Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/xzFNSlTkopwPWJdQrSBrgDEv04s.roa
File: xzFNSlTkopwPWJdQrSBrgDEv04s.roa (raw, json)
Hash identifier: v87CK1MKiSN4tUfwyrtlpy3+lSvM7krwxA7/G2VlQm4=
Subject key identifier: C7:31:4D:4A:54:E4:A2:9C:0F:58:97:50:AD:20:6B:80:31:2F:D3:8B
Certificate issuer: /CN=1ad6d2d40fb1d5b2cf95429bfb9319fc2b1cc24a
Certificate serial: 27624A
Authority key identifier: 1A:D6:D2:D4:0F:B1:D5:B2:CF:95:42:9B:FB:93:19:FC:2B:1C:C2:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtbS1A-x1bLPlUKb-5MZ_Cscwko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/xzFNSlTkopwPWJdQrSBrgDEv04s.roa
Signing time: Fri 13 May 2022 09:17:02 +0000
ROA not before: Fri 13 May 2022 09:17:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205307
IP address blocks: 91.236.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2581066 (0x27624a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad6d2d40fb1d5b2cf95429bfb9319fc2b1cc24a
Validity
Not Before: May 13 09:17:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7314d4a54e4a29c0f589750ad206b80312fd38b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0d:53:ae:4d:88:c2:8d:0f:74:bc:37:e1:86:
7f:db:f3:b2:63:83:13:d6:72:b2:60:5f:bd:2c:a5:
2d:38:d9:16:ba:85:1f:8d:09:5a:0d:cf:1e:d4:c5:
79:09:83:f3:d8:d4:bb:10:32:19:86:53:39:d4:ba:
dc:75:d5:91:f4:26:2d:78:46:70:28:59:55:df:36:
26:a6:fd:2e:ca:b6:73:63:20:65:30:6f:0b:11:ee:
ab:dd:83:5e:bd:fe:e1:d6:3d:ee:9b:cf:2a:b3:30:
5b:1a:b2:10:2a:78:88:78:40:fc:f0:6b:f9:08:dc:
d8:b5:53:e4:5b:de:52:00:19:5a:b3:e0:76:d9:95:
8b:d5:3a:35:48:10:f1:f5:12:d5:90:60:8b:dd:67:
da:ec:d4:08:de:c3:5e:ec:fb:7c:ed:30:71:72:b5:
f1:9e:23:b9:b8:8f:e5:77:fa:70:81:ec:d5:f2:80:
74:3f:de:51:9c:4e:ec:80:a4:9c:81:71:fc:74:39:
3f:85:a3:75:0a:c3:84:c2:25:41:4d:d3:1d:d8:97:
b0:74:66:31:6e:9c:cd:df:d2:05:c5:a0:8d:66:3a:
8b:8a:dd:99:b4:c5:39:87:a3:1c:79:48:dd:4f:1a:
a7:93:fc:18:63:b9:70:2f:62:48:36:0d:2d:3b:35:
e0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:31:4D:4A:54:E4:A2:9C:0F:58:97:50:AD:20:6B:80:31:2F:D3:8B
X509v3 Authority Key Identifier:
keyid:1A:D6:D2:D4:0F:B1:D5:B2:CF:95:42:9B:FB:93:19:FC:2B:1C:C2:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtbS1A-x1bLPlUKb-5MZ_Cscwko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/xzFNSlTkopwPWJdQrSBrgDEv04s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/GtbS1A-x1bLPlUKb-5MZ_Cscwko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.19.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:b4:ff:20:0f:00:16:20:0a:01:88:a3:71:4c:8d:88:47:a8:
a3:40:70:26:4e:d4:f9:2b:ab:9f:e6:0b:18:a7:9f:5c:31:94:
16:16:1d:1f:9b:f5:ec:98:a3:00:bd:b5:c9:9e:28:71:ed:e0:
fa:e4:96:b6:72:c9:c5:85:3d:68:80:3f:e8:f9:a7:07:0b:c5:
25:9e:00:58:d1:90:ea:24:57:91:a4:b7:47:3b:0f:0b:44:e7:
e0:8a:e0:00:a0:b1:19:40:25:7e:f7:84:43:be:3f:e4:a8:d8:
d1:88:32:13:4c:e6:be:5d:2f:fe:3a:e9:d3:09:8b:93:25:c8:
0c:2b:51:80:d3:46:92:a8:36:8a:ae:12:00:e2:c3:49:83:93:
2a:ba:e5:0b:e5:7c:a5:c3:00:63:99:56:a6:8a:99:cf:d2:92:
cf:f0:17:a5:45:17:aa:45:27:70:d0:ea:03:86:9f:ff:9e:36:
4f:30:5a:47:d7:60:e6:39:73:de:a1:04:b5:90:7f:2f:e2:a7:
b8:d2:c9:a4:23:22:6c:a0:6c:bc:11:53:2d:78:90:d9:15:69:
60:5e:47:6b:2a:03:41:cc:d2:5a:db:0f:1a:fe:fa:15:2e:c8:
42:d5:9f:99:eb:2f:92:71:47:db:c7:6a:94:13:4f:38:7d:b7:
16:8b:49:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:28 2023 by rpki-client on console-fra.rpki-client.org