Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/1cd01e-e449-4520-906f-5c35dbaba24b/1/wM3fezVz2InamqiJd1hy-xYkCi0.roa
File: wM3fezVz2InamqiJd1hy-xYkCi0.roa (raw, json)
Hash identifier: 0D92CAAj/OQJ7zn61AKvdt3DvFZdbZy6h4MuUG+2lb4=
Subject key identifier: C0:CD:DF:7B:35:73:D8:89:DA:9A:A8:89:77:58:72:FB:16:24:0A:2D
Certificate issuer: /CN=9a18c790582e99bfb50ee758463dc5afdccbf4bd
Certificate serial: F151
Authority key identifier: 9A:18:C7:90:58:2E:99:BF:B5:0E:E7:58:46:3D:C5:AF:DC:CB:F4:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mhjHkFgumb-1DudYRj3Fr9zL9L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/1cd01e-e449-4520-906f-5c35dbaba24b/1/wM3fezVz2InamqiJd1hy-xYkCi0.roa
Signing time: Tue 26 Apr 2022 06:43:08 +0000
ROA not before: Tue 26 Apr 2022 06:43:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31244
IP address blocks: 91.216.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61777 (0xf151)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a18c790582e99bfb50ee758463dc5afdccbf4bd
Validity
Not Before: Apr 26 06:43:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0cddf7b3573d889da9aa889775872fb16240a2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:44:80:19:7d:e0:ef:c5:a8:ae:b5:4e:41:69:
1d:4a:9f:66:af:cb:52:fc:c7:09:12:3e:24:44:6e:
1e:6c:48:37:bc:fa:03:b7:bd:d4:0e:9c:29:00:76:
af:c8:a2:60:77:9f:59:43:c0:c1:88:4a:0a:91:5d:
52:48:7f:26:11:1b:68:b7:0b:15:64:e5:93:3a:77:
38:34:ee:e3:76:18:b7:9b:7f:59:00:4e:85:ef:15:
38:eb:9e:34:fe:3f:2f:cb:00:1f:31:0b:43:44:33:
db:18:fa:ce:a4:6e:01:b7:f3:17:ad:8d:75:36:59:
48:e7:53:86:9d:30:26:d2:43:45:5e:8e:31:28:c4:
50:d6:a1:23:25:5b:5f:5e:a6:52:5a:61:94:fc:ca:
d0:64:fc:03:64:27:2a:48:a8:de:97:fa:31:7e:d7:
c0:95:ca:49:25:dd:ee:37:1e:01:08:f8:93:ce:49:
25:5d:29:b1:5e:26:1f:2f:87:28:84:27:f0:48:4e:
d4:c8:46:f3:2f:ba:e2:2a:2f:ea:70:b9:6f:0e:cb:
2a:c5:af:43:d6:85:71:45:ee:3f:bf:71:8d:a5:5b:
89:db:b1:05:4d:26:03:78:ba:ea:50:80:34:a6:35:
fc:53:92:28:b0:e9:7d:42:dd:87:49:e6:6e:65:57:
d2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:CD:DF:7B:35:73:D8:89:DA:9A:A8:89:77:58:72:FB:16:24:0A:2D
X509v3 Authority Key Identifier:
keyid:9A:18:C7:90:58:2E:99:BF:B5:0E:E7:58:46:3D:C5:AF:DC:CB:F4:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mhjHkFgumb-1DudYRj3Fr9zL9L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/1cd01e-e449-4520-906f-5c35dbaba24b/1/wM3fezVz2InamqiJd1hy-xYkCi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/1cd01e-e449-4520-906f-5c35dbaba24b/1/mhjHkFgumb-1DudYRj3Fr9zL9L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.156.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:ef:42:cb:82:9b:28:18:25:7f:49:54:76:18:0c:52:ca:f6:
86:18:35:b3:cb:5e:8c:df:a3:af:97:0d:06:57:09:3e:e4:5e:
58:c3:e3:ac:21:02:c0:7d:9e:06:a9:9d:b3:f0:4d:3c:4a:0c:
34:c4:dd:c3:ff:87:7a:b4:cd:49:e5:9a:e5:f7:62:1d:ed:f7:
80:05:f8:9b:be:9f:88:cb:e1:66:aa:60:87:0f:7c:f7:b5:a8:
21:d9:36:e0:19:4d:79:b6:db:96:2b:d8:73:d5:17:0a:88:4d:
0a:17:4c:44:93:84:96:88:2a:db:62:87:40:7c:88:b0:53:c6:
84:4f:db:8a:ef:d6:95:4c:fe:f4:e3:db:05:6a:90:44:5e:86:
c7:a4:1a:1b:11:22:83:26:37:85:5b:2c:5f:f3:a3:69:14:2e:
3e:3a:96:5f:eb:7d:37:b3:9b:e8:71:c5:83:d8:e9:86:c1:69:
bb:79:14:75:a9:5f:54:de:4d:37:0c:16:4e:93:66:1e:a1:ea:
bf:ca:1a:44:5f:38:1f:5f:dc:d5:e4:f6:5d:ba:62:54:7a:98:
be:8a:20:8b:5c:0c:04:b3:c6:9f:f0:ab:3b:76:bf:04:13:d1:
24:a5:67:a5:0d:2c:c5:0b:d6:a8:cc:61:60:f9:37:ac:2c:a4:
81:14:41:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:52 2024 by rpki-client on console-ams.rpki-client.org