Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/PQn1TdFpoBZi-BFUsqVPHTlza_4.roa
File: PQn1TdFpoBZi-BFUsqVPHTlza_4.roa (raw, json)
Hash identifier: /JUwcF7pK6m0tY4NISalKJQPPpse48WwwibAoUbaafY=
Subject key identifier: 3D:09:F5:4D:D1:69:A0:16:62:F8:11:54:B2:A5:4F:1D:39:73:6B:FE
Certificate issuer: /CN=1ad6d2d40fb1d5b2cf95429bfb9319fc2b1cc24a
Certificate serial: 2773
Authority key identifier: 1A:D6:D2:D4:0F:B1:D5:B2:CF:95:42:9B:FB:93:19:FC:2B:1C:C2:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtbS1A-x1bLPlUKb-5MZ_Cscwko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/PQn1TdFpoBZi-BFUsqVPHTlza_4.roa
Signing time: Tue 26 Apr 2022 12:10:38 +0000
ROA not before: Tue 26 Apr 2022 12:10:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199139
IP address blocks: 91.236.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10099 (0x2773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad6d2d40fb1d5b2cf95429bfb9319fc2b1cc24a
Validity
Not Before: Apr 26 12:10:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d09f54dd169a01662f81154b2a54f1d39736bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:59:57:ea:9d:2a:fd:a0:b5:05:d0:15:42:73:
d6:d2:0b:49:12:1e:65:73:22:9d:1c:fa:a6:db:87:
7e:7a:f9:27:f4:9f:03:f6:48:5b:39:e3:71:a2:e3:
23:17:31:aa:73:71:22:5a:a6:60:18:a8:2d:e9:65:
90:38:c3:68:e7:a5:6a:be:2e:22:14:70:e9:c6:d6:
a8:bf:b4:47:ea:f3:20:c1:b9:fe:9f:06:a3:b4:d7:
d4:67:68:66:61:07:15:d1:fa:c1:1b:0a:58:a9:b7:
38:8e:f3:a9:33:ed:0e:ec:2c:c9:31:3d:b9:5c:34:
71:3f:7a:02:02:0e:ec:99:7b:32:5d:69:c6:9b:32:
e8:03:59:62:06:3f:a7:17:cf:d4:10:cc:d1:58:59:
d9:1e:af:ae:04:f0:0b:da:d0:b4:57:ab:7d:d7:e6:
cc:b8:66:d5:6c:4e:cd:5a:48:f3:0c:e5:c5:d7:be:
a5:7b:ac:77:b4:da:95:7e:cc:87:e2:86:c6:10:9c:
a3:00:f2:61:c7:2a:02:90:b4:c5:25:e4:37:5c:41:
d2:cb:c8:29:14:66:b3:72:09:33:e9:dc:a0:72:85:
3a:96:02:c7:fc:ab:62:9a:01:e7:9d:dc:8f:8b:c2:
dc:3c:8d:c6:f3:9d:96:99:33:9c:c6:77:4b:bd:35:
fe:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:09:F5:4D:D1:69:A0:16:62:F8:11:54:B2:A5:4F:1D:39:73:6B:FE
X509v3 Authority Key Identifier:
keyid:1A:D6:D2:D4:0F:B1:D5:B2:CF:95:42:9B:FB:93:19:FC:2B:1C:C2:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtbS1A-x1bLPlUKb-5MZ_Cscwko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/PQn1TdFpoBZi-BFUsqVPHTlza_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/GtbS1A-x1bLPlUKb-5MZ_Cscwko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.19.0/24
Signature Algorithm: sha256WithRSAEncryption
85:d9:13:ec:17:4a:e4:e3:f8:55:01:bb:82:97:cd:c1:c8:49:
ea:75:d6:b1:59:0c:6b:e0:eb:4c:25:43:29:cb:89:e0:7c:22:
c1:05:2c:76:a2:1b:84:4f:2c:34:63:f2:b9:9d:09:bb:fa:d7:
37:bc:4d:ed:fa:68:d6:05:a5:d9:fd:ad:0a:09:0b:9c:6d:20:
32:b4:3c:65:4e:8c:3b:35:c1:f7:ce:4d:5a:27:98:eb:0d:a7:
81:52:95:7b:4d:5f:63:c9:1f:f0:6c:1f:82:e2:ce:e7:6b:64:
a3:78:99:cb:6a:b5:2e:18:34:31:73:61:c4:09:f7:8c:e5:80:
89:3c:83:4d:c6:74:78:f9:10:ff:5a:19:bb:d8:eb:62:0d:da:
aa:91:06:39:38:8a:0a:c4:d5:bd:a6:3a:33:09:dc:68:bc:99:
90:b7:f1:d7:cd:d3:a2:8c:43:66:07:2e:a6:f5:0e:95:6e:f9:
86:c6:38:3a:2b:73:f3:9a:dc:cf:5e:b3:09:f0:fd:88:8f:41:
54:f2:ab:3b:3d:62:16:18:4d:98:ec:37:50:10:d9:60:0c:a3:
7f:f0:93:1e:5c:1b:fb:54:99:77:0f:3a:0a:f5:e4:8f:8f:81:
83:20:6d:75:8b:03:b0:5f:5f:e4:02:c7:e3:24:0c:b8:83:59:
ae:0a:d6:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:20 2023 by rpki-client on console-ams.rpki-client.org