83:5f:43:b1:
3e:03:bc:e9:05:a2:a5:14:a4:9d:98:b6:64:1c:39:79:b4:05:
90:e2:c4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:47 2023 by rpki-client on console-fra.rpki-client.org