Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/5ce7f7-e0fe-4361-82c2-474659edb361/1/18DXt6H5SfzSFbtLWwo1hEkIx9Q.roa
File: 18DXt6H5SfzSFbtLWwo1hEkIx9Q.roa (raw, json)
Hash identifier: rktq1ntW9KEgNBP4qDosjyGtEe2eGBnUqArLMbHW4j4=
Subject key identifier: D7:C0:D7:B7:A1:F9:49:FC:D2:15:BB:4B:5B:0A:35:84:49:08:C7:D4
Certificate issuer: /CN=f0b28d6ac6ec40dfb22f96f7b556169c04990137
Certificate serial: 0252A8AA
Authority key identifier: F0:B2:8D:6A:C6:EC:40:DF:B2:2F:96:F7:B5:56:16:9C:04:99:01:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8LKNasbsQN-yL5b3tVYWnASZATc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/5ce7f7-e0fe-4361-82c2-474659edb361/1/18DXt6H5SfzSFbtLWwo1hEkIx9Q.roa
Signing time: Sat 01 Jan 2022 10:57:03 +0000
ROA not before: Sat 01 Jan 2022 10:57:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49169
IP address blocks: 91.212.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38971562 (0x252a8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0b28d6ac6ec40dfb22f96f7b556169c04990137
Validity
Not Before: Jan 1 10:57:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7c0d7b7a1f949fcd215bb4b5b0a35844908c7d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d7:4f:44:b8:6f:c4:5d:61:d1:2a:d6:7e:a5:
52:da:7c:2c:4e:16:77:5f:35:c9:10:04:68:82:af:
c4:b0:11:87:1e:ff:78:90:f1:e4:4c:0e:04:5c:68:
59:b8:ca:3b:b4:b5:ba:a8:52:44:8a:16:d0:ab:be:
0a:c0:b2:76:9d:6b:05:69:8d:3c:29:a9:a0:95:40:
ab:db:a6:fe:8b:52:b8:30:29:85:c0:f0:fb:c4:5e:
7e:c5:47:2d:10:35:62:a1:5b:f9:f2:02:c5:f7:5a:
2b:65:f3:55:b6:86:40:94:2c:34:d6:d8:80:4f:df:
4d:47:77:67:15:70:f2:bd:80:e6:b9:86:85:98:d5:
88:7b:05:ab:81:62:10:cb:92:69:aa:95:14:06:20:
a7:ed:d6:b4:91:91:47:65:ba:94:1f:f8:a9:a4:e7:
aa:2c:f5:d5:b9:59:3a:32:2d:b6:8e:51:a6:d3:6b:
a2:b0:50:49:19:6f:3a:e0:97:68:06:9e:40:39:16:
bb:43:15:05:9b:5a:fe:83:80:96:cf:7d:64:53:68:
2e:06:cd:19:dc:5a:7c:89:70:15:fe:f4:13:c2:b1:
2c:ac:ac:89:5d:bb:35:45:15:4a:b1:04:54:93:1f:
a5:2c:7d:68:48:c3:f5:76:ec:eb:84:9e:ee:f8:95:
ae:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C0:D7:B7:A1:F9:49:FC:D2:15:BB:4B:5B:0A:35:84:49:08:C7:D4
X509v3 Authority Key Identifier:
keyid:F0:B2:8D:6A:C6:EC:40:DF:B2:2F:96:F7:B5:56:16:9C:04:99:01:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8LKNasbsQN-yL5b3tVYWnASZATc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/5ce7f7-e0fe-4361-82c2-474659edb361/1/18DXt6H5SfzSFbtLWwo1hEkIx9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/5ce7f7-e0fe-4361-82c2-474659edb361/1/8LKNasbsQN-yL5b3tVYWnASZATc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.162.0/24
Signature Algorithm: sha256WithRSAEncryption
36:6d:f4:52:75:d0:03:df:07:83:f8:a1:ad:d6:bc:63:51:b8:
27:69:80:2b:fd:99:f1:ef:45:e6:b2:d2:43:4d:a4:9d:f7:76:
a0:01:66:0c:b6:7d:db:d4:32:cb:6a:22:3b:72:47:92:14:ae:
51:d8:f0:69:07:37:6f:b4:6f:62:d5:09:a3:39:8e:8b:83:04:
0f:cc:2b:d1:d0:53:b3:2f:d3:ef:91:04:a7:b6:cf:92:a6:4f:
94:f2:dd:26:bc:a1:bf:72:ba:46:d5:e0:86:36:bc:e6:71:27:
e6:d6:e9:5b:c1:17:12:3d:1f:db:c7:f6:2d:f8:a2:c0:0b:57:
56:c6:ad:2a:85:32:66:57:24:a3:1f:82:ba:78:f3:42:cd:63:
29:fb:79:dd:9b:31:e9:d7:d5:a0:f5:95:78:b8:b0:4c:9f:51:
7d:84:33:cf:2c:6d:96:63:e2:cb:d1:9e:1c:c5:e6:3b:43:ca:
bc:98:4d:21:e1:7a:1b:da:3a:99:57:1f:76:f0:b6:66:fd:a6:
38:a1:6a:2f:58:e2:f0:8f:5a:f6:96:ac:85:88:92:6f:6b:5b:
d3:ef:66:3c:ba:29:be:5a:cc:1b:32:60:ec:2f:e0:03:d5:7b:
e1:fc:89:05:6a:95:04:10:27:ce:72:61:4a:f8:2d:83:5a:3c:
a7:eb:fd:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:28 2023 by rpki-client on console-ams.rpki-client.org