Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b4597f-ee1c-462b-ab84-ebe59e274840/1/VnAh7hHfXOlvs2mdkmnlKF_oiAM.roa
File: VnAh7hHfXOlvs2mdkmnlKF_oiAM.roa (raw, json)
Hash identifier: snnB/rrpBFscS9W38+7NfACchyDMhPT/w8jjTF4fgg4=
Subject key identifier: 56:70:21:EE:11:DF:5C:E9:6F:B3:69:9D:92:69:E5:28:5F:E8:88:03
Certificate issuer: /CN=e87244897c7917b791e100d4680339c4a3593fc3
Certificate serial: 14261AA1
Authority key identifier: E8:72:44:89:7C:79:17:B7:91:E1:00:D4:68:03:39:C4:A3:59:3F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6HJEiXx5F7eR4QDUaAM5xKNZP8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b4597f-ee1c-462b-ab84-ebe59e274840/1/VnAh7hHfXOlvs2mdkmnlKF_oiAM.roa
Signing time: Fri 21 Jan 2022 10:22:31 +0000
ROA not before: Fri 21 Jan 2022 10:22:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197093
IP address blocks: 91.223.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 338041505 (0x14261aa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e87244897c7917b791e100d4680339c4a3593fc3
Validity
Not Before: Jan 21 10:22:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=567021ee11df5ce96fb3699d9269e5285fe88803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fa:1f:0c:18:7d:a9:b5:4b:93:c7:cc:af:e3:
30:ac:f9:ec:22:2d:3e:e2:1a:fa:4e:c9:e9:f2:8a:
df:b2:1d:92:4c:bb:cd:b7:8d:68:81:be:48:a3:d3:
f5:da:cd:4a:08:20:77:bf:60:5d:80:6f:76:fc:3a:
68:5e:79:cf:d9:07:85:0d:a6:fc:ae:6c:69:10:61:
a3:98:49:44:a7:85:e8:50:56:34:25:df:69:b6:67:
86:05:03:f4:ac:0f:0c:3d:7c:23:e6:c2:df:35:66:
99:4b:26:34:45:31:cb:52:81:77:48:af:76:30:a6:
8a:90:78:ff:ce:d1:92:f1:e7:b0:c2:0f:8a:07:70:
ac:48:e8:57:d2:af:89:c6:f3:54:37:99:3d:2f:01:
8b:f4:3c:73:05:e5:84:3c:f6:22:2e:1c:73:71:ad:
61:02:f2:65:06:a8:82:5e:2e:14:87:e3:41:a3:b1:
bc:b3:50:42:f4:b9:18:01:23:33:0a:da:94:d1:5a:
c2:87:58:e2:ad:9b:5c:6f:f4:bf:15:a5:d2:32:9c:
f7:71:68:04:f5:a8:ea:0d:28:2c:e5:69:a8:de:f5:
89:bb:dc:1e:7f:03:f7:4d:96:4d:48:f0:6f:ab:b6:
67:f2:b4:b8:18:3a:b9:5f:17:c5:ff:c0:4c:d2:90:
f0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:70:21:EE:11:DF:5C:E9:6F:B3:69:9D:92:69:E5:28:5F:E8:88:03
X509v3 Authority Key Identifier:
keyid:E8:72:44:89:7C:79:17:B7:91:E1:00:D4:68:03:39:C4:A3:59:3F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6HJEiXx5F7eR4QDUaAM5xKNZP8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b4597f-ee1c-462b-ab84-ebe59e274840/1/VnAh7hHfXOlvs2mdkmnlKF_oiAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b4597f-ee1c-462b-ab84-ebe59e274840/1/6HJEiXx5F7eR4QDUaAM5xKNZP8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.55.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:83:9f:11:ec:b2:d8:fa:2f:da:2d:60:c2:6a:f6:18:6d:a6:
bd:b5:97:f8:a8:a5:f0:c1:7d:13:0a:e5:e3:40:2c:79:0c:da:
4b:2d:96:24:dc:74:29:48:13:25:67:c9:84:b1:2f:58:d7:e1:
80:0f:64:e2:88:16:58:ec:1a:1f:66:db:74:37:10:be:54:1d:
49:9f:67:c6:f9:30:93:a3:76:07:f7:f1:39:a7:49:91:67:40:
f9:a3:e6:dd:0e:cd:d4:87:9b:2e:2a:25:9a:e4:ea:55:c7:62:
1a:4a:2f:4c:c6:2f:f4:fc:a9:1b:c3:d7:d6:cf:74:c1:72:07:
d9:ba:68:73:09:6d:e9:71:c7:7d:67:6c:30:78:9b:1c:b9:92:
cb:4c:f9:01:5a:3f:db:7e:46:93:e0:7d:58:15:40:7d:36:c4:
4c:fd:f4:d0:8e:8b:fd:eb:20:c5:bd:50:04:eb:bb:9d:25:ca:
94:17:aa:5a:fa:06:b7:5e:af:29:d9:70:f4:a2:ba:37:24:1e:
b9:31:1b:96:6b:a7:b6:76:8a:ca:22:f8:78:67:ff:0a:aa:42:
31:22:a1:e6:9e:ba:e1:b5:d5:99:70:fb:5e:fe:5c:00:87:f2:
16:d7:57:23:e7:50:bc:cd:a3:d5:e4:1f:89:ef:85:92:b4:e1:
b0:06:18:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:35 2023 by rpki-client on console-fra.rpki-client.org