Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2c1061-db25-44bd-804c-a14dcee57e74/1/HW4PIblIOaIVpBobm4xPeBppbdg.roa
File: HW4PIblIOaIVpBobm4xPeBppbdg.roa (raw, json)
Hash identifier: kotST0q9dAHvzfSZc644pOz5wPt9HkjFb66/Pbp0IWs=
Subject key identifier: 1D:6E:0F:21:B9:48:39:A2:15:A4:1A:1B:9B:8C:4F:78:1A:69:6D:D8
Certificate issuer: /CN=36cfb3975bbd5ef87b29c3dc4a4b98ea5c25c444
Certificate serial: 023F3C
Authority key identifier: 36:CF:B3:97:5B:BD:5E:F8:7B:29:C3:DC:4A:4B:98:EA:5C:25:C4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ns-zl1u9Xvh7KcPcSkuY6lwlxEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2c1061-db25-44bd-804c-a14dcee57e74/1/HW4PIblIOaIVpBobm4xPeBppbdg.roa
Signing time: Tue 26 Apr 2022 07:57:24 +0000
ROA not before: Tue 26 Apr 2022 07:57:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47991
IP address blocks: 91.208.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147260 (0x23f3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36cfb3975bbd5ef87b29c3dc4a4b98ea5c25c444
Validity
Not Before: Apr 26 07:57:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d6e0f21b94839a215a41a1b9b8c4f781a696dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d4:b2:1e:65:24:d4:0f:4f:ec:75:b0:6f:1e:
90:61:ac:a0:52:5a:36:6e:8e:fc:8b:db:4a:65:99:
57:2b:81:76:40:9e:8b:c2:e2:88:f3:ab:4b:93:df:
45:b7:34:71:54:5b:31:d1:cd:d3:e8:16:bf:05:d8:
dd:80:49:72:0d:1c:3c:19:a9:36:fd:51:cd:d1:66:
3e:09:c4:e4:85:71:0c:34:32:e7:48:48:2b:f7:83:
3c:f8:2c:28:6b:ca:95:79:8a:91:c0:6a:6c:87:08:
8b:20:c6:9d:11:f9:c6:6b:c6:19:49:1b:72:91:6c:
63:59:f3:ba:a3:1e:a5:70:2f:f0:f0:eb:2d:e4:96:
67:4f:b3:17:6f:4c:6e:92:19:2e:25:1d:48:df:00:
88:72:ee:85:06:f5:ed:f9:80:63:56:b1:e8:91:9e:
90:6f:e8:d8:f5:a8:25:df:83:94:54:79:0e:3f:42:
36:84:12:1d:3b:77:8f:b6:51:39:de:75:55:88:75:
30:b1:59:05:4e:17:be:a3:5c:d4:a2:53:41:49:d7:
7d:9a:6c:96:0b:86:55:94:57:e4:94:db:2f:69:36:
38:2b:8b:1f:ed:28:37:97:51:37:41:5b:12:79:1d:
eb:25:8b:0a:16:80:02:87:2f:a3:e6:0a:32:cd:1a:
aa:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6E:0F:21:B9:48:39:A2:15:A4:1A:1B:9B:8C:4F:78:1A:69:6D:D8
X509v3 Authority Key Identifier:
keyid:36:CF:B3:97:5B:BD:5E:F8:7B:29:C3:DC:4A:4B:98:EA:5C:25:C4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ns-zl1u9Xvh7KcPcSkuY6lwlxEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2c1061-db25-44bd-804c-a14dcee57e74/1/HW4PIblIOaIVpBobm4xPeBppbdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2c1061-db25-44bd-804c-a14dcee57e74/1/Ns-zl1u9Xvh7KcPcSkuY6lwlxEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.235.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:20:f4:ed:97:37:e5:f4:8d:00:fe:8c:ed:97:64:5a:c6:72:
c8:af:ab:50:7a:a3:3f:da:1c:c9:03:9a:2f:b0:da:29:ea:4e:
88:cc:55:4e:21:93:41:81:19:0a:95:15:58:9a:f4:0f:62:a7:
6c:91:0a:80:b0:ca:4a:92:32:f6:c0:01:c5:96:cb:1e:21:13:
bc:08:57:16:4f:6b:fb:27:e7:b4:8a:b7:ae:0f:8a:ee:78:da:
c6:55:96:53:84:e5:61:46:4f:20:fa:55:8c:78:c1:42:a4:de:
29:1c:10:70:5f:25:9c:3c:1c:a0:ae:b6:8d:23:f8:29:e0:5f:
bb:ef:f5:d0:42:9b:bb:86:34:8c:e0:c5:9c:03:01:bc:8f:ba:
4d:13:fc:d5:e4:10:e0:aa:ef:bd:02:85:33:a7:9c:66:fc:4b:
38:78:b1:cf:31:ce:c0:e2:50:95:74:9f:d3:6e:99:eb:c7:db:
c5:2c:3b:05:bb:60:47:ed:77:71:62:e9:76:07:5c:d0:d4:15:
2c:55:d7:ad:6a:81:21:27:89:f4:5b:84:dc:dd:f0:df:32:6a:
30:8c:ce:c4:57:fd:1c:70:b0:2b:7b:70:55:ad:8e:56:52:18:
6c:2a:f3:8d:fa:49:5c:0c:ef:8c:52:26:08:7b:50:dc:0e:62:
5e:7e:c1:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:38 2024 by rpki-client on console-ams.rpki-client.org