Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/94AfnJ8ZiX4UmG2usYDUjS6rAEA.roa
File: 94AfnJ8ZiX4UmG2usYDUjS6rAEA.roa (raw, json)
Hash identifier: eUBxtEhAFfAGCSturKiOpw6sWmWeKrTPTLwU3PSL1xY=
Subject key identifier: F7:80:1F:9C:9F:19:89:7E:14:98:6D:AE:B1:80:D4:8D:2E:AB:00:40
Certificate issuer: /CN=3035546ea5b0790549ca0ba1bb2a3e1dbae4a3da
Certificate serial: 02FA73FE
Authority key identifier: 30:35:54:6E:A5:B0:79:05:49:CA:0B:A1:BB:2A:3E:1D:BA:E4:A3:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MDVUbqWweQVJyguhuyo-Hbrko9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/94AfnJ8ZiX4UmG2usYDUjS6rAEA.roa
Signing time: Sat 01 Jan 2022 01:58:47 +0000
ROA not before: Sat 01 Jan 2022 01:58:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48016
IP address blocks: 91.208.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49968126 (0x2fa73fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3035546ea5b0790549ca0ba1bb2a3e1dbae4a3da
Validity
Not Before: Jan 1 01:58:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7801f9c9f19897e14986daeb180d48d2eab0040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9a:45:5a:f0:d5:cc:b1:62:68:0e:37:15:28:
e7:26:d4:6b:dd:99:fe:d8:57:b7:4a:91:35:0a:10:
b1:ec:76:c8:22:4b:ba:fe:23:4c:db:ea:3d:34:4a:
df:39:ee:3d:b6:c4:86:cf:1f:0d:69:23:bc:f5:27:
bc:53:4f:ca:ea:3b:11:8e:f4:ac:49:16:01:51:86:
1f:64:85:a0:8d:8c:dc:fd:b7:ab:3b:39:ca:f1:7a:
ea:4b:d9:4e:42:7e:33:f9:d2:41:c4:72:9c:a8:c4:
17:ea:33:2b:70:07:ec:07:9d:49:0e:a2:37:1c:2b:
af:a6:f6:f9:3a:29:17:7b:24:05:3f:15:44:f6:d0:
01:b2:76:1a:28:1e:39:9b:0b:23:8b:95:7f:8c:f4:
03:52:08:b5:5d:6d:1a:7d:48:46:c9:0b:88:dc:66:
e6:59:f9:ef:dc:9b:bc:4a:c3:6e:cf:7b:9d:02:27:
d8:70:d3:21:11:fb:68:50:f6:57:73:94:2b:31:5f:
be:05:7b:9a:c4:88:47:fe:de:3d:bc:61:b5:54:20:
a1:b3:31:d4:a6:79:ec:ec:eb:54:b2:4f:ef:68:e4:
49:85:84:bf:74:ed:06:ac:0d:17:17:99:16:58:a7:
d8:1e:7b:0f:23:c9:f0:8f:06:63:d9:ab:ba:0b:ea:
1f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:80:1F:9C:9F:19:89:7E:14:98:6D:AE:B1:80:D4:8D:2E:AB:00:40
X509v3 Authority Key Identifier:
keyid:30:35:54:6E:A5:B0:79:05:49:CA:0B:A1:BB:2A:3E:1D:BA:E4:A3:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MDVUbqWweQVJyguhuyo-Hbrko9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/94AfnJ8ZiX4UmG2usYDUjS6rAEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/MDVUbqWweQVJyguhuyo-Hbrko9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.225.0/24
Signature Algorithm: sha256WithRSAEncryption
65:60:39:df:5a:6f:e7:15:c5:d8:c8:cf:dc:fe:65:c4:6f:41:
01:3e:96:79:2b:1c:ce:67:b3:2f:13:77:d9:bc:33:54:70:a5:
79:4d:ab:38:04:a9:7b:81:29:82:f6:35:42:f5:76:8b:9f:80:
3b:7e:c0:86:a0:af:da:ff:84:c2:97:25:4f:48:cf:a6:71:2a:
3f:24:89:0f:7c:d1:1c:8f:14:b5:04:bd:3d:96:c1:56:0e:57:
18:14:9c:0f:09:ca:d1:a2:b6:ce:fd:73:1b:62:ed:3a:b2:b4:
ac:62:31:f5:1b:b0:e7:46:fb:fb:0c:2b:06:18:89:5c:9a:cd:
4c:78:69:48:32:b9:26:09:5f:3f:cc:25:d6:a2:31:84:e2:f5:
d1:3c:76:02:dd:2f:61:8b:e4:cf:23:f0:7f:a0:11:a2:d9:89:
d3:ce:90:df:f2:9b:c2:d1:70:0a:0b:0e:c6:da:f2:6b:ef:cc:
3a:64:dd:d2:ea:8b:82:e4:aa:97:9d:e7:ec:94:42:61:d9:78:
12:b8:ed:d2:5c:ba:fb:6b:ba:2d:6b:e2:45:7a:7a:6b:1c:db:
21:f7:3c:5c:93:c0:17:f9:a0:26:ad:21:cb:91:d2:ea:65:72:
4a:26:0f:54:6a:61:70:7d:d2:b4:9b:5a:35:e5:d3:a9:a7:91:
0c:46:6f:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:30 2023 by rpki-client on console.sobornost.net