Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/5gZTKxHRW52nRrvGgHnwvNeDklo.roa
File: 5gZTKxHRW52nRrvGgHnwvNeDklo.roa (raw, json)
Hash identifier: IZIGG9dfpD7TUJqG9SDJLrNbwR1hfq883rTB1kykczs=
Subject key identifier: E6:06:53:2B:11:D1:5B:9D:A7:46:BB:C6:80:79:F0:BC:D7:83:92:5A
Certificate issuer: /CN=10721ead6a4575643cb703062c0968755e8281eb
Certificate serial: 016D4EA0
Authority key identifier: 10:72:1E:AD:6A:45:75:64:3C:B7:03:06:2C:09:68:75:5E:82:81:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHIerWpFdWQ8twMGLAlodV6Cges.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/5gZTKxHRW52nRrvGgHnwvNeDklo.roa
Signing time: Wed 25 May 2022 13:50:13 +0000
ROA not before: Wed 25 May 2022 13:50:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47967
IP address blocks: 91.236.218.0/24 maxlen: 24
91.236.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23940768 (0x16d4ea0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10721ead6a4575643cb703062c0968755e8281eb
Validity
Not Before: May 25 13:50:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e606532b11d15b9da746bbc68079f0bcd783925a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4d:94:75:fc:77:9a:65:84:59:bd:d0:5c:04:
db:2e:4e:bc:83:62:f4:32:f7:99:9f:e3:89:f1:dc:
3a:a1:7e:a8:4a:96:16:54:f8:13:3d:94:75:3b:bb:
9e:63:17:b8:56:18:05:f3:bb:76:e1:13:08:d3:b7:
c4:dd:2e:3f:5f:b9:57:e3:a9:25:0a:6e:7d:1a:7b:
6e:c7:6a:8d:cc:e0:80:34:5c:3d:07:43:4a:1a:9c:
62:a7:8c:90:61:42:53:06:5b:58:30:42:15:0b:4b:
cf:61:e1:e9:06:a6:a3:2e:96:83:79:35:65:ed:ba:
29:d9:bb:4e:0d:da:7f:e4:d0:5e:43:a7:66:d6:3d:
ac:dc:d8:cc:4d:6c:7c:bf:e1:21:07:e7:9c:d5:57:
ec:22:c4:46:1b:da:78:6f:35:76:f1:0c:56:b1:1b:
c4:7f:30:74:22:d0:89:57:ca:23:80:a2:93:ec:e7:
6f:d9:6e:6e:8b:ab:d4:6d:af:22:82:ea:a9:86:a3:
28:ff:19:d6:a3:60:49:61:85:e5:e7:02:b6:54:87:
79:f6:12:5e:64:38:69:a3:3c:c8:f9:a0:56:26:19:
0c:f2:46:00:69:7e:25:95:65:f8:e3:30:d8:c6:07:
98:bc:dd:d5:78:45:08:cd:f5:cb:34:67:b4:3c:76:
2f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:06:53:2B:11:D1:5B:9D:A7:46:BB:C6:80:79:F0:BC:D7:83:92:5A
X509v3 Authority Key Identifier:
keyid:10:72:1E:AD:6A:45:75:64:3C:B7:03:06:2C:09:68:75:5E:82:81:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHIerWpFdWQ8twMGLAlodV6Cges.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/5gZTKxHRW52nRrvGgHnwvNeDklo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/EHIerWpFdWQ8twMGLAlodV6Cges.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.216.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:51:a3:c0:9a:ef:3f:12:83:0a:af:f9:d7:1a:af:ed:1e:41:
0c:07:86:f8:00:69:97:2a:30:f2:23:0f:6b:37:ee:8b:10:ba:
27:15:58:9a:ee:ad:bc:43:4e:da:f2:7e:a2:ae:ec:a7:2d:d4:
2a:41:33:a6:a9:fd:12:6e:bd:b7:e5:11:55:2d:62:be:f1:15:
3e:1f:39:3c:6f:ef:36:93:b7:01:6e:29:89:8b:a9:ad:e1:93:
1a:e8:c1:a1:2a:26:aa:f7:e1:03:0f:cb:5b:37:7f:c9:ae:f6:
97:af:d5:89:69:bc:5e:d9:11:22:61:b7:3b:7c:e2:ad:74:56:
a3:b0:9b:de:dd:37:20:3e:01:c4:b5:2d:5a:f7:47:8a:dc:db:
44:2a:8e:32:e0:23:7e:a3:b7:c8:1c:83:41:80:3d:6d:0c:1b:
80:a6:d8:df:d8:cc:04:3b:02:ff:33:31:3d:e9:46:26:a5:54:
c9:f2:f0:58:11:e3:c3:dc:c1:b0:d0:d9:a8:c7:0d:aa:32:78:
01:c5:be:9d:9e:9b:f3:61:48:b8:87:19:81:ed:fd:04:ff:bc:
79:2c:67:8d:fd:e4:04:a6:ce:36:fb:7c:60:05:bc:ab:ae:01:
19:14:43:0c:5b:1f:27:52:04:e8:11:f7:1f:fb:1d:74:51:df:
c2:db:f3:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:37 2024 by rpki-client on console-fra.rpki-client.org