Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/921462-9679-4aec-8ff9-88821e193cdc/1/4xA_bwicMY0I4-Z1u9H9T5gDoPQ.roa
File: 4xA_bwicMY0I4-Z1u9H9T5gDoPQ.roa (raw, json)
Hash identifier: VCNiSLAqdOk90mhxZdmT4HUwNNImFx0qiuN0zVRpnog=
Subject key identifier: E3:10:3F:6F:08:9C:31:8D:08:E3:E6:75:BB:D1:FD:4F:98:03:A0:F4
Certificate issuer: /CN=ece5feab893d52681ce5395de08f90830d3c322b
Certificate serial: 01A32188
Authority key identifier: EC:E5:FE:AB:89:3D:52:68:1C:E5:39:5D:E0:8F:90:83:0D:3C:32:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7OX-q4k9Umgc5Tld4I-Qgw08Mis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/921462-9679-4aec-8ff9-88821e193cdc/1/4xA_bwicMY0I4-Z1u9H9T5gDoPQ.roa
Signing time: Sat 01 Jan 2022 00:51:45 +0000
ROA not before: Sat 01 Jan 2022 00:51:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51055
IP address blocks: 91.216.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27468168 (0x1a32188)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ece5feab893d52681ce5395de08f90830d3c322b
Validity
Not Before: Jan 1 00:51:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3103f6f089c318d08e3e675bbd1fd4f9803a0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:62:42:37:92:8a:7b:7a:bd:83:f4:b9:e4:14:
6e:84:dd:f9:72:27:00:bb:63:c8:bf:f3:58:e8:d7:
9b:11:48:fe:a9:16:aa:60:23:0a:7d:8e:d1:d2:f3:
3a:97:c9:2b:d1:22:76:2a:20:ca:52:6c:9f:b9:c2:
db:fc:45:ce:81:78:b0:bf:f3:12:b5:94:2f:ce:95:
53:01:13:e2:ff:c0:b2:53:66:3f:34:d0:25:18:dd:
80:51:2c:95:c4:c4:95:a1:2e:6a:45:26:55:fa:3a:
7c:a4:fc:6c:1f:11:d2:6c:c9:92:68:a7:f1:25:91:
16:4c:72:d5:ae:64:df:b3:a2:ee:ea:82:38:ac:e6:
43:eb:a2:1f:89:08:5e:6f:3c:fe:8c:95:30:12:bc:
8e:8d:0e:99:ff:08:a2:3a:c9:8e:07:57:3b:7c:5f:
f1:43:5f:0f:58:7c:0f:39:cd:c9:44:32:9d:56:4c:
14:38:6c:c4:5e:ee:67:61:af:9d:25:fb:fd:f5:47:
35:9c:7a:5d:ee:7a:36:1a:bd:f1:64:a2:5f:6a:06:
ea:b3:64:1e:89:2b:d9:20:ca:42:5e:69:7b:c0:f1:
fc:a0:c1:13:c9:b4:e9:b1:ba:94:c8:47:78:2b:d1:
23:8b:2f:c0:b4:96:d8:c4:f6:f5:4e:a4:f8:7c:c5:
7e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:10:3F:6F:08:9C:31:8D:08:E3:E6:75:BB:D1:FD:4F:98:03:A0:F4
X509v3 Authority Key Identifier:
keyid:EC:E5:FE:AB:89:3D:52:68:1C:E5:39:5D:E0:8F:90:83:0D:3C:32:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7OX-q4k9Umgc5Tld4I-Qgw08Mis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/921462-9679-4aec-8ff9-88821e193cdc/1/4xA_bwicMY0I4-Z1u9H9T5gDoPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/921462-9679-4aec-8ff9-88821e193cdc/1/7OX-q4k9Umgc5Tld4I-Qgw08Mis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.112.0/24
Signature Algorithm: sha256WithRSAEncryption
61:d1:67:65:22:55:3f:42:7b:25:bb:c3:bf:ab:a6:95:17:a6:
be:98:f3:9f:f7:81:5d:2d:44:b9:2f:28:36:af:f7:74:2a:47:
1d:6e:f8:fe:c6:8d:06:f6:6a:bb:f8:51:56:bf:13:a8:2d:23:
99:08:12:9a:0d:58:5d:f3:52:06:5d:af:57:63:93:3d:61:93:
7f:4a:27:d9:89:99:bc:32:3a:9a:0b:38:f7:58:3f:61:9a:85:
36:f7:aa:1a:46:73:ae:71:2b:2a:34:e1:73:3c:5e:3b:27:6e:
73:2b:6a:ce:94:9c:dc:24:60:c3:ea:3b:9c:9e:a4:43:b8:13:
c5:75:7d:e6:fa:14:01:35:86:13:ed:8d:1e:3f:ac:34:dc:e5:
bb:fc:42:01:d9:ae:84:76:0b:74:ed:ba:27:32:fb:b9:2e:dd:
4a:cf:53:1f:36:5f:26:b0:9d:0a:7e:81:db:2d:bb:78:d0:c4:
38:db:c3:74:35:00:08:20:3c:2a:ec:d8:ed:50:8a:ab:ea:cd:
b9:2f:7b:e4:99:17:d8:b7:25:9e:6a:26:71:7e:8f:1f:15:f8:
14:a0:72:01:eb:eb:7a:4a:71:05:95:4c:9d:29:d6:d6:41:58:
47:4f:ae:0b:c8:aa:de:05:45:3d:50:6a:50:2d:9a:a8:52:f2:
28:b4:17:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:24 2023 by rpki-client on console-fra.rpki-client.org