Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/aca994-f3c0-45a4-a642-6d7602d24c83/1/JsOdXBfI4QRr0oJimstw0WY3ZUg.roa
File: JsOdXBfI4QRr0oJimstw0WY3ZUg.roa (raw, json)
Hash identifier: kij0LYKJH4yhsTDTOiYXvKPrHyqQ1oGelZ7pnqR8+n4=
Subject key identifier: 26:C3:9D:5C:17:C8:E1:04:6B:D2:82:62:9A:CB:70:D1:66:37:65:48
Certificate issuer: /CN=8e6d75b4e4986faccb614b334e45d5e039352a9c
Certificate serial: 015F5749
Authority key identifier: 8E:6D:75:B4:E4:98:6F:AC:CB:61:4B:33:4E:45:D5:E0:39:35:2A:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jm11tOSYb6zLYUszTkXV4Dk1Kpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/aca994-f3c0-45a4-a642-6d7602d24c83/1/JsOdXBfI4QRr0oJimstw0WY3ZUg.roa
Signing time: Sat 01 Jan 2022 14:06:35 +0000
ROA not before: Sat 01 Jan 2022 14:06:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20691
IP address blocks: 91.209.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23025481 (0x15f5749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e6d75b4e4986faccb614b334e45d5e039352a9c
Validity
Not Before: Jan 1 14:06:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26c39d5c17c8e1046bd282629acb70d166376548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4e:2f:2f:9f:8c:c1:f5:ea:fe:7c:58:94:6a:
07:c5:5d:6e:90:02:20:df:9c:a4:26:2b:20:66:ce:
3e:ed:17:d6:12:a3:76:72:d8:22:1d:39:14:9e:ac:
28:4e:1b:fd:a7:1e:43:4b:8d:f4:9b:64:3c:f4:98:
d0:53:f1:01:f3:4c:c0:09:e6:a9:05:13:e8:50:41:
6d:95:cd:bc:25:42:2a:41:53:bb:61:8b:74:42:03:
49:fc:98:0b:33:3f:8a:03:c4:b5:a1:58:13:fb:de:
a9:67:b2:91:ea:0a:cf:a8:c8:54:4f:16:32:83:39:
89:a7:89:2d:d9:b4:da:3c:9d:8d:b3:65:cd:4b:78:
58:78:21:db:87:07:39:72:83:dc:35:ad:96:4d:e2:
5e:89:71:b6:c6:7a:5d:d5:4a:f9:99:da:85:e6:49:
4a:6b:91:f2:5a:6b:4c:94:3e:11:a3:ea:5b:a7:d1:
2e:da:13:74:07:60:53:80:57:65:d7:ea:25:9d:d4:
68:0f:56:93:a2:e5:db:68:30:d7:77:59:16:24:9d:
ff:2e:6c:93:51:0e:a6:0c:60:39:28:01:81:4d:8f:
b1:f9:4c:98:fc:6e:b0:46:2d:d3:e0:dd:be:23:81:
05:85:c9:93:44:40:8c:6c:fd:ac:1e:2c:9d:70:6a:
5b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C3:9D:5C:17:C8:E1:04:6B:D2:82:62:9A:CB:70:D1:66:37:65:48
X509v3 Authority Key Identifier:
keyid:8E:6D:75:B4:E4:98:6F:AC:CB:61:4B:33:4E:45:D5:E0:39:35:2A:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jm11tOSYb6zLYUszTkXV4Dk1Kpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/aca994-f3c0-45a4-a642-6d7602d24c83/1/JsOdXBfI4QRr0oJimstw0WY3ZUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/aca994-f3c0-45a4-a642-6d7602d24c83/1/jm11tOSYb6zLYUszTkXV4Dk1Kpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.188.0/24
Signature Algorithm: sha256WithRSAEncryption
40:73:cb:10:28:21:d2:7b:0c:3c:06:30:32:42:26:95:0c:b2:
81:1b:7f:6f:69:5d:5c:d2:65:24:2b:2a:80:de:bd:6e:88:2a:
18:87:a5:e3:e8:f5:0e:9a:bf:04:7a:76:f5:35:2b:7b:ed:da:
6e:5b:c6:cd:e5:3b:28:17:70:7d:5c:11:59:7e:19:8a:d1:18:
6a:2d:d9:84:6a:26:bd:f2:c8:73:3a:4e:1f:3a:3c:18:37:a2:
be:5d:55:f0:3a:37:1a:34:33:66:c3:b3:d0:0e:67:95:0f:53:
08:88:72:0f:60:21:3b:94:e1:bc:8f:67:fc:9d:4c:10:dd:47:
5c:7c:5a:7a:35:b2:a9:9e:c7:4e:94:9a:60:77:7b:b1:50:7a:
c4:f0:21:7a:aa:e6:de:ad:ca:36:ef:c8:0d:12:b2:06:33:5a:
09:62:42:32:3e:d8:c7:8a:7f:0f:d7:87:04:47:be:43:a3:d3:
ce:aa:f2:44:5a:b3:e2:27:52:38:80:ff:4e:7d:f9:83:d2:6c:
36:d8:e0:08:8b:02:ba:26:b3:e5:81:7c:dd:0a:95:de:8e:54:
d4:71:83:b8:9b:ef:ca:68:f1:19:6f:e7:c4:57:f1:99:e2:2e:
b2:99:67:80:2d:e4:b3:c5:9e:7f:ee:57:4f:48:86:40:c7:2e:
86:fc:33:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:43 2023 by rpki-client on console-fra.rpki-client.org