Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/gU56-Rw8Mu2wtmyf-ez0Ar1WOP4.roa
File: gU56-Rw8Mu2wtmyf-ez0Ar1WOP4.roa (raw, json)
Hash identifier: jUXFu2VARtY8e+NN5RqC/MippwzH3jcfcshH6EPwz8M=
Subject key identifier: 81:4E:7A:F9:1C:3C:32:ED:B0:B6:6C:9F:F9:EC:F4:02:BD:56:38:FE
Certificate issuer: /CN=3035546ea5b0790549ca0ba1bb2a3e1dbae4a3da
Certificate serial: 02FBC922
Authority key identifier: 30:35:54:6E:A5:B0:79:05:49:CA:0B:A1:BB:2A:3E:1D:BA:E4:A3:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MDVUbqWweQVJyguhuyo-Hbrko9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/gU56-Rw8Mu2wtmyf-ez0Ar1WOP4.roa
Signing time: Sat 01 Jan 2022 01:58:47 +0000
ROA not before: Sat 01 Jan 2022 01:58:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197441
IP address blocks: 91.208.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50055458 (0x2fbc922)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3035546ea5b0790549ca0ba1bb2a3e1dbae4a3da
Validity
Not Before: Jan 1 01:58:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=814e7af91c3c32edb0b66c9ff9ecf402bd5638fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fa:45:87:70:17:c6:52:ee:61:d9:fc:c2:82:
59:33:e9:e7:c1:4b:29:47:f6:ec:04:00:ab:22:a5:
e6:f9:40:3d:36:f6:b0:00:41:f9:4b:3b:70:9e:5b:
08:86:de:ea:12:ab:a0:13:7b:87:56:ab:11:18:53:
aa:bc:4e:76:69:56:38:82:95:0c:f2:e9:66:da:86:
11:ad:5c:07:00:7c:b4:8d:78:4c:db:80:c9:1a:4e:
63:5b:4a:8b:6b:b7:13:d6:c0:59:08:8a:91:50:a4:
62:76:7c:45:4d:66:61:63:ce:30:a5:8d:48:75:6e:
6e:0f:c0:68:8f:d1:c1:ab:19:11:7e:58:26:00:ca:
7b:2e:8c:fb:b7:c0:5f:f3:f6:76:8b:fd:c9:4c:6f:
c4:58:00:f4:d6:27:86:4d:61:53:60:d1:a3:40:b0:
0e:da:e9:fa:f9:51:9b:af:51:36:1f:27:7e:6e:a3:
3d:77:8a:7d:01:de:60:cb:50:11:82:b4:a9:f2:a3:
46:da:5a:4b:21:5f:49:d3:a8:5b:43:9f:7e:2b:ba:
ca:e1:41:ab:65:00:c4:54:5a:47:7e:c0:63:e6:02:
3e:53:76:6c:9e:77:d8:09:ac:68:fd:4a:ed:78:d4:
a2:7e:a3:b7:4d:e4:87:d2:74:e2:82:e4:d5:e6:55:
a4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4E:7A:F9:1C:3C:32:ED:B0:B6:6C:9F:F9:EC:F4:02:BD:56:38:FE
X509v3 Authority Key Identifier:
keyid:30:35:54:6E:A5:B0:79:05:49:CA:0B:A1:BB:2A:3E:1D:BA:E4:A3:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MDVUbqWweQVJyguhuyo-Hbrko9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/gU56-Rw8Mu2wtmyf-ez0Ar1WOP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/d4dade-caef-4cd0-aef3-004f0cb3ed77/1/MDVUbqWweQVJyguhuyo-Hbrko9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.225.0/24
Signature Algorithm: sha256WithRSAEncryption
31:a9:1d:c6:33:a2:82:83:b7:98:2a:ab:18:ed:01:75:28:c1:
df:75:af:94:37:9e:10:30:4e:29:1c:90:b2:23:64:9a:b1:9f:
a9:70:fd:05:21:39:37:8f:d7:d7:61:57:07:02:52:ed:8f:87:
bf:c1:ff:56:f0:f8:38:c9:ec:8b:e1:0e:f8:c5:22:52:b7:95:
81:f1:58:5a:d3:6c:c2:61:73:b6:32:61:89:aa:2b:53:00:3c:
89:24:35:ce:d4:6e:27:97:d6:f6:11:7f:d3:69:4b:e8:14:6a:
26:75:1a:0a:14:c4:14:e0:83:50:f2:d4:d3:4d:47:59:de:b4:
95:1c:80:f7:97:09:4d:a5:d0:e6:90:f6:26:ba:fa:33:29:6f:
04:78:fb:51:94:4c:12:d1:24:54:2b:3f:3d:ad:0c:c7:eb:d0:
bb:28:3a:13:cd:0f:12:83:2b:4f:46:46:d6:38:b3:82:3f:10:
f2:b8:c7:ec:1b:56:72:18:8b:be:3d:bd:9b:64:7d:22:8a:d1:
aa:c9:a3:7e:9f:da:fc:ff:d4:93:fd:60:ad:43:b9:fb:08:00:
e8:00:2e:a1:ac:63:36:86:cd:fd:68:97:a1:03:e8:d5:52:c3:
69:25:7e:6f:68:37:71:14:f7:e4:b6:fe:ba:f1:52:0f:75:09:
6e:8b:88:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:30 2023 by rpki-client on console.sobornost.net