Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/218197-7ec1-43a8-a591-73675f18113a/1/ydImuQgq8Jb_jWd0tTQdpvdEUN0.roa
File: ydImuQgq8Jb_jWd0tTQdpvdEUN0.roa (raw, json)
Hash identifier: MO/wZ0Hw3lijOFJFmTYdTCLk8T6s1uBvOAbwqi46yn4=
Subject key identifier: C9:D2:26:B9:08:2A:F0:96:FF:8D:67:74:B5:34:1D:A6:F7:44:50:DD
Certificate issuer: /CN=98d66fb9adadb6a9057bf60aaa3ff52c66540418
Certificate serial: 0183214EEB5313EDE9599A0D538B29F05883
Authority key identifier: 98:D6:6F:B9:AD:AD:B6:A9:05:7B:F6:0A:AA:3F:F5:2C:66:54:04:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mNZvua2ttqkFe_YKqj_1LGZUBBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/218197-7ec1-43a8-a591-73675f18113a/1/ydImuQgq8Jb_jWd0tTQdpvdEUN0.roa
Signing time: Fri 09 Sep 2022 08:12:43 +0000
ROA not before: Fri 09 Sep 2022 08:12:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199059
IP address blocks: 91.205.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:4e:eb:53:13:ed:e9:59:9a:0d:53:8b:29:f0:58:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98d66fb9adadb6a9057bf60aaa3ff52c66540418
Validity
Not Before: Sep 9 08:12:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c9d226b9082af096ff8d6774b5341da6f74450dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:66:d1:09:a1:9a:23:ff:c2:be:96:fd:e0:bb:
e2:bf:ed:22:5e:94:e2:a2:13:83:07:36:95:37:4f:
4e:c3:a5:05:88:f6:fe:6a:18:5f:ea:52:a9:f2:da:
28:2a:f2:07:63:8d:e2:b2:91:76:bd:af:b3:f6:26:
2a:58:44:24:3d:c9:79:a2:ad:32:fe:28:d3:73:09:
3e:07:5e:59:fe:c0:4b:1a:ed:91:a6:55:b3:97:e0:
d0:a1:30:bc:fe:48:6d:37:1d:49:3c:51:67:e6:47:
bb:60:f4:dc:10:eb:bf:cc:3d:1c:7b:d0:ea:cd:6c:
a5:4a:50:d4:55:19:f8:18:5e:82:33:61:9a:d6:b2:
ba:1d:7a:12:51:ff:94:eb:ca:a5:f3:58:b3:e0:58:
5b:da:46:fc:ae:90:f2:dd:89:73:65:0d:56:0b:b2:
08:97:c2:b9:71:41:62:83:1f:eb:37:03:cd:b2:56:
2e:31:a5:6a:92:1f:ac:2b:7a:a8:9f:bd:87:31:32:
26:26:7c:f2:c9:7f:26:a3:33:cf:30:4a:9a:98:53:
83:ce:ec:63:0f:d4:d5:1f:e6:8c:8f:b7:67:aa:a5:
ef:00:5e:7c:6b:53:3f:2d:fc:5f:c3:67:19:41:a1:
a7:fe:54:36:5a:de:7a:94:90:a0:98:3c:35:d6:03:
53:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D2:26:B9:08:2A:F0:96:FF:8D:67:74:B5:34:1D:A6:F7:44:50:DD
X509v3 Authority Key Identifier:
keyid:98:D6:6F:B9:AD:AD:B6:A9:05:7B:F6:0A:AA:3F:F5:2C:66:54:04:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mNZvua2ttqkFe_YKqj_1LGZUBBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/218197-7ec1-43a8-a591-73675f18113a/1/ydImuQgq8Jb_jWd0tTQdpvdEUN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/218197-7ec1-43a8-a591-73675f18113a/1/mNZvua2ttqkFe_YKqj_1LGZUBBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.195.0/24
Signature Algorithm: sha256WithRSAEncryption
57:2e:7b:a3:09:1e:81:36:6d:21:ca:ed:e6:d5:1d:49:1a:5e:
19:c2:46:14:ab:48:52:46:83:04:ca:9d:b6:32:ad:a9:fa:ba:
dc:82:ae:3d:24:51:d5:3e:4c:65:b8:76:7c:d1:2b:f8:73:8e:
cd:34:04:6b:04:80:dc:be:3f:e4:4e:f4:08:5c:34:f7:71:81:
01:c5:1d:a5:17:d0:9a:cb:0a:72:9c:1a:51:59:2a:3f:5e:9e:
3c:65:c4:4d:91:ba:2e:1c:ff:23:c1:7f:33:16:9c:a5:51:f8:
8f:b1:fd:b4:50:88:ed:37:35:81:82:c0:66:20:bc:60:87:7e:
13:de:a2:83:f1:a4:f3:a6:e1:67:fd:25:55:fb:d4:13:92:44:
0f:d1:8b:1b:4e:77:d1:52:a7:6f:11:7f:5f:88:d4:cd:d7:a1:
ba:fb:da:fa:08:5c:fa:de:0a:cb:3d:6e:ba:c3:93:6f:e3:3e:
96:06:41:bd:46:81:66:16:ee:17:65:ff:76:4d:2f:4c:4d:c2:
4b:c5:ea:7b:c9:dc:5b:62:87:6c:a5:6d:68:18:a9:7c:16:92:
c3:07:2f:50:53:ee:c9:8a:67:3d:7b:a4:54:13:80:84:1c:d3:
76:1a:21:b3:b1:b8:d6:ca:b9:fe:c4:b0:b1:7b:51:69:4a:66:
d7:1e:fb:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:30 2024 by rpki-client on console-fra.rpki-client.org