Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/k9LZfu7U_Wep_K8xWIydR0_bZUk.roa
File: k9LZfu7U_Wep_K8xWIydR0_bZUk.roa (raw, json)
Hash identifier: bWsm8vrxqhHl6AeNFWpyFnEJ9g7Y4ANw9TRdnAAvFUk=
Subject key identifier: 93:D2:D9:7E:EE:D4:FD:67:A9:FC:AF:31:58:8C:9D:47:4F:DB:65:49
Certificate issuer: /CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Certificate serial: 387B6FB5
Authority key identifier: 62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/k9LZfu7U_Wep_K8xWIydR0_bZUk.roa
Signing time: Wed 13 Apr 2022 13:50:28 +0000
ROA not before: Wed 13 Apr 2022 13:50:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198371
IP address blocks: 185.47.211.0/24 maxlen: 24
91.148.126.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 947613621 (0x387b6fb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Validity
Not Before: Apr 13 13:50:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93d2d97eeed4fd67a9fcaf31588c9d474fdb6549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:7a:f6:4e:b2:d7:fb:80:50:12:aa:d5:dc:
f6:97:40:4f:aa:98:de:46:f6:4b:4a:35:b1:5a:56:
b9:91:8f:f6:77:1b:e8:42:19:c9:0a:23:4c:1b:cd:
51:90:51:4d:f8:a0:17:c6:09:d6:cd:2e:e1:ff:05:
86:bb:15:ea:fc:b1:50:e8:51:06:4c:f7:6f:fd:d5:
b7:cc:cc:3c:7e:37:54:2e:ee:e9:03:9d:05:0a:ca:
44:11:64:3f:46:be:8d:8b:d4:dd:21:96:d3:46:8d:
94:d3:4d:60:92:27:e7:ec:0b:93:3f:f9:66:39:5f:
1d:06:20:b9:59:76:f5:87:f9:d2:61:a3:ba:68:ea:
1e:f1:40:e2:a0:3b:cb:41:2f:f0:cc:06:5f:bd:1d:
9b:48:be:ee:67:dc:07:d3:1e:52:c6:c4:56:04:ac:
9e:f4:d1:85:fd:ec:84:5c:bc:cb:b4:d5:5a:51:ee:
83:0e:90:08:11:0d:42:8b:99:cb:24:a0:03:58:8d:
e6:65:97:34:b3:45:b4:a3:47:6e:dc:cc:5b:a7:f3:
c5:ea:2a:6b:07:ff:d3:8d:c8:30:0b:ae:88:af:f7:
c6:f8:b1:7b:5b:4c:5e:60:54:8b:9b:b5:42:3b:c8:
fc:44:f2:db:a4:01:cf:4f:4c:40:85:77:d1:ee:e4:
72:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D2:D9:7E:EE:D4:FD:67:A9:FC:AF:31:58:8C:9D:47:4F:DB:65:49
X509v3 Authority Key Identifier:
keyid:62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/k9LZfu7U_Wep_K8xWIydR0_bZUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/YninaMkQutzVxK73wXKp8GFUfow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.148.126.0/23
185.47.211.0/24
Signature Algorithm: sha256WithRSAEncryption
44:94:6e:d9:b9:17:59:ae:ac:3f:bf:69:f3:c2:47:df:b0:e4:
65:74:0b:88:4b:d0:41:9c:19:65:85:6f:25:08:3e:12:41:50:
53:3e:88:b0:11:e6:a5:d4:6d:0e:3f:5b:4b:e2:48:c7:3b:64:
db:34:2a:05:f2:d1:48:f2:1b:f9:7e:80:02:04:80:45:dc:2b:
1f:aa:40:27:e1:47:fd:06:cd:01:7d:8f:ee:a1:61:2a:22:d2:
c2:a7:50:2f:c4:80:5f:79:15:4e:ba:e1:e4:02:c0:6c:6b:1b:
fb:e2:b9:69:bf:05:3e:54:b3:23:cb:20:05:e6:18:f6:f3:1d:
d6:de:f3:4e:06:08:ce:6b:2a:bb:ab:a6:b3:b3:84:f4:6d:70:
da:19:2a:81:f9:03:6f:87:70:1c:6a:7f:e0:58:79:96:83:17:
af:3c:88:8c:90:fe:61:e5:92:d9:90:b0:0f:cf:fb:b5:38:78:
87:c6:75:32:fd:af:eb:b6:ed:ec:c4:d9:ea:de:30:aa:aa:16:
f6:5f:af:de:b8:51:6c:4b:4c:dc:24:87:04:bb:b5:53:6f:3c:
0a:21:41:5a:f3:d0:ce:98:01:79:89:e9:46:b2:6e:7a:24:cc:
67:b7:c6:71:5b:fc:8d:1b:2d:40:2c:d6:b6:db:39:ba:b2:63:
b5:f4:6f:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:19 2024 by rpki-client on console-ams.rpki-client.org