Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/07e4b2-6b38-4bc0-a680-a60bc7d07878/1/5PxVAUaMBy6tW__9sOXCw-J0bf8.roa
File: 5PxVAUaMBy6tW__9sOXCw-J0bf8.roa (raw, json)
Hash identifier: J4kGscDTYxX2/dglwo84ezsLGDeEiSDmarmpbrQ2wTI=
Subject key identifier: E4:FC:55:01:46:8C:07:2E:AD:5B:FF:FD:B0:E5:C2:C3:E2:74:6D:FF
Certificate issuer: /CN=f11a9a44557d46ff2d8088a228885aff000dc2a2
Certificate serial: 0184F6D2BC45CAF0DB718D281119285C977B
Authority key identifier: F1:1A:9A:44:55:7D:46:FF:2D:80:88:A2:28:88:5A:FF:00:0D:C2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8RqaRFV9Rv8tgIiiKIha_wANwqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/07e4b2-6b38-4bc0-a680-a60bc7d07878/1/5PxVAUaMBy6tW__9sOXCw-J0bf8.roa
Signing time: Fri 09 Dec 2022 12:18:36 +0000
ROA not before: Fri 09 Dec 2022 12:18:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48398
IP address blocks: 91.209.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f6:d2:bc:45:ca:f0:db:71:8d:28:11:19:28:5c:97:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f11a9a44557d46ff2d8088a228885aff000dc2a2
Validity
Not Before: Dec 9 12:18:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4fc5501468c072ead5bfffdb0e5c2c3e2746dff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:74:29:08:a9:7f:b6:7f:99:ca:d5:a1:4a:b6:
3f:90:0d:83:21:03:b6:32:d3:67:b5:c3:1c:da:da:
86:95:30:ec:4f:d9:f4:2e:3a:b9:a9:4e:25:92:10:
78:af:f8:17:32:4e:2b:55:26:86:47:6d:87:8c:82:
21:6f:57:b2:84:c6:b3:f9:3a:5f:56:75:95:9e:3e:
52:ce:ef:84:af:22:dc:bd:36:41:12:7b:16:6f:8d:
a2:cf:60:44:75:d5:b8:df:da:60:70:58:86:18:ce:
b8:18:f9:83:09:f3:64:ec:b0:32:46:ca:f4:aa:7e:
20:6d:1f:e5:5d:7d:82:0a:6f:7c:de:2b:7f:b1:45:
c0:6e:36:b6:f4:d2:34:13:9a:a8:4e:d6:d2:6e:53:
43:28:e3:53:6d:32:4f:23:1f:f0:4b:5e:22:ba:c2:
87:f0:ca:fc:dc:c2:60:9d:77:52:27:59:ce:40:1d:
de:1b:dc:b7:4e:55:6a:2b:22:99:9a:d6:ac:0a:b7:
28:17:43:a6:61:44:a4:3a:e4:06:3c:37:00:a3:a2:
a9:fa:9e:12:d1:15:9e:b7:d3:f8:67:90:1a:a0:74:
39:ff:d8:25:32:9b:d5:d8:5e:0c:f4:fb:cb:40:25:
17:09:58:f4:18:97:27:90:61:9f:ad:96:bf:0b:93:
10:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FC:55:01:46:8C:07:2E:AD:5B:FF:FD:B0:E5:C2:C3:E2:74:6D:FF
X509v3 Authority Key Identifier:
keyid:F1:1A:9A:44:55:7D:46:FF:2D:80:88:A2:28:88:5A:FF:00:0D:C2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8RqaRFV9Rv8tgIiiKIha_wANwqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/07e4b2-6b38-4bc0-a680-a60bc7d07878/1/5PxVAUaMBy6tW__9sOXCw-J0bf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/07e4b2-6b38-4bc0-a680-a60bc7d07878/1/8RqaRFV9Rv8tgIiiKIha_wANwqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.145.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ed:7b:18:e3:d8:f4:6b:af:32:e1:18:a6:3a:25:e3:c9:96:
2c:49:05:07:f4:82:40:e6:8a:8b:ce:5e:be:d5:db:af:c6:31:
12:5a:8d:a5:06:17:c4:9e:54:4a:60:7e:1e:58:a3:a9:25:4b:
3d:0d:b1:92:8a:cb:51:59:73:1e:b5:7d:0e:8a:e4:63:17:67:
e0:12:20:36:80:f7:d6:f9:74:12:d5:b0:9c:e3:0e:9c:0e:10:
da:0b:b0:10:95:02:c8:be:52:37:cf:2f:3d:69:12:34:f1:aa:
eb:a5:b0:14:ca:75:ad:48:e1:6d:cf:d4:12:e3:31:3f:d4:47:
fa:4d:4e:13:54:c8:2e:2d:6a:98:ab:56:12:96:56:c3:3f:0a:
6c:f9:dd:64:3f:93:ae:aa:ae:28:36:5a:ff:8c:be:18:a9:7a:
69:43:cd:ec:a8:18:6a:de:5e:08:9f:b8:94:20:c8:3a:25:0c:
56:0d:ac:66:45:22:1a:33:dd:37:08:2a:2b:40:df:41:0f:1b:
7d:63:f0:56:6a:16:b5:f7:57:05:6f:4d:14:c9:71:ce:09:85:
89:08:cd:ea:a0:62:8d:dc:c1:63:a9:97:f4:70:59:9c:86:c0:
05:e3:af:f0:4e:47:2c:80:f4:9a:8c:93:77:b9:b5:2b:dd:6b:
fc:b1:e5:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:57 2023 by rpki-client on console.sobornost.net