Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/a80e43-3c99-48ae-adac-24bdbc045981/1/_O7HcpS1MDGkpyb1cvIWZnq54lU.roa
File: _O7HcpS1MDGkpyb1cvIWZnq54lU.roa (raw, json)
Hash identifier: cjU0qqYzb8dCs3HuZ/6s6+1iB1lUE32NsKB8MkxBK7M=
Subject key identifier: FC:EE:C7:72:94:B5:30:31:A4:A7:26:F5:72:F2:16:66:7A:B9:E2:55
Certificate issuer: /CN=904567f6e6755663bd99a3eef0ded53a42004193
Certificate serial: 018326ED35A8A97BB3CF7017E0A5C629FD1E
Authority key identifier: 90:45:67:F6:E6:75:56:63:BD:99:A3:EE:F0:DE:D5:3A:42:00:41:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kEVn9uZ1VmO9maPu8N7VOkIAQZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/a80e43-3c99-48ae-adac-24bdbc045981/1/_O7HcpS1MDGkpyb1cvIWZnq54lU.roa
Signing time: Sat 10 Sep 2022 10:23:43 +0000
ROA not before: Sat 10 Sep 2022 10:23:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 45.91.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:ed:35:a8:a9:7b:b3:cf:70:17:e0:a5:c6:29:fd:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=904567f6e6755663bd99a3eef0ded53a42004193
Validity
Not Before: Sep 10 10:23:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fceec77294b53031a4a726f572f216667ab9e255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3e:0f:b1:52:20:72:a9:7e:89:19:2f:b8:0a:
4e:4c:08:92:2e:b5:e4:91:59:ba:67:40:ed:8a:6e:
a7:09:f1:39:04:6d:b3:22:20:63:df:c0:4f:6c:bb:
bf:43:be:26:73:15:21:69:4a:3c:b9:56:8b:93:5a:
e5:b5:fa:60:93:4f:ee:ff:4d:26:30:45:e9:91:96:
a2:44:82:18:be:aa:e3:a6:75:70:e6:ed:57:3a:8f:
a8:49:1e:29:a0:0e:2e:65:18:42:a1:ad:f4:00:9f:
0d:74:af:cc:0f:0c:11:46:3f:e8:54:35:c9:91:53:
06:13:bd:78:d7:24:2f:30:2d:9d:45:10:6f:42:95:
c0:a7:3b:c5:b4:1b:89:bd:30:1c:32:e9:00:8f:dc:
70:11:64:2d:5c:f7:f0:34:68:ca:52:9e:b5:2f:82:
19:a5:4f:c9:70:77:bb:c2:6a:51:d2:7c:c5:56:79:
84:fe:ea:78:7d:c4:c6:15:ad:1e:d2:c3:f8:6d:8c:
ff:93:a1:b8:22:e3:76:da:95:e5:a6:14:fa:4d:ee:
b3:c8:ef:d4:bf:a8:21:6f:53:72:b0:c3:87:8e:21:
93:6d:b2:86:28:e1:06:ed:14:8b:b9:08:c4:56:f8:
d0:94:3d:a3:3c:52:ae:6f:ef:ed:81:c7:3e:6d:38:
10:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:EE:C7:72:94:B5:30:31:A4:A7:26:F5:72:F2:16:66:7A:B9:E2:55
X509v3 Authority Key Identifier:
keyid:90:45:67:F6:E6:75:56:63:BD:99:A3:EE:F0:DE:D5:3A:42:00:41:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kEVn9uZ1VmO9maPu8N7VOkIAQZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a80e43-3c99-48ae-adac-24bdbc045981/1/_O7HcpS1MDGkpyb1cvIWZnq54lU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a80e43-3c99-48ae-adac-24bdbc045981/1/kEVn9uZ1VmO9maPu8N7VOkIAQZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.149.0/24
Signature Algorithm: sha256WithRSAEncryption
34:79:02:64:77:7f:73:4b:28:00:b5:df:9d:8b:f4:c5:9e:6d:
e5:9b:61:7c:68:c9:4b:3e:b2:11:23:d7:a5:16:be:b5:0d:e8:
fb:b3:3f:46:f5:50:26:1c:8b:33:34:8e:d4:8d:a3:25:33:cc:
90:19:df:45:1f:7c:d6:77:7d:72:9e:8c:41:6f:fb:41:c0:58:
0a:46:bd:f2:fe:5b:82:18:ca:99:83:c8:f1:b5:c4:1d:86:f1:
99:d8:ab:4b:c5:17:8b:d9:ea:72:89:05:ed:95:b0:f2:8c:de:
53:e3:84:b2:e4:12:cc:c5:af:85:24:73:a7:f6:0e:4e:aa:b4:
7d:61:34:ca:69:a4:59:2d:4f:62:4e:69:b6:aa:5e:3d:27:75:
11:1b:a4:dd:75:a0:a7:e8:69:3b:90:d1:15:58:2f:1f:53:13:
ca:1d:ea:5e:55:db:d9:1e:9e:ce:1e:19:b1:a2:30:87:53:0d:
fd:99:09:08:5f:36:fc:8a:66:e0:86:49:60:e5:06:66:34:9c:
42:98:2e:1c:45:84:2f:3f:db:ae:1b:d7:5b:b1:21:5e:35:66:
e0:87:7a:44:f5:c4:91:21:b6:f2:91:00:04:ad:1e:53:18:82:
bf:2f:46:a1:6f:25:84:c7:de:c2:1e:5d:20:7d:01:71:b9:c6:
9a:a4:9d:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net