Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/IsISmKkmE0y3l7h2W0ewS1aY8ds.roa
File: IsISmKkmE0y3l7h2W0ewS1aY8ds.roa (raw, json)
Hash identifier: MpPVcE11TXj5MdIgemZVZwJZznDFjShX+r5JcW9npH8=
Subject key identifier: 22:C2:12:98:A9:26:13:4C:B7:97:B8:76:5B:47:B0:4B:56:98:F1:DB
Certificate issuer: /CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Certificate serial: 0183E6696E710F778077237B823D91226307
Authority key identifier: 62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/IsISmKkmE0y3l7h2W0ewS1aY8ds.roa
Signing time: Mon 17 Oct 2022 14:46:52 +0000
ROA not before: Mon 17 Oct 2022 14:46:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203545
IP address blocks: 91.148.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:69:6e:71:0f:77:80:77:23:7b:82:3d:91:22:63:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Validity
Not Before: Oct 17 14:46:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22c21298a926134cb797b8765b47b04b5698f1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a4:c9:44:03:87:ed:f7:2f:e5:0c:44:17:80:
77:a0:1b:a5:f7:0e:ca:60:72:f7:af:c5:e4:7f:0e:
e4:3e:2e:0c:b9:7d:72:05:73:22:7c:9b:2f:76:48:
9f:55:d2:7c:e6:39:ae:8d:2f:97:fb:24:2c:3f:89:
69:c2:28:20:07:db:1f:9b:52:6e:a4:50:af:8b:e9:
52:7b:7e:1c:aa:51:e4:93:7d:4a:7e:58:01:5a:76:
27:e0:8d:33:20:b4:ea:e3:97:2f:99:cd:e3:e8:15:
05:2f:0d:72:93:7c:d6:2d:3d:52:55:c9:f6:6b:2a:
16:88:f9:6d:db:c4:fe:48:1d:59:1e:12:46:2e:8a:
27:a5:cc:db:7d:20:db:40:fb:e2:2e:d3:eb:2a:7b:
d3:f5:31:40:46:1c:34:f4:cb:d1:2c:9a:b8:c2:e6:
01:a3:d0:90:e4:e5:ad:b8:0a:28:50:9d:d7:c9:55:
e0:65:8f:b7:12:ee:80:80:b2:a5:5a:5c:23:f5:82:
1c:19:88:cc:24:55:50:2d:57:31:4e:c9:e4:21:d6:
af:11:54:3f:bb:86:35:07:15:49:35:a9:4c:75:e8:
75:d9:04:19:3a:2b:47:5b:4b:99:fa:c0:15:5a:d0:
8c:db:2e:94:15:33:50:40:08:19:a6:a7:c2:81:df:
95:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:C2:12:98:A9:26:13:4C:B7:97:B8:76:5B:47:B0:4B:56:98:F1:DB
X509v3 Authority Key Identifier:
keyid:62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/IsISmKkmE0y3l7h2W0ewS1aY8ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/YninaMkQutzVxK73wXKp8GFUfow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.148.126.0/23
Signature Algorithm: sha256WithRSAEncryption
54:61:0d:47:21:f5:96:22:97:82:52:d5:10:22:d6:76:35:cf:
d1:f6:57:99:12:9a:e3:b3:46:f3:18:36:3d:5b:24:f1:cf:55:
6a:5b:f6:1b:0c:70:2e:bb:2c:04:d6:24:ef:20:47:d6:6a:a4:
79:ae:cc:7a:3b:28:b6:4c:5f:d2:04:26:95:2b:b0:81:5a:56:
ca:6f:4b:8c:50:f5:bd:35:c7:15:ba:60:34:af:c5:41:f0:ac:
32:74:e0:2d:dc:b2:9e:ee:65:02:a7:cc:1b:1b:7b:15:57:c6:
19:c4:9c:0b:13:3c:e0:c2:fb:dd:20:7f:83:36:4f:f8:56:c0:
f1:49:bd:c2:e5:7c:71:7b:a8:45:52:5b:99:c9:a7:80:4f:4f:
ce:d3:ad:e5:82:27:aa:72:91:43:dc:21:78:8b:67:5d:0f:c5:
4e:ec:48:3e:4d:47:73:56:8e:08:99:f9:b4:fa:b5:44:c2:ac:
48:47:74:77:2f:79:24:0f:7c:68:6f:c4:56:79:29:5f:9a:9b:
76:75:48:da:dc:9f:70:2e:e2:f6:93:95:1f:e1:8c:97:04:18:
81:ee:10:f9:73:53:d0:a2:5c:cb:5d:15:de:21:10:a0:99:35:
85:52:fd:49:56:07:ec:5b:7d:d7:84:ee:d7:12:37:31:f7:7b:
38:ae:1b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:30 2024 by rpki-client on console-fra.rpki-client.org