Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/4963ec-576f-4167-993c-99f182213d4f/1/_L6yXXC3ewfGc5zmZiEWsCQ6_80.roa
File: _L6yXXC3ewfGc5zmZiEWsCQ6_80.roa (raw, json)
Hash identifier: Whp9pOzxcNSjl5J6Lq43JH6LAWu5Z7swF4lGRIyJrT4=
Subject key identifier: FC:BE:B2:5D:70:B7:7B:07:C6:73:9C:E6:66:21:16:B0:24:3A:FF:CD
Certificate issuer: /CN=d1de07a1a1f65bd116e11f9f1108604b6e95ccfd
Certificate serial: 02A59D61
Authority key identifier: D1:DE:07:A1:A1:F6:5B:D1:16:E1:1F:9F:11:08:60:4B:6E:95:CC:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4HoaH2W9EW4R-fEQhgS26VzP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/4963ec-576f-4167-993c-99f182213d4f/1/_L6yXXC3ewfGc5zmZiEWsCQ6_80.roa
Signing time: Sat 01 Jan 2022 07:53:42 +0000
ROA not before: Sat 01 Jan 2022 07:53:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61335
IP address blocks: 91.242.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44408161 (0x2a59d61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de07a1a1f65bd116e11f9f1108604b6e95ccfd
Validity
Not Before: Jan 1 07:53:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcbeb25d70b77b07c6739ce6662116b0243affcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:19:27:cb:6a:52:3c:ba:77:0b:d7:22:4b:a9:
c0:89:29:47:a4:e2:68:c5:9e:12:c3:65:3c:53:51:
31:5b:70:28:5f:72:35:5c:8b:20:5d:1a:41:55:a0:
62:52:60:0d:24:e5:bd:3b:ad:83:2e:f1:34:e1:cf:
79:e3:51:6f:40:a4:9d:30:43:82:5b:62:8d:e5:ac:
d4:e8:da:b4:bc:bf:40:99:67:af:28:81:55:c9:d8:
70:d4:ef:ff:b8:d2:5b:73:7c:61:3e:86:61:0d:39:
05:84:72:f8:c2:ef:c7:7e:d5:c7:6a:91:39:8d:b4:
37:e4:36:82:7a:ad:e6:6b:90:22:9e:c2:70:5b:a7:
5c:7c:c0:d4:56:e0:30:f6:80:8e:6c:75:32:b1:14:
77:a7:4a:7c:82:8e:91:cd:75:8f:82:66:93:28:79:
62:91:ce:d1:8b:08:fb:3f:e8:29:63:ad:0c:3e:b8:
4a:1f:66:e2:6f:c3:07:64:0d:99:d5:15:df:ab:5d:
60:89:b0:9d:49:98:60:3b:d9:98:98:4a:4e:c8:7c:
9f:9b:2c:35:84:98:e9:5f:ca:42:1d:0a:5a:e9:02:
95:8b:dd:ef:f2:e2:a7:10:19:be:8d:5b:cf:cf:b6:
72:d8:bd:b9:30:60:97:29:d2:26:13:d2:ee:18:0a:
22:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:BE:B2:5D:70:B7:7B:07:C6:73:9C:E6:66:21:16:B0:24:3A:FF:CD
X509v3 Authority Key Identifier:
keyid:D1:DE:07:A1:A1:F6:5B:D1:16:E1:1F:9F:11:08:60:4B:6E:95:CC:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4HoaH2W9EW4R-fEQhgS26VzP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/4963ec-576f-4167-993c-99f182213d4f/1/_L6yXXC3ewfGc5zmZiEWsCQ6_80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/4963ec-576f-4167-993c-99f182213d4f/1/0d4HoaH2W9EW4R-fEQhgS26VzP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.163.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:d7:e1:55:d6:98:52:b1:03:c1:b6:db:c8:46:d0:85:34:53:
f5:57:38:29:ff:56:6c:32:49:68:e1:a8:2a:de:1b:90:c9:e6:
54:13:6b:f9:fa:5f:74:ba:cc:ff:92:be:65:c8:2d:66:c1:20:
94:52:0a:57:52:6b:e2:0f:7f:f2:75:b6:04:b1:39:6f:d6:4a:
ff:6d:ce:9f:ad:34:11:66:cc:71:2e:22:0b:d6:af:d1:a0:0c:
5b:ce:12:13:18:b5:37:ea:ad:5d:de:a6:25:6d:f3:ad:68:20:
f5:6a:7c:0e:fb:45:88:0e:9d:31:85:3a:cd:3f:bd:06:a5:52:
ef:3f:0b:5a:f1:e0:26:87:08:80:50:92:af:99:0f:a4:2c:fc:
a7:c9:5d:9a:47:e1:ed:7e:73:ab:31:68:e9:2d:b1:e9:83:63:
c6:67:68:cf:76:74:5f:08:a0:5e:e3:ba:c4:80:dd:ae:fe:a5:
57:65:71:63:2c:88:86:92:bc:f3:57:2b:6a:c2:5b:b3:bd:3e:
6a:ff:59:c1:65:a9:90:b1:3b:d8:01:2b:82:7d:41:79:30:11:
de:d1:d0:3d:56:d5:65:10:45:93:2d:75:e0:97:f6:ad:8e:cb:
c6:da:fa:f3:07:0d:6b:97:5c:0d:04:95:8c:34:35:d5:0a:9a:
b8:06:3a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:52 2023 by rpki-client on console-ams.rpki-client.org