Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/jKDhBJkuFf4wE_s9WoQPWDLXSFY.roa
File: jKDhBJkuFf4wE_s9WoQPWDLXSFY.roa (raw, json)
Hash identifier: 6auJmauJq9QOW6rtq/vyxCLVn9NS2knXy/rXPeND4MM=
Subject key identifier: 8C:A0:E1:04:99:2E:15:FE:30:13:FB:3D:5A:84:0F:58:32:D7:48:56
Certificate issuer: /CN=e96513c94ce36bb89281eaef344b1e51a10778ca
Certificate serial: A47A
Authority key identifier: E9:65:13:C9:4C:E3:6B:B8:92:81:EA:EF:34:4B:1E:51:A1:07:78:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6WUTyUzja7iSgervNEseUaEHeMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/jKDhBJkuFf4wE_s9WoQPWDLXSFY.roa
Signing time: Tue 26 Apr 2022 07:46:23 +0000
ROA not before: Tue 26 Apr 2022 07:46:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48855
IP address blocks: 91.212.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42106 (0xa47a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96513c94ce36bb89281eaef344b1e51a10778ca
Validity
Not Before: Apr 26 07:46:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ca0e104992e15fe3013fb3d5a840f5832d74856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:53:5a:d7:46:fa:6f:ed:04:c2:60:42:ce:34:
d9:7b:94:2e:85:a1:57:5c:c3:57:a8:88:93:97:f3:
37:bd:58:2f:0c:3f:f8:e7:60:b4:d7:23:3b:49:47:
45:06:17:06:bc:e7:70:50:62:ab:5f:41:9e:dd:20:
dc:b4:92:5d:96:ea:b0:42:92:ae:a1:34:08:a3:4d:
34:c8:a8:4c:bd:df:64:3b:61:a2:f5:02:ee:e1:8c:
2f:fa:b9:b6:59:8b:fa:6d:9a:21:8e:71:d4:93:44:
fc:53:24:02:24:c4:4a:92:e0:45:b4:28:c1:fe:f5:
41:9a:56:fd:29:5b:b4:2b:75:57:dc:33:83:80:ea:
2a:a0:a4:51:6e:0a:c1:37:14:58:09:ee:83:cf:3b:
0a:ea:a0:70:7a:3d:64:37:6c:00:fc:9c:e8:71:63:
80:61:12:7c:7c:38:d4:81:bb:e8:95:75:3b:91:c6:
fa:cd:b1:b3:6c:28:5b:59:03:4a:6b:f7:3f:df:21:
43:bc:af:02:56:3c:d4:e7:cb:63:60:b8:c4:3c:cf:
83:f3:cf:ed:d9:0b:1d:93:f8:73:ad:bd:11:dc:56:
ee:6b:85:12:48:b9:c9:99:ca:1c:8c:d8:61:75:76:
e6:79:f9:fb:54:79:05:cc:17:32:c2:8e:a2:8c:86:
b6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A0:E1:04:99:2E:15:FE:30:13:FB:3D:5A:84:0F:58:32:D7:48:56
X509v3 Authority Key Identifier:
keyid:E9:65:13:C9:4C:E3:6B:B8:92:81:EA:EF:34:4B:1E:51:A1:07:78:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6WUTyUzja7iSgervNEseUaEHeMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/jKDhBJkuFf4wE_s9WoQPWDLXSFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/0a8963-8919-4a88-a37c-db1935697889/1/6WUTyUzja7iSgervNEseUaEHeMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.59.0/24
Signature Algorithm: sha256WithRSAEncryption
38:3f:4a:3e:7a:7f:60:38:1f:8f:56:68:eb:87:21:03:db:57:
a7:99:db:98:c9:b9:56:0e:f3:d9:91:93:df:17:85:d6:6d:7c:
55:5b:08:69:6d:ba:bc:14:0f:92:4b:f0:fe:86:07:a0:7e:7a:
43:13:b9:fd:31:4e:1f:16:23:5e:f1:5e:03:e6:fd:1b:c4:ff:
3e:c8:09:14:d1:2c:95:dd:ab:01:ad:53:ad:98:aa:ad:a1:1b:
dc:4b:ef:cf:8d:b6:42:48:73:fd:77:c3:94:c0:8a:2d:ff:5b:
2d:0b:ee:af:a3:96:c7:5d:3f:0a:17:1b:23:7c:ee:e7:05:f2:
7a:e9:3f:8c:bc:e2:c1:d6:22:1f:f9:76:c7:96:75:f2:43:dd:
8f:6e:e2:37:f0:ab:c1:f8:3e:1e:1e:3a:ac:19:08:cd:f7:56:
35:c0:9d:48:e9:3a:ad:e1:00:26:1d:e3:75:fb:d8:6c:ca:77:
c3:18:36:84:46:81:82:ee:ba:72:1e:8e:23:2f:9c:a8:70:4a:
40:20:cf:ef:a1:0a:02:ac:76:dc:aa:ed:fc:92:4d:1e:c6:2c:
3f:89:ed:af:32:87:13:80:c2:2c:3a:77:9b:8b:3b:09:80:f9:
1a:94:25:07:3e:bf:1c:19:35:72:71:aa:e2:f7:5c:b6:e3:60:
8f:5b:ca:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:43 2023 by rpki-client on console-ams.rpki-client.org