Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/453efc-f193-427b-a498-17903a302ec0/1/P8yXv07H-e4tW3R2PcC3u9s5yos.roa
File: P8yXv07H-e4tW3R2PcC3u9s5yos.roa (raw, json)
Hash identifier: /BbDCFYhdaScvsYULOUBPmfJ0FEHUbsjDFPF1v/Pbmo=
Subject key identifier: 3F:CC:97:BF:4E:C7:F9:EE:2D:5B:74:76:3D:C0:B7:BB:DB:39:CA:8B
Certificate issuer: /CN=7e04619ab0f1209b70f10598c69944bf34dbf232
Certificate serial: 03F0F68C
Authority key identifier: 7E:04:61:9A:B0:F1:20:9B:70:F1:05:98:C6:99:44:BF:34:DB:F2:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgRhmrDxIJtw8QWYxplEvzTb8jI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/453efc-f193-427b-a498-17903a302ec0/1/P8yXv07H-e4tW3R2PcC3u9s5yos.roa
Signing time: Sat 01 Jan 2022 04:59:10 +0000
ROA not before: Sat 01 Jan 2022 04:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44395
IP address blocks: 91.210.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66123404 (0x3f0f68c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e04619ab0f1209b70f10598c69944bf34dbf232
Validity
Not Before: Jan 1 04:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fcc97bf4ec7f9ee2d5b74763dc0b7bbdb39ca8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:54:46:38:53:db:b1:d8:8e:92:8d:90:b0:fe:
90:69:a3:c6:9a:62:b7:c8:73:e8:1c:1b:ec:43:cd:
48:5a:60:34:cd:c7:35:10:d8:45:b0:9f:43:f7:a4:
9a:9c:3b:17:77:b6:51:47:33:a6:45:a4:d3:5c:05:
db:ea:25:55:ff:d4:5c:50:69:f1:67:69:7e:54:83:
26:ff:69:d2:a2:e4:15:e2:57:38:c7:ce:62:48:56:
fa:9a:44:bd:45:b0:34:6e:93:79:4d:66:c7:da:be:
6d:9f:71:5c:b2:1f:5e:00:72:39:34:2b:34:bc:7c:
29:37:0d:19:87:dd:42:96:82:70:ce:2d:f1:1d:b2:
c0:b4:e6:62:2e:fd:f6:04:e7:8a:5f:90:f7:7b:97:
05:2c:5a:af:ca:ac:1a:c1:20:6a:5f:fc:53:11:71:
aa:68:74:e0:6c:57:f3:82:86:11:fe:c7:00:59:3b:
ad:94:85:85:dc:7c:b7:77:26:7f:3d:d1:4a:b5:99:
de:20:5e:4b:f3:4c:f3:66:39:93:0b:45:df:83:9c:
1d:54:ad:b8:54:e1:cb:03:93:80:c0:51:c3:6b:09:
45:85:cd:47:4b:d4:22:8a:39:6b:3b:18:91:43:01:
63:3e:ac:d4:6f:33:d5:28:de:9a:2f:5f:83:ac:c8:
5a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:CC:97:BF:4E:C7:F9:EE:2D:5B:74:76:3D:C0:B7:BB:DB:39:CA:8B
X509v3 Authority Key Identifier:
keyid:7E:04:61:9A:B0:F1:20:9B:70:F1:05:98:C6:99:44:BF:34:DB:F2:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgRhmrDxIJtw8QWYxplEvzTb8jI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/453efc-f193-427b-a498-17903a302ec0/1/P8yXv07H-e4tW3R2PcC3u9s5yos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/453efc-f193-427b-a498-17903a302ec0/1/fgRhmrDxIJtw8QWYxplEvzTb8jI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.40.0/22
Signature Algorithm: sha256WithRSAEncryption
92:45:ae:2f:bd:e7:37:07:b3:48:04:eb:93:e2:51:c9:06:9d:
80:a4:c9:bd:d1:91:c0:a3:99:25:e1:fb:f7:c6:bd:33:02:b0:
b3:6d:06:b5:ce:65:7c:9f:19:29:68:96:e9:9e:f8:3d:97:71:
ea:c4:76:41:50:d9:7d:19:08:4b:0b:3a:49:14:12:62:8b:05:
74:73:e4:82:a8:06:0d:0c:ec:ba:f0:74:9a:a0:cf:6b:51:28:
bb:43:e6:0d:0d:45:9b:6d:2b:09:d4:7e:a0:b0:d5:05:09:0e:
50:c3:b6:f7:04:63:c6:cf:f0:35:a8:d6:17:e5:df:65:41:26:
04:e1:8d:b8:d8:90:9c:fe:de:ca:a3:44:c0:24:db:76:bc:91:
67:a2:e6:b6:f3:7a:67:f1:db:06:7a:25:2a:38:b9:f1:02:ba:
ad:e4:56:fd:45:ef:c3:19:2b:0c:da:a3:29:fc:29:aa:55:13:
57:1e:3a:cf:67:a9:aa:2b:cd:a7:ad:10:17:24:d9:de:9a:f1:
38:45:62:60:3c:87:4c:27:24:bd:7f:58:2d:dc:94:b7:47:d3:
06:4f:9e:f0:d6:2f:39:82:d0:b8:43:6b:7c:02:ba:1f:96:bc:
a2:b5:a3:b9:61:91:19:a2:7e:95:39:6a:49:33:c4:21:04:f6:
56:36:31:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:00 2024 by rpki-client on console-fra.rpki-client.org