Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/342f39-cdb0-4d50-9c72-3a3862118a0f/1/ItdwoL2bwxloBcYHwgVE9-Qhry8.roa
File: ItdwoL2bwxloBcYHwgVE9-Qhry8.roa (raw, json)
Hash identifier: DuLDC99RdxHbm/5FEUhz3u//X2Lt22X9ys6Fpryrk/U=
Subject key identifier: 22:D7:70:A0:BD:9B:C3:19:68:05:C6:07:C2:05:44:F7:E4:21:AF:2F
Certificate issuer: /CN=e96c63b494b0d08a55aaa1805f620db8dad2557f
Certificate serial: 079DAF
Authority key identifier: E9:6C:63:B4:94:B0:D0:8A:55:AA:A1:80:5F:62:0D:B8:DA:D2:55:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6WxjtJSw0IpVqqGAX2INuNrSVX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/342f39-cdb0-4d50-9c72-3a3862118a0f/1/ItdwoL2bwxloBcYHwgVE9-Qhry8.roa
Signing time: Tue 01 Feb 2022 18:07:12 +0000
ROA not before: Tue 01 Feb 2022 18:07:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.227.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 499119 (0x79daf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96c63b494b0d08a55aaa1805f620db8dad2557f
Validity
Not Before: Feb 1 18:07:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22d770a0bd9bc3196805c607c20544f7e421af2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6f:d6:d1:21:f9:d7:69:9a:7c:5e:51:bf:4b:
e4:89:4c:3c:89:85:cc:f8:14:6d:bb:b7:5a:d3:0b:
5e:8a:24:c7:17:e9:78:4e:8a:d3:b2:35:6c:76:b3:
ae:ae:8e:0f:d8:47:31:3d:01:4e:93:8e:6f:8b:2a:
7c:82:89:8e:fd:f9:df:a8:10:6e:4b:dd:25:45:78:
86:01:24:08:3c:a1:34:e2:3f:be:00:17:19:16:ae:
5f:68:3b:2f:7d:58:94:42:e3:0b:35:34:f6:61:3f:
06:0d:86:2b:90:4f:c2:9d:58:72:69:40:cf:35:01:
1e:96:82:86:51:78:e9:4b:37:70:4c:e9:51:5f:37:
20:a5:94:a2:d6:58:ea:25:a5:97:38:55:ea:1a:ff:
6b:a2:5d:dc:24:55:e6:2c:9f:09:e2:e5:bb:4f:82:
4f:f0:6c:ac:94:d6:a7:11:86:d3:30:ed:23:84:3c:
e3:1c:f5:d3:8f:11:92:80:03:26:2c:a7:5f:68:21:
b8:95:45:c5:a9:80:a5:05:16:dc:f5:87:78:b1:e5:
fd:f3:18:47:42:c6:8d:44:cc:3b:14:43:d3:ac:c4:
28:af:fc:2d:32:61:9f:0f:5f:24:09:f6:7b:ef:e4:
26:6d:9b:1d:f4:16:21:3d:7a:a1:cc:23:9a:2e:63:
fe:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D7:70:A0:BD:9B:C3:19:68:05:C6:07:C2:05:44:F7:E4:21:AF:2F
X509v3 Authority Key Identifier:
keyid:E9:6C:63:B4:94:B0:D0:8A:55:AA:A1:80:5F:62:0D:B8:DA:D2:55:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6WxjtJSw0IpVqqGAX2INuNrSVX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/342f39-cdb0-4d50-9c72-3a3862118a0f/1/ItdwoL2bwxloBcYHwgVE9-Qhry8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/342f39-cdb0-4d50-9c72-3a3862118a0f/1/6WxjtJSw0IpVqqGAX2INuNrSVX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.184.0/24
Signature Algorithm: sha256WithRSAEncryption
91:bd:55:1d:82:a2:02:6c:5e:33:ae:38:89:f4:de:c0:22:c8:
df:89:60:ce:46:b3:f1:bb:43:5d:1e:3a:9f:47:fc:55:54:f3:
37:48:d4:69:a1:11:f2:67:1c:1e:78:1d:97:36:87:29:f7:3d:
fd:ac:c2:5d:98:52:f0:ad:bc:3a:08:79:92:61:19:96:fe:43:
7d:43:be:d2:d0:49:2a:75:d9:b9:68:93:9c:b2:48:5f:fa:72:
d0:e5:74:3d:86:cb:6d:62:39:b1:3c:36:78:7d:95:a3:5b:7a:
cc:4d:90:67:c3:f7:28:a5:5a:83:67:2f:9e:df:7f:37:ec:37:
66:92:94:4f:24:1f:94:9f:66:7a:0f:78:0c:bc:4f:02:13:65:
c7:ba:79:3e:a9:d5:32:33:6c:6b:b3:b4:43:40:88:f3:ec:fe:
ab:26:59:c6:1d:74:c9:c5:42:8c:60:21:c4:e5:45:4c:66:c6:
b4:51:99:a3:2c:1c:d4:5c:21:00:12:25:eb:c1:fa:65:f8:38:
3b:17:b7:2d:ea:e0:96:74:a5:b3:c3:d3:f0:e7:b2:02:84:fe:
90:ee:39:0a:51:0b:66:cb:30:33:48:51:a2:c5:aa:9c:b9:c7:
c0:84:53:16:ce:8b:57:de:e0:08:09:12:4f:b2:87:0c:1d:a5:
f1:db:e5:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:24 2023 by rpki-client on console-ams.rpki-client.org