Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/EH474fASGxP9Ax0Dk6ssyXdEfBA.roa
File: EH474fASGxP9Ax0Dk6ssyXdEfBA.roa (raw, json)
Hash identifier: EcoXnPvscm1ghtHfpdaNlG2yj6AsRNnET3zppNNFdHQ=
Subject key identifier: 10:7E:3B:E1:F0:12:1B:13:FD:03:1D:03:93:AB:2C:C9:77:44:7C:10
Certificate issuer: /CN=0f34477aa0f0123138c0472f5b3528e4d2193e68
Certificate serial: 173E58C7
Authority key identifier: 0F:34:47:7A:A0:F0:12:31:38:C0:47:2F:5B:35:28:E4:D2:19:3E:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DzRHeqDwEjE4wEcvWzUo5NIZPmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/EH474fASGxP9Ax0Dk6ssyXdEfBA.roa
Signing time: Sat 01 Jan 2022 03:59:33 +0000
ROA not before: Sat 01 Jan 2022 03:59:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198108
IP address blocks: 91.216.232.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 389961927 (0x173e58c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f34477aa0f0123138c0472f5b3528e4d2193e68
Validity
Not Before: Jan 1 03:59:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=107e3be1f0121b13fd031d0393ab2cc977447c10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e0:a8:50:91:0b:b1:48:62:5f:bb:92:fb:14:
14:91:0b:e4:e3:f2:3b:e9:cf:13:af:4a:5d:25:98:
3b:14:19:35:2e:dc:14:a3:ff:2d:be:96:52:eb:3c:
9e:6e:61:81:21:ca:ce:0c:a7:89:9f:87:b8:d8:99:
5b:14:2c:0a:3e:8d:5d:d8:2d:a5:53:9f:8c:63:b0:
08:ba:79:47:5c:e9:d3:49:f9:44:d8:92:2c:69:75:
c3:ca:c7:b2:9d:ad:73:68:36:8d:d2:ee:dc:22:be:
38:46:02:94:2f:1c:96:46:9e:cd:59:09:28:89:41:
4f:e8:37:82:80:78:d5:8c:fa:61:09:99:13:30:4a:
c1:57:3c:11:b9:8a:09:a4:cf:d1:96:06:08:29:b6:
97:15:82:b0:bb:7e:db:f3:cd:3d:96:b1:a7:8a:41:
59:5c:04:60:fe:6a:0c:b0:88:72:77:0d:44:ba:87:
a1:07:82:32:f7:10:d4:89:7a:61:9a:81:47:93:b7:
66:dc:eb:c8:5c:3c:29:89:c6:e2:de:63:a0:7b:f7:
9f:c9:10:42:b9:56:0b:a6:27:1d:0a:17:32:c7:e7:
cb:84:16:cb:c8:45:05:62:f4:6e:10:75:e9:7d:88:
7b:76:91:49:50:a3:40:b7:e4:39:3e:b2:5b:ca:9d:
4d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:7E:3B:E1:F0:12:1B:13:FD:03:1D:03:93:AB:2C:C9:77:44:7C:10
X509v3 Authority Key Identifier:
keyid:0F:34:47:7A:A0:F0:12:31:38:C0:47:2F:5B:35:28:E4:D2:19:3E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DzRHeqDwEjE4wEcvWzUo5NIZPmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/EH474fASGxP9Ax0Dk6ssyXdEfBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/DzRHeqDwEjE4wEcvWzUo5NIZPmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.232.0/24
Signature Algorithm: sha256WithRSAEncryption
54:05:b6:b3:72:a8:08:ef:7d:7f:3f:02:06:d9:0a:5c:91:ae:
e9:d3:66:53:31:e5:a5:3d:75:4c:1b:94:a0:ba:3a:57:b3:7f:
33:dd:9b:c8:2c:5e:50:e5:b5:ca:84:27:df:1e:1d:9d:cc:3d:
5b:5f:84:e1:21:2a:88:4b:70:73:da:f7:3f:33:0a:ff:ea:43:
3e:71:95:c9:8e:b4:70:70:c3:db:f3:56:f5:39:a0:10:61:8d:
58:99:5f:b2:b7:61:19:f4:2e:b3:7f:72:49:e6:1e:46:53:04:
5e:f7:10:0a:22:b6:4e:2f:cc:e3:26:28:eb:cd:09:f5:4c:4e:
1b:55:ab:d7:e9:5c:eb:89:3a:15:4e:04:12:a8:3e:46:ed:6a:
4d:6e:fe:70:2b:4e:c5:f6:d0:24:9c:60:46:9b:58:f5:62:3a:
de:88:8d:4f:bd:cc:a8:6a:36:8c:60:fd:37:8e:b8:75:d7:69:
59:9b:cd:eb:a6:65:86:4c:7e:ed:f1:fd:df:07:f1:73:81:b0:
43:fb:80:68:d6:31:ee:da:d0:f5:a4:9e:f9:ae:e0:15:41:0f:
20:14:a3:16:59:85:35:08:b9:f5:b8:35:40:1a:01:58:c5:bb:
33:0e:59:a3:f3:e9:b1:3d:3d:03:93:6f:b0:75:56:a3:e6:58:
4b:45:5d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:19 2023 by rpki-client on console-ams.rpki-client.org