Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/d4dfd6-d240-4b0e-9a01-e1d69fa908ca/1/Sl51y-2dEAmntddOsyB4IyiLLO4.roa
File: Sl51y-2dEAmntddOsyB4IyiLLO4.roa (raw, json)
Hash identifier: fvhZYKi8bJHSeAxbKEbf2cJgM40tN5AZ220eelNCz/s=
Subject key identifier: 4A:5E:75:CB:ED:9D:10:09:A7:B5:D7:4E:B3:20:78:23:28:8B:2C:EE
Certificate issuer: /CN=4a80bbd08403871068fdf1fcb5e1012147f61619
Certificate serial: 017CEE
Authority key identifier: 4A:80:BB:D0:84:03:87:10:68:FD:F1:FC:B5:E1:01:21:47:F6:16:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SoC70IQDhxBo_fH8teEBIUf2Fhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/d4dfd6-d240-4b0e-9a01-e1d69fa908ca/1/Sl51y-2dEAmntddOsyB4IyiLLO4.roa
Signing time: Mon 14 Feb 2022 14:20:13 +0000
ROA not before: Mon 14 Feb 2022 14:20:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21217
IP address blocks: 91.200.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97518 (0x17cee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a80bbd08403871068fdf1fcb5e1012147f61619
Validity
Not Before: Feb 14 14:20:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a5e75cbed9d1009a7b5d74eb3207823288b2cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:26:fd:40:b4:f0:b7:c5:79:1d:91:b9:3f:ad:
f9:e3:76:bc:7b:15:53:12:96:38:88:90:8f:ae:3b:
5e:45:59:b9:9c:5e:0e:d0:16:ac:06:0b:26:19:1c:
84:b8:6e:e6:34:6f:65:1d:0d:51:4d:9c:2f:b0:95:
86:be:42:8c:cc:aa:3b:4b:0c:20:91:a0:e3:c6:66:
11:fa:52:41:e5:25:25:c0:93:ab:5d:0b:ef:63:2e:
59:5d:a9:02:60:86:c1:3b:c8:a8:37:ec:38:87:f1:
38:b6:4d:47:01:20:cf:e3:14:e9:fb:9c:db:c0:05:
ce:7b:b4:6e:e3:bf:4f:0a:03:86:ec:8b:fb:43:3a:
0f:79:3a:23:71:f5:85:27:68:78:73:15:4e:bb:6d:
b3:a3:e1:2a:8f:e6:3c:fd:dc:ca:c8:5e:d3:7e:60:
d0:2f:54:01:05:ae:d1:01:a7:75:29:c5:a2:d0:3c:
31:a6:2a:cc:86:11:e1:8e:0d:7e:79:63:c1:2a:f1:
bb:28:a4:55:32:d7:bd:13:09:2e:45:28:f7:51:fe:
dd:3c:1a:f1:3a:56:1e:e5:90:62:5c:9a:f7:82:99:
68:16:08:b6:a6:fd:2a:d7:f6:2b:bf:03:28:5b:22:
89:26:1f:1a:ea:76:ab:f6:09:ac:1a:d8:08:76:3e:
a8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:5E:75:CB:ED:9D:10:09:A7:B5:D7:4E:B3:20:78:23:28:8B:2C:EE
X509v3 Authority Key Identifier:
keyid:4A:80:BB:D0:84:03:87:10:68:FD:F1:FC:B5:E1:01:21:47:F6:16:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SoC70IQDhxBo_fH8teEBIUf2Fhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/d4dfd6-d240-4b0e-9a01-e1d69fa908ca/1/Sl51y-2dEAmntddOsyB4IyiLLO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/d4dfd6-d240-4b0e-9a01-e1d69fa908ca/1/SoC70IQDhxBo_fH8teEBIUf2Fhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.144.0/24
Signature Algorithm: sha256WithRSAEncryption
68:c8:ba:6f:29:75:44:4f:6a:ec:f8:16:0a:2e:26:b8:12:f3:
0d:44:d0:cd:2c:25:a6:a2:66:59:97:9f:53:c5:29:ba:f9:71:
27:2f:b7:14:c5:9a:ca:6d:71:79:a2:37:06:79:77:aa:f5:4f:
66:31:27:e9:c8:b8:4b:34:1e:99:e4:68:d9:32:d2:35:d6:18:
e5:76:51:23:49:f7:a9:a6:05:43:fe:87:cd:07:4e:04:03:d1:
44:8a:00:18:19:0a:a2:6e:65:b9:0c:eb:16:7b:43:53:a6:2c:
9a:b1:e3:f9:cf:de:e0:3f:83:04:a9:ef:68:05:b7:1c:13:ca:
e9:af:29:26:60:7f:7c:2b:49:93:70:b5:be:f1:27:bd:35:ab:
48:66:a2:68:ed:f4:03:1b:3c:0e:c2:fc:b0:99:33:07:9c:d3:
4b:c1:57:2c:25:fd:db:f7:2a:92:41:35:44:39:a3:70:50:a8:
7d:b3:5b:11:fe:45:99:38:27:95:9f:a9:50:a3:35:a5:94:30:
47:c2:a5:d3:a2:03:0b:f5:a8:e6:2b:2b:1e:7c:33:e6:be:53:
98:9b:62:b7:5d:8f:c8:b0:e4:e4:06:87:b7:6a:5e:7d:18:2f:
8f:9f:df:c6:7d:d3:51:63:ce:1a:5e:0b:2c:72:fe:f1:17:7a:
77:4a:95:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:12 2023 by rpki-client on console-fra.rpki-client.org