Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/jWlYPlN1z3Ip3sdN6477VRxcUJs.roa
File: jWlYPlN1z3Ip3sdN6477VRxcUJs.roa (raw, json)
Hash identifier: rAc/z06rSHDoJ7lBw45x7g5zcDEnSh7//00pWtqmaCw=
Subject key identifier: 8D:69:58:3E:53:75:CF:72:29:DE:C7:4D:EB:8E:FB:55:1C:5C:50:9B
Certificate issuer: /CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Certificate serial: 0800F04D
Authority key identifier: 9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/jWlYPlN1z3Ip3sdN6477VRxcUJs.roa
Signing time: Sat 01 Jan 2022 16:01:37 +0000
ROA not before: Sat 01 Jan 2022 16:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205161
IP address blocks: 91.203.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134279245 (0x800f04d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Validity
Not Before: Jan 1 16:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d69583e5375cf7229dec74deb8efb551c5c509b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fb:4d:c2:10:8c:d7:a4:d6:df:75:0e:6e:18:
95:c5:d1:e9:58:49:44:83:03:50:9a:0e:0a:f6:27:
8f:ac:fe:f3:b6:3d:60:0f:0f:ce:93:bf:4b:52:f1:
ba:61:ec:c0:8e:51:04:7b:a4:db:c6:5b:11:7e:01:
28:f4:a6:72:36:e8:50:43:13:2f:44:37:4d:1f:09:
10:46:ed:c8:30:84:00:62:d3:90:5e:85:b0:26:5c:
e4:3e:e8:67:cb:aa:04:d6:5d:e5:63:bb:bc:3e:6b:
b7:25:b2:06:a3:b0:d8:30:d3:e2:72:c2:6f:d8:93:
9b:48:74:a3:7b:8d:2c:f6:18:a1:98:cc:69:4d:bf:
86:d2:08:7a:18:ef:73:b9:f7:4a:f5:39:cd:89:98:
e6:7a:11:27:2e:9a:a1:91:26:97:f7:1e:28:71:bd:
c8:0f:92:d7:8d:f6:7a:df:33:b4:e6:69:ff:af:9a:
19:5a:cf:d4:70:99:1b:a0:45:98:ee:a6:d2:bd:8d:
c0:40:85:3a:ef:96:34:fa:97:8c:9e:f1:ce:ba:ae:
d7:99:63:d4:45:75:ab:9c:95:5f:b2:e4:ff:97:11:
95:da:f4:fd:c0:fc:b6:6b:09:55:55:d2:2b:17:9b:
71:55:66:27:27:41:17:8e:ee:f1:df:4d:45:4b:52:
88:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:69:58:3E:53:75:CF:72:29:DE:C7:4D:EB:8E:FB:55:1C:5C:50:9B
X509v3 Authority Key Identifier:
keyid:9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/jWlYPlN1z3Ip3sdN6477VRxcUJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/mlJqc86Pn2LBShGi6pE-wnPVjEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.225.0/24
Signature Algorithm: sha256WithRSAEncryption
20:06:29:53:9c:90:a2:d4:ad:e6:b1:db:35:2a:2e:2c:20:cd:
88:44:d3:38:d7:93:8a:86:8b:9b:b1:d6:91:36:1b:47:ac:61:
c1:58:27:7b:c1:70:fc:54:b4:06:de:53:f6:83:75:b9:00:d1:
bb:ef:c0:e7:6e:42:f8:ad:f3:22:a3:62:11:c4:8f:0a:aa:44:
6f:c6:51:0a:bb:c5:80:1c:b8:f7:b2:47:1f:04:21:85:9b:44:
9b:79:20:dd:2a:3b:5a:a9:74:9e:1d:f2:53:a4:35:45:49:66:
a4:a0:85:1e:c8:23:1d:f8:0f:21:db:c0:41:88:e2:42:d1:46:
e5:e1:a2:56:19:68:ae:12:38:f7:a7:7a:a3:52:42:e1:53:2b:
d3:83:9c:57:55:5d:54:1b:8e:35:18:68:27:5c:2f:72:e8:97:
1c:2e:1b:b8:5d:6c:24:88:8d:44:0b:d4:1a:32:b3:c7:8f:e7:
df:75:33:a7:c4:bd:72:eb:3f:55:72:80:60:0c:b8:c2:5f:9b:
e3:92:1d:a8:f3:46:0e:88:dc:82:0d:2a:46:01:67:1f:b6:92:
28:77:9e:37:79:b3:ff:03:ee:9e:9e:67:38:dd:a2:1a:63:0e:
2f:c5:04:7a:0a:62:13:9a:c4:5d:d7:37:33:37:5a:12:84:82:
b8:d8:20:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:01 2023 by rpki-client on console-fra.rpki-client.org