Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/342f39-cdb0-4d50-9c72-3a3862118a0f/1/IP9Xs_YvgI3o2GKWKTlmRVrdheA.roa
File: IP9Xs_YvgI3o2GKWKTlmRVrdheA.roa (raw, json)
Hash identifier: sHMvEeQPB750yt/xN2i8tjT/8ZMyRkhFYgb2I0+V+fs=
Subject key identifier: 20:FF:57:B3:F6:2F:80:8D:E8:D8:62:96:29:39:66:45:5A:DD:85:E0
Certificate issuer: /CN=e96c63b494b0d08a55aaa1805f620db8dad2557f
Certificate serial: 01824E06BE39CBABF185143217DD28A47771
Authority key identifier: E9:6C:63:B4:94:B0:D0:8A:55:AA:A1:80:5F:62:0D:B8:DA:D2:55:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6WxjtJSw0IpVqqGAX2INuNrSVX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/342f39-cdb0-4d50-9c72-3a3862118a0f/1/IP9Xs_YvgI3o2GKWKTlmRVrdheA.roa
Signing time: Sat 30 Jul 2022 07:34:00 +0000
ROA not before: Sat 30 Jul 2022 07:34:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211440
IP address blocks: 91.227.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4e:06:be:39:cb:ab:f1:85:14:32:17:dd:28:a4:77:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96c63b494b0d08a55aaa1805f620db8dad2557f
Validity
Not Before: Jul 30 07:34:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20ff57b3f62f808de8d86296293966455add85e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:88:33:6b:51:e0:45:0a:64:c2:c5:4a:52:
bf:98:bc:19:20:9b:98:e0:66:35:65:68:79:9c:d1:
cd:52:fb:88:17:8b:f9:32:0f:d2:16:26:b3:e4:38:
8e:e0:e2:63:fd:76:0f:93:4c:1e:03:5c:c6:7a:83:
ff:f2:cb:25:c6:57:09:b4:f6:83:9e:7e:b9:4f:c6:
64:18:c7:3d:82:ef:73:40:e8:5b:23:e7:f4:c2:d9:
c3:2b:d1:b2:57:6d:71:46:9e:9b:19:6e:60:9a:9c:
6c:32:fd:b1:fc:3d:5d:d3:8b:24:9c:af:43:3a:8e:
11:60:aa:12:bd:b3:61:3c:8c:d4:ea:83:7a:06:b6:
d5:e1:dc:0d:e5:cf:5d:d8:09:c3:d5:8a:8d:ab:3a:
1a:7d:e0:11:7d:36:85:12:84:88:6f:f3:84:17:f9:
c3:f6:8a:50:8b:61:b1:b3:8e:ab:1b:a0:c6:aa:b9:
ae:b3:ed:0a:6c:3e:d8:f3:57:10:84:94:1a:79:2f:
bc:56:d0:84:d2:e5:49:88:35:7d:21:72:ab:d3:93:
09:09:5e:9f:bf:35:d6:a6:18:0a:12:44:35:de:a5:
24:26:f0:b2:39:47:45:e9:8b:d5:ac:3a:97:2f:41:
28:b2:52:64:6b:22:70:b9:88:8d:7c:b5:40:56:e8:
1f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:FF:57:B3:F6:2F:80:8D:E8:D8:62:96:29:39:66:45:5A:DD:85:E0
X509v3 Authority Key Identifier:
keyid:E9:6C:63:B4:94:B0:D0:8A:55:AA:A1:80:5F:62:0D:B8:DA:D2:55:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6WxjtJSw0IpVqqGAX2INuNrSVX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/342f39-cdb0-4d50-9c72-3a3862118a0f/1/IP9Xs_YvgI3o2GKWKTlmRVrdheA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/342f39-cdb0-4d50-9c72-3a3862118a0f/1/6WxjtJSw0IpVqqGAX2INuNrSVX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.184.0/24
Signature Algorithm: sha256WithRSAEncryption
49:d5:ed:c9:3b:16:32:77:64:e4:58:78:4f:ba:77:66:bb:60:
30:bb:51:a5:e0:5a:30:ef:91:11:8e:f4:c8:5a:a2:9a:29:c5:
05:41:1b:ae:a5:dc:96:81:77:22:5d:7f:8a:f6:d1:42:28:4b:
7c:4d:e2:eb:64:4c:b4:76:b3:78:19:5e:41:36:cb:a0:9a:13:
b2:2d:a5:16:c3:b6:a0:0e:ac:12:1a:96:c9:4d:bf:f3:ae:4d:
02:32:82:6a:4e:73:3e:0e:6f:7e:74:58:5b:cf:f8:27:a7:ff:
29:2c:9a:e6:47:c1:26:13:63:2e:fa:f4:1b:39:c9:56:1b:97:
a7:85:cf:97:5a:81:92:e1:a7:48:31:4e:53:86:0a:9b:3a:e8:
bb:9f:34:84:8e:83:f7:68:2e:db:51:4e:e3:a1:38:23:c2:47:
43:7d:1e:ce:c5:a9:58:eb:15:a2:bd:ba:bd:56:71:d8:fb:39:
0f:13:a8:c4:f1:1f:56:16:7c:e2:f0:e5:45:42:57:72:bb:87:
0a:ea:e6:9d:fc:2a:72:d4:68:c0:c9:0e:64:60:1b:b4:68:6d:
71:85:21:6c:e9:ba:7c:43:46:d9:0c:f7:04:75:c2:31:57:b1:
d3:12:27:d6:96:9c:47:24:ee:11:ba:25:d4:59:67:45:50:3a:
c8:b5:85:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:32 2023 by rpki-client on console-fra.rpki-client.org