Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/c69174-c031-45fd-a9c9-11b24d113f22/1/w5fA2SrETm8Ubkq5NNBl3N2iY5M.roa
File: w5fA2SrETm8Ubkq5NNBl3N2iY5M.roa (raw, json)
Hash identifier: /SM+TNa6e+Z+dA14tQifhoCd49d0c6RNpOgqtjy0Vyk=
Subject key identifier: C3:97:C0:D9:2A:C4:4E:6F:14:6E:4A:B9:34:D0:65:DC:DD:A2:63:93
Certificate issuer: /CN=4844049d396176a1b5eb388548d9be3eb3e7d651
Certificate serial: 018253BD38341F60FC9624C3854C1E06A1F5
Authority key identifier: 48:44:04:9D:39:61:76:A1:B5:EB:38:85:48:D9:BE:3E:B3:E7:D6:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SEQEnTlhdqG16ziFSNm-PrPn1lE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/c69174-c031-45fd-a9c9-11b24d113f22/1/w5fA2SrETm8Ubkq5NNBl3N2iY5M.roa
Signing time: Sun 31 Jul 2022 10:11:25 +0000
ROA not before: Sun 31 Jul 2022 10:11:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41131
IP address blocks: 91.245.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:53:bd:38:34:1f:60:fc:96:24:c3:85:4c:1e:06:a1:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4844049d396176a1b5eb388548d9be3eb3e7d651
Validity
Not Before: Jul 31 10:11:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c397c0d92ac44e6f146e4ab934d065dcdda26393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:66:54:c6:02:94:fe:3d:42:6e:2f:cf:88:b0:
d3:fe:6e:24:7d:dc:9d:74:a1:63:ec:11:8b:1a:03:
0d:25:a6:9d:fa:b5:03:c9:ae:e6:71:7b:15:76:d5:
0f:e5:0f:fd:be:f4:d8:e6:b2:6c:e4:71:52:1f:80:
30:00:42:c8:df:10:3f:b8:54:91:ca:f1:20:9e:a4:
a2:57:db:c9:42:de:68:d5:12:1f:df:9b:48:de:e1:
ba:82:6f:42:df:6d:8f:0f:36:a4:66:61:3f:22:e8:
e7:f2:65:9b:e1:75:cf:2a:03:95:62:03:58:6f:20:
50:30:c3:35:02:e4:e7:58:64:0d:82:ab:96:0c:36:
4f:be:bf:a7:3e:31:6a:96:d1:4d:56:ab:19:f2:3d:
d6:21:79:c5:b3:db:4b:c2:4a:13:30:7f:d0:cb:b6:
d3:40:25:a3:f7:0e:f1:27:59:56:39:5c:7d:90:09:
1c:f8:54:55:d8:ce:be:93:2b:2a:e3:b6:ff:ea:45:
a9:62:61:af:4d:63:d6:ee:b7:79:24:92:64:e7:9f:
a9:f4:4c:81:aa:32:86:25:0e:71:13:7d:77:7b:19:
99:23:1a:22:65:57:e5:72:01:55:a6:77:18:42:6a:
fa:08:fe:9e:8c:ba:ba:9f:8a:c2:62:ac:3d:5a:16:
73:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:97:C0:D9:2A:C4:4E:6F:14:6E:4A:B9:34:D0:65:DC:DD:A2:63:93
X509v3 Authority Key Identifier:
keyid:48:44:04:9D:39:61:76:A1:B5:EB:38:85:48:D9:BE:3E:B3:E7:D6:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SEQEnTlhdqG16ziFSNm-PrPn1lE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/c69174-c031-45fd-a9c9-11b24d113f22/1/w5fA2SrETm8Ubkq5NNBl3N2iY5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/c69174-c031-45fd-a9c9-11b24d113f22/1/SEQEnTlhdqG16ziFSNm-PrPn1lE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.208.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:5b:6f:34:44:a7:16:7b:02:2c:7c:68:76:95:19:41:0c:1d:
24:a0:7f:67:a9:58:42:4d:9b:21:5d:21:d5:40:4f:36:6f:89:
9a:dd:71:f5:f5:2a:ae:d0:ed:56:a0:9f:48:4a:ae:77:92:d3:
c4:1d:63:31:02:51:fc:d0:9f:70:16:9a:f0:7f:9c:9f:16:d3:
7f:f8:39:15:5c:1b:c0:2b:ff:59:6f:bb:b6:74:22:b7:8b:33:
83:99:f6:1a:97:b6:dd:03:bb:fd:6f:d2:14:3c:27:e0:7a:b3:
41:c0:89:a5:c0:18:bf:6c:f9:03:64:59:29:d1:57:95:77:28:
e4:a1:70:9e:05:fd:bc:65:8f:2a:29:b2:55:55:a0:dd:ac:1e:
f6:eb:5d:ea:dc:d5:31:c2:b8:18:94:46:75:ee:e8:74:87:e7:
cd:91:b4:b5:5b:1e:c3:44:1b:cd:6c:a1:fc:12:04:71:b2:9c:
ca:37:6e:2c:50:2f:fb:39:df:6e:23:f7:21:52:c2:ed:70:8a:
f6:42:fc:dc:28:71:38:fd:22:1c:ac:93:11:3f:e1:36:98:45:
8b:ab:3a:ae:8d:9c:c4:50:8d:42:77:45:ab:d0:7e:ca:7b:35:
ad:40:6d:35:00:4b:fc:4b:69:60:4b:20:f5:ec:bf:ff:02:14:
b7:62:0a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:20 2024 by rpki-client on console-ams.rpki-client.org