Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/nSE3HUA6i_GYMKENeLpBZD2sGlY.roa
File: nSE3HUA6i_GYMKENeLpBZD2sGlY.roa (raw, json)
Hash identifier: 2QZFDIi8Qd1LxtMWI/S9gOFp67QRpnTsgUm2RONz5Og=
Subject key identifier: 9D:21:37:1D:40:3A:8B:F1:98:30:A1:0D:78:BA:41:64:3D:AC:1A:56
Certificate issuer: /CN=8c20753dd51633aa2e17a92c59f4c4845d876cd3
Certificate serial: 0184574BEA147010B8CF0E5BACA012E35606
Authority key identifier: 8C:20:75:3D:D5:16:33:AA:2E:17:A9:2C:59:F4:C4:84:5D:87:6C:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jCB1PdUWM6ouF6ksWfTEhF2HbNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/nSE3HUA6i_GYMKENeLpBZD2sGlY.roa
Signing time: Tue 08 Nov 2022 12:51:43 +0000
ROA not before: Tue 08 Nov 2022 12:51:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202081
IP address blocks: 91.222.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:57:4b:ea:14:70:10:b8:cf:0e:5b:ac:a0:12:e3:56:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c20753dd51633aa2e17a92c59f4c4845d876cd3
Validity
Not Before: Nov 8 12:51:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9d21371d403a8bf19830a10d78ba41643dac1a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fc:c5:86:9e:9d:39:e1:1c:1f:ba:9a:f6:81:
5a:0a:19:e5:d5:79:21:13:fe:98:cd:16:1e:96:57:
4e:eb:54:e6:cf:1c:0d:05:b7:84:c6:ac:a9:ff:4f:
63:97:b5:fb:10:6b:20:3a:98:24:e3:62:99:5a:bd:
ab:74:f1:f8:39:97:6e:90:e5:b6:23:de:6c:c9:99:
6d:01:08:8a:53:dc:81:85:79:3c:1f:d8:77:00:94:
9a:6b:54:61:68:23:bf:0d:0c:eb:c8:be:c9:55:61:
29:db:93:1f:6b:03:c1:47:67:4b:1d:50:22:b2:d0:
45:45:5d:c9:2c:65:e1:20:e7:86:20:66:fe:0a:f3:
77:b8:c5:f6:32:1a:d5:76:54:6b:30:0b:1f:c6:f1:
3c:01:af:1d:72:ae:c3:90:1a:11:08:1f:1a:09:a2:
7c:60:66:09:ce:5e:d8:c5:ff:43:15:75:f0:ac:f1:
73:7a:54:11:55:c3:11:4b:eb:ce:a6:47:ca:91:de:
0c:a9:d9:7a:04:78:ed:e2:18:34:44:ba:f5:c0:36:
d0:5d:56:21:43:80:7b:6f:99:07:c7:74:34:69:07:
a7:0e:d3:62:9b:f5:33:8a:65:45:d9:d0:76:4a:75:
2c:4e:44:ed:5f:ae:6c:21:ce:ab:e9:da:98:b5:d8:
de:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:21:37:1D:40:3A:8B:F1:98:30:A1:0D:78:BA:41:64:3D:AC:1A:56
X509v3 Authority Key Identifier:
keyid:8C:20:75:3D:D5:16:33:AA:2E:17:A9:2C:59:F4:C4:84:5D:87:6C:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jCB1PdUWM6ouF6ksWfTEhF2HbNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/nSE3HUA6i_GYMKENeLpBZD2sGlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/jCB1PdUWM6ouF6ksWfTEhF2HbNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.185.0/24
Signature Algorithm: sha256WithRSAEncryption
46:f0:b8:2a:ba:9d:b4:f4:bb:03:6c:1b:c0:e4:e7:8f:8e:2d:
ab:42:2c:cb:92:96:fd:50:60:df:91:45:d5:92:9c:79:41:a7:
f0:1e:26:2a:4d:2c:87:ad:61:e9:47:11:58:e1:a8:8a:ea:a3:
25:cc:5f:63:41:cb:d7:09:1e:f4:9b:b4:be:8f:9d:47:35:21:
da:5f:2f:2c:27:01:6e:27:19:6a:ca:81:85:15:10:26:c8:59:
1f:87:7d:85:e3:8d:4a:0f:94:a3:63:92:4d:d1:e7:22:60:52:
23:3f:85:37:03:b6:8c:46:60:52:de:5f:2a:73:be:5d:e8:92:
96:5c:d4:3f:ca:f2:e4:f2:88:54:80:a8:d9:5e:34:fc:5c:04:
0b:25:57:dc:6c:41:1b:dc:dd:ac:80:85:29:49:11:c9:b8:c3:
e2:e3:3d:8c:a8:ec:83:a9:36:45:a7:d7:9c:ba:a3:43:40:15:
23:94:69:54:0e:07:bf:6e:0c:18:19:74:7c:79:f7:59:0a:97:
48:ce:a5:ba:83:77:98:e4:8d:95:35:64:8e:b7:af:84:d3:2b:
1b:19:bd:6d:84:28:8d:7b:3d:a9:db:ca:b1:f7:2a:c9:1d:07:
8f:da:b0:3b:b2:1f:95:14:07:6b:e9:8e:6c:bf:82:f8:10:e7:
fb:d2:6e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:03 2024 by rpki-client on console-ams.rpki-client.org