Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/WOVv474NaRSeH_DH2Zn7HROsuLU.roa
File: WOVv474NaRSeH_DH2Zn7HROsuLU.roa (raw, json)
Hash identifier: zWH4zRM9dEpOcuawt+ncuBb6JB2srD0xacX0ihdmXbA=
Subject key identifier: 58:E5:6F:E3:BE:0D:69:14:9E:1F:F0:C7:D9:99:FB:1D:13:AC:B8:B5
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: AC11CD
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/WOVv474NaRSeH_DH2Zn7HROsuLU.roa
Signing time: Sat 01 Jan 2022 00:55:58 +0000
ROA not before: Sat 01 Jan 2022 00:55:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46573
IP address blocks: 91.221.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11276749 (0xac11cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jan 1 00:55:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58e56fe3be0d69149e1ff0c7d999fb1d13acb8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:47:91:ec:55:32:cb:d7:26:62:b1:41:4a:7f:
6d:16:2b:e4:69:bd:2f:d9:ac:2d:41:94:b4:56:4d:
d7:d0:c3:8a:c9:3b:c0:5c:7e:77:25:b9:74:80:95:
7b:7b:a0:3a:76:bc:07:e1:28:7d:76:ac:82:a4:8a:
37:e1:a7:f0:0a:0c:c5:7e:9d:b7:ba:cd:d7:d8:07:
40:c8:01:da:10:31:47:35:73:c9:e4:76:d5:97:8d:
79:2c:c5:39:46:20:18:3d:56:9b:16:56:4d:98:68:
50:02:8e:da:db:ea:c7:e8:dc:7f:eb:46:ec:62:ed:
16:7b:c9:46:18:a1:7c:6a:b6:1f:d0:f3:59:33:8e:
de:8b:6e:70:a5:62:5d:cc:28:48:d2:f3:e1:79:06:
a1:6a:c3:f6:5e:c6:c8:93:c3:c4:a7:03:f7:16:05:
a6:f9:0b:09:d0:ee:10:6c:fa:b2:54:bd:54:59:a9:
ca:0a:9d:23:4d:fb:b0:4f:e6:ac:50:b1:cf:18:ad:
3b:d3:95:72:5f:fb:28:df:7d:1b:cd:b2:cb:c1:f3:
ca:41:0c:78:d3:8a:cf:5b:67:27:08:0c:c7:b0:7e:
79:4f:33:78:8f:e2:09:f8:23:c0:19:7e:23:15:27:
c5:ab:7d:c0:cf:b5:16:6c:2c:88:25:00:db:c8:dc:
ab:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:E5:6F:E3:BE:0D:69:14:9E:1F:F0:C7:D9:99:FB:1D:13:AC:B8:B5
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/WOVv474NaRSeH_DH2Zn7HROsuLU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.233.0/24
Signature Algorithm: sha256WithRSAEncryption
68:81:81:58:30:a8:bb:77:a6:1e:2b:a5:d1:1b:ee:d9:45:a8:
92:0c:50:c6:65:36:75:d5:b3:4b:b4:b5:db:07:5f:b2:99:99:
7e:69:8e:1f:97:5c:bc:c9:e9:bc:5c:75:51:59:2c:63:c2:dd:
1d:43:50:19:c0:05:cd:c6:ec:35:57:56:c4:da:c9:04:72:25:
3d:3f:ae:07:ab:0e:e7:85:fb:85:7e:4a:e5:5f:8f:c4:56:88:
aa:24:09:e3:06:7a:8e:14:b3:d5:29:20:49:d4:38:3a:f6:89:
25:fb:27:e4:81:d9:98:9a:ac:fb:46:05:bc:69:77:90:7c:08:
4d:05:6c:88:d3:58:9c:2f:36:d8:ea:d4:63:a2:02:bf:f7:d3:
42:42:77:dd:ca:b9:c2:e1:0e:93:cc:86:c2:6c:ad:ad:6b:61:
5f:09:f5:98:a7:3c:d0:9b:39:a7:71:ec:71:1a:cb:78:54:65:
fb:71:e2:d0:8e:51:43:a3:b3:48:cb:fd:cd:4f:20:51:b2:85:
99:98:68:1d:35:ab:9e:d7:25:e0:b9:9d:ea:f6:f3:9c:08:93:
59:e4:18:43:05:b5:73:86:51:cf:43:8e:a7:1c:5b:03:79:1a:
d5:9a:1e:b1:b4:48:b1:36:45:93:e9:4e:3f:24:7f:db:5e:df:
4b:04:7f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org