Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/BF7etuQX6uCFP_lLtkyQ6wdnpQw.roa
File: BF7etuQX6uCFP_lLtkyQ6wdnpQw.roa (raw, json)
Hash identifier: rkujTZbVMoOUhsuHGnnS/sXpdRaN6mr4YmqUaU3fG2w=
Subject key identifier: 04:5E:DE:B6:E4:17:EA:E0:85:3F:F9:4B:B6:4C:90:EB:07:67:A5:0C
Certificate issuer: /CN=c91820b50007e41c53dd6029b37954d3572f4c29
Certificate serial: 0255D4DD
Authority key identifier: C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/BF7etuQX6uCFP_lLtkyQ6wdnpQw.roa
Signing time: Sat 01 Jan 2022 12:06:16 +0000
ROA not before: Sat 01 Jan 2022 12:06:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48642
IP address blocks: 91.223.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39179485 (0x255d4dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c91820b50007e41c53dd6029b37954d3572f4c29
Validity
Not Before: Jan 1 12:06:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=045edeb6e417eae0853ff94bb64c90eb0767a50c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e4:61:1a:31:68:60:51:b4:42:d1:79:b1:f2:
e6:a6:f5:b2:ad:74:a5:dd:84:f7:0a:55:4d:d5:e2:
d2:5d:98:ba:e5:70:e2:7d:15:82:d3:e6:1d:90:45:
91:c7:e7:0b:16:d9:35:f8:83:de:f6:70:ca:79:4e:
2c:58:50:ed:66:d2:00:bd:a3:8b:3c:01:22:0b:97:
21:60:08:96:88:53:35:82:f9:aa:c7:0a:85:08:ab:
61:6c:99:7e:c6:0b:fe:e1:19:63:bf:4a:da:93:09:
89:a0:3c:5e:0f:30:be:95:d0:ed:47:69:0a:4a:3d:
e6:55:95:db:7c:ef:3e:5f:f7:19:37:d9:47:e6:36:
76:13:e4:a3:00:b4:e5:93:65:05:ac:fa:01:88:a9:
78:fa:c4:3d:b4:d6:4e:f7:65:8a:8f:ae:0e:b6:a7:
2f:83:3e:fb:e8:06:3f:07:bb:bf:ab:9e:99:24:a9:
a3:6d:c3:38:09:c3:4d:87:15:04:f8:58:91:49:37:
64:39:b8:bc:5d:fa:4b:40:9d:40:1a:48:e0:7d:91:
3c:5c:ee:86:2e:01:c6:e6:f2:0b:85:1d:7e:55:05:
ee:8b:8e:ae:a2:a4:8d:4c:d3:72:94:86:cd:4f:be:
39:8d:28:3c:67:f9:a5:6f:a7:a9:f7:a6:65:6f:56:
a4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:5E:DE:B6:E4:17:EA:E0:85:3F:F9:4B:B6:4C:90:EB:07:67:A5:0C
X509v3 Authority Key Identifier:
keyid:C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/BF7etuQX6uCFP_lLtkyQ6wdnpQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.170.0/24
Signature Algorithm: sha256WithRSAEncryption
85:7a:75:7a:f7:f7:76:12:ff:a8:1d:aa:f0:7b:15:df:2a:0c:
80:e8:7c:84:22:91:3e:a2:56:31:17:c5:99:06:b5:98:4c:50:
7b:2f:ac:c8:88:0e:14:8c:a7:62:22:8d:6e:1c:98:ba:0a:3d:
fd:46:dd:8d:45:2b:73:ac:82:22:c4:b9:10:18:dc:d9:81:33:
d7:98:f4:93:4d:7a:58:1d:d2:7a:8b:e5:43:f0:8d:99:2d:9b:
20:1b:49:e2:e2:57:68:fe:a9:10:75:0d:e2:d5:7e:19:53:fe:
39:91:5b:10:c8:60:cf:68:4a:4a:03:d1:ed:0c:9e:a8:ad:9e:
7e:97:04:de:20:d2:5d:fd:dc:d0:c7:1d:15:2c:6f:ad:56:d8:
85:bb:e5:14:92:c1:c5:f9:dc:af:40:8c:fe:c7:a4:ea:7a:bd:
f5:07:70:90:45:e3:c1:c2:41:c9:33:ea:26:2b:08:5b:22:36:
1a:47:a8:a9:f3:76:aa:e9:a5:76:6c:21:c4:4e:39:9a:ed:26:
84:43:6a:16:fc:5b:7d:78:9c:7a:ae:4e:a2:67:d6:55:df:60:
e1:b6:82:a2:0a:89:0c:73:09:83:a3:22:1b:2c:ec:e5:e4:c8:
c5:61:d2:6f:0d:9e:79:2b:66:50:0c:f5:95:bc:c8:ec:3d:38:
61:f4:a0:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:54 2024 by rpki-client on console-ams.rpki-client.org