Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/1912e8-0d6b-4ed6-8ae4-7d482aa48c68/1/5wIlGinDnw2E31Bjg-ooVn0ZTp8.roa
File: 5wIlGinDnw2E31Bjg-ooVn0ZTp8.roa (raw, json)
Hash identifier: jz/N2A13kWqA5ZLwD/1WHROfgbFq/mcAX3Z7TR2Jzho=
Subject key identifier: E7:02:25:1A:29:C3:9F:0D:84:DF:50:63:83:EA:28:56:7D:19:4E:9F
Certificate issuer: /CN=31836010eedef15f76adeba9f729a828bf2be8cb
Certificate serial: 01837B3670C86823C1BF358E3333D5A3C948
Authority key identifier: 31:83:60:10:EE:DE:F1:5F:76:AD:EB:A9:F7:29:A8:28:BF:2B:E8:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYNgEO7e8V92reup9ymoKL8r6Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/1912e8-0d6b-4ed6-8ae4-7d482aa48c68/1/5wIlGinDnw2E31Bjg-ooVn0ZTp8.roa
Signing time: Mon 26 Sep 2022 19:11:48 +0000
ROA not before: Mon 26 Sep 2022 19:11:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8820
IP address blocks: 91.239.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7b:36:70:c8:68:23:c1:bf:35:8e:33:33:d5:a3:c9:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31836010eedef15f76adeba9f729a828bf2be8cb
Validity
Not Before: Sep 26 19:11:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e702251a29c39f0d84df506383ea28567d194e9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fc:87:90:5e:f5:85:59:a5:83:71:fb:d5:5b:
1f:52:e6:47:21:b0:a5:45:0f:1c:73:5b:f6:0b:85:
d9:07:b2:cc:b4:6b:c2:77:f8:3f:f6:1e:35:75:dd:
88:c0:d1:65:8c:f5:b3:cf:71:a2:d2:04:36:bd:d8:
03:9a:f2:54:bb:63:29:8e:83:87:04:aa:46:c5:0a:
8b:d4:d4:4a:2e:96:18:ef:60:d7:6a:27:b6:84:07:
46:dd:ae:3a:1b:fe:5b:ab:d0:41:e8:46:77:8b:c9:
4a:f5:1c:97:14:bb:5c:8c:e2:db:94:4a:c4:e1:3d:
e4:77:78:a6:5f:57:88:80:9d:4e:4a:eb:82:24:65:
54:84:8e:dc:6c:dd:4e:f2:eb:0d:17:77:39:28:08:
33:3c:1c:f5:4d:c8:2c:6b:9d:3f:6f:90:14:0f:0d:
f2:99:35:43:46:b3:fa:f9:6a:e3:9d:59:a7:93:12:
55:4a:07:d5:32:ea:8e:9e:4d:10:d7:60:c6:1d:50:
e6:b6:7e:41:ce:37:48:99:ca:c6:2b:12:e3:36:3b:
a1:09:4c:7f:a7:d4:86:8b:54:47:05:fc:5a:94:61:
73:0c:9d:6b:01:b0:22:85:9c:f6:7e:60:5e:a4:ef:
ae:2d:61:15:3f:9c:65:95:f3:6c:93:bd:81:24:30:
99:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:02:25:1A:29:C3:9F:0D:84:DF:50:63:83:EA:28:56:7D:19:4E:9F
X509v3 Authority Key Identifier:
keyid:31:83:60:10:EE:DE:F1:5F:76:AD:EB:A9:F7:29:A8:28:BF:2B:E8:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYNgEO7e8V92reup9ymoKL8r6Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1912e8-0d6b-4ed6-8ae4-7d482aa48c68/1/5wIlGinDnw2E31Bjg-ooVn0ZTp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/1912e8-0d6b-4ed6-8ae4-7d482aa48c68/1/MYNgEO7e8V92reup9ymoKL8r6Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.211.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ac:2f:31:b9:eb:4a:db:e2:1f:9f:51:2f:1a:69:50:a3:cb:
65:35:b6:3b:a1:6a:e3:6b:c6:70:34:b0:dc:54:95:70:5e:8a:
4e:15:d8:d9:c3:e8:2f:0c:39:02:be:2c:50:ca:f4:f7:f9:f9:
75:1b:83:5d:ff:15:92:31:53:ce:c6:c1:8f:b9:13:a8:0f:46:
9c:60:ea:19:9d:ba:67:33:56:ec:65:c9:16:c3:d3:87:86:d5:
02:6c:03:7c:52:11:49:c1:48:b5:2e:f1:3a:f0:9d:4a:c4:7b:
47:33:39:47:83:5b:38:58:33:cf:ea:ec:b1:c1:28:e1:b0:f4:
87:7f:c9:7d:c9:a5:5a:d1:8f:58:b2:3d:b6:2a:90:dc:7f:95:
87:dc:4b:70:b1:07:3f:c5:b4:d2:9e:62:48:3a:91:4f:06:24:
f5:a5:db:15:e6:97:49:30:c4:bf:03:3d:9d:ac:8b:2a:51:29:
ed:2b:08:d1:9d:6b:df:8a:a4:a8:c8:ac:59:c7:c9:bd:4b:38:
42:18:5d:bd:46:44:3b:dc:e8:4d:d7:38:69:10:a7:f4:a3:5d:
33:14:fa:e6:ff:6a:bb:e2:33:dc:c9:13:f9:c9:99:b7:02:43:
83:aa:d3:eb:34:88:cc:f3:bb:fa:f8:6b:09:8f:37:1a:41:5d:
df:c8:71:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:33 2024 by rpki-client on console-fra.rpki-client.org