Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/0b709f-53ab-49c9-8b83-5ae957f2cdbb/1/tQAO_ruedDMmSMCUDzcSpwgsYKE.roa
File: tQAO_ruedDMmSMCUDzcSpwgsYKE.roa (raw, json)
Hash identifier: gEt8Naxyrmc+QE1ZTwblGevp4lFkDf3E74KA2aqaN/k=
Subject key identifier: B5:00:0E:FE:BB:9E:74:33:26:48:C0:94:0F:37:12:A7:08:2C:60:A1
Certificate issuer: /CN=cb6927b169e3d0f5cb94b343381992f48536c855
Certificate serial: 0184D33B4B250A31AEC10321B08371AEA320
Authority key identifier: CB:69:27:B1:69:E3:D0:F5:CB:94:B3:43:38:19:92:F4:85:36:C8:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2knsWnj0PXLlLNDOBmS9IU2yFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/0b709f-53ab-49c9-8b83-5ae957f2cdbb/1/tQAO_ruedDMmSMCUDzcSpwgsYKE.roa
Signing time: Fri 02 Dec 2022 14:26:29 +0000
ROA not before: Fri 02 Dec 2022 14:26:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210644
IP address blocks: 91.193.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d3:3b:4b:25:0a:31:ae:c1:03:21:b0:83:71:ae:a3:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb6927b169e3d0f5cb94b343381992f48536c855
Validity
Not Before: Dec 2 14:26:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5000efebb9e74332648c0940f3712a7082c60a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2b:73:e5:33:de:50:cc:30:c8:04:64:29:c5:
1a:ac:83:0c:25:a9:22:6e:a8:c3:ba:da:b2:a0:58:
a7:12:f7:3f:08:49:ed:0e:3a:4f:e5:87:ee:f4:9b:
ef:1d:23:3a:a7:9b:c1:ff:2d:c7:f7:a7:7a:21:4d:
53:32:de:3b:b6:77:fa:f0:2e:69:c5:6e:51:60:8c:
4d:ee:9a:3b:22:7b:82:78:14:0a:b0:57:89:72:cc:
b4:e1:fd:7d:6c:3e:47:98:5e:01:fa:d9:a8:14:b5:
54:4e:81:4d:4e:05:6e:16:0a:28:bf:f1:c6:59:2d:
d1:9b:75:05:4f:34:70:f7:7c:a0:c7:48:49:cf:bd:
60:13:12:3d:4e:70:e7:18:36:e8:3c:c5:2e:54:b9:
e8:88:a8:1b:09:9f:98:21:13:c3:08:38:f5:97:bc:
9a:bd:5d:91:f7:bd:b4:96:ad:b3:5b:07:1f:e2:54:
e2:0d:a7:ec:ed:39:12:7c:e0:2a:9b:60:75:35:6d:
3c:42:74:67:89:af:20:74:65:2a:ce:a4:84:f6:69:
00:6b:fa:d2:33:53:ef:40:e8:02:2b:98:cd:16:35:
a3:e5:ad:9b:cc:5a:32:fa:e3:d2:a6:93:a8:97:63:
9d:dd:ef:bc:52:04:94:16:06:66:44:32:30:f4:7b:
84:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:00:0E:FE:BB:9E:74:33:26:48:C0:94:0F:37:12:A7:08:2C:60:A1
X509v3 Authority Key Identifier:
keyid:CB:69:27:B1:69:E3:D0:F5:CB:94:B3:43:38:19:92:F4:85:36:C8:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2knsWnj0PXLlLNDOBmS9IU2yFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0b709f-53ab-49c9-8b83-5ae957f2cdbb/1/tQAO_ruedDMmSMCUDzcSpwgsYKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/0b709f-53ab-49c9-8b83-5ae957f2cdbb/1/y2knsWnj0PXLlLNDOBmS9IU2yFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.43.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:7e:36:b2:45:88:53:1f:6c:68:0b:15:41:4c:a6:54:a5:f2:
16:49:0b:50:3f:2a:83:e7:f6:8f:a7:1f:36:41:5d:ce:70:0f:
71:a5:ae:75:df:48:fd:70:d6:bf:d1:49:15:51:78:7a:50:35:
9a:50:cf:09:a3:6d:06:be:d6:06:2e:0b:9e:d4:94:a8:aa:f4:
66:b2:b0:34:33:e2:f9:4b:b6:c0:90:4a:d1:fc:c9:e6:50:7d:
92:d6:77:83:3e:66:ca:a4:c0:62:c1:ab:29:35:33:5f:d4:9f:
07:17:bf:12:91:85:e9:49:f4:21:a9:ff:99:37:84:5b:1e:87:
1c:ff:d2:c8:a8:6f:f3:17:8d:91:67:f3:40:9d:53:d0:6e:24:
63:a5:56:56:d1:ad:ec:73:e9:9a:70:c1:f0:93:db:9f:13:df:
c2:6b:59:0e:2f:02:43:54:cf:c4:18:44:ce:ad:3e:af:7a:d8:
90:79:4d:3d:a4:b0:8c:fe:f1:69:95:6c:1b:38:e0:1a:51:16:
a4:16:41:a1:03:e3:fb:71:be:fa:57:36:90:80:e8:01:e3:11:
c6:d5:a1:9c:26:61:d3:06:68:eb:3a:33:80:bf:3a:c6:aa:10:
6f:c7:90:83:87:4a:44:8e:bb:e9:8a:f1:9f:bf:89:a5:d3:d7:
35:4b:1b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:50 2024 by rpki-client on console-ams.rpki-client.org