Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/OWsptMayJc_039yBCl1BU7kzHqg.roa
File: OWsptMayJc_039yBCl1BU7kzHqg.roa (raw, json)
Hash identifier: yDSxGJ8Y6LXb0h92+BsnSQpAD4cYLQd/Ohyj3tH1ams=
Subject key identifier: 39:6B:29:B4:C6:B2:25:CF:F4:DF:DC:81:0A:5D:41:53:B9:33:1E:A8
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0184C85A73B715B394BE13754672E854A516
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/OWsptMayJc_039yBCl1BU7kzHqg.roa
Signing time: Wed 30 Nov 2022 11:44:41 +0000
ROA not before: Wed 30 Nov 2022 11:44:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 91.226.57.0/24 maxlen: 24
91.226.59.0/24 maxlen: 24
193.93.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:5a:73:b7:15:b3:94:be:13:75:46:72:e8:54:a5:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Nov 30 11:44:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=396b29b4c6b225cff4dfdc810a5d4153b9331ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cb:e8:b5:57:f6:8b:b2:f4:7f:1b:c6:89:68:
ad:4b:8b:b7:30:dd:03:8c:6a:9b:2a:89:2c:f7:4a:
d4:e1:dc:4f:e0:fc:a7:13:96:31:b1:2c:eb:b8:7f:
96:80:91:b3:7c:86:cb:cb:66:38:9f:50:47:b5:7f:
57:e0:01:91:5e:39:bc:77:8c:8d:3b:37:d3:f6:33:
6b:f2:0b:c7:7f:9c:fa:2b:0f:f1:7e:6a:4d:08:08:
5d:6b:e3:32:7c:00:46:39:78:22:e5:3f:50:b0:2e:
da:a9:48:9b:0f:99:32:4d:4b:77:9a:64:65:0b:ba:
4d:18:cf:d5:74:8c:8b:f5:09:b9:0e:78:13:0e:7a:
83:33:fa:78:69:56:c7:02:b4:07:75:49:22:42:ce:
bc:63:e2:35:db:e0:c1:9a:fa:82:04:f3:a7:31:0d:
69:6d:95:16:31:af:ac:47:2b:5b:79:7c:42:98:aa:
a9:98:60:ab:be:2c:bb:05:ba:58:0f:0e:c6:8d:c3:
f7:6d:c8:ae:a9:c8:9b:55:71:19:f0:df:fa:7c:d1:
5e:9c:d4:ca:93:50:57:86:06:cf:44:bc:56:7e:42:
1c:77:dc:4d:77:09:75:d4:94:25:e7:da:aa:58:73:
60:67:8b:e6:39:69:3b:26:68:f0:34:5d:c3:2e:49:
98:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6B:29:B4:C6:B2:25:CF:F4:DF:DC:81:0A:5D:41:53:B9:33:1E:A8
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/OWsptMayJc_039yBCl1BU7kzHqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.57.0/24
91.226.59.0/24
193.93.52.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:15:5a:c0:03:5b:ce:f8:6a:31:ea:13:bc:5f:97:93:b6:20:
3e:f9:a8:d5:d1:ae:41:13:c9:d7:2f:fc:2f:6c:09:2a:e2:f1:
8a:74:0a:5e:59:eb:03:0e:e3:35:46:06:eb:b2:a3:c4:9c:38:
ee:64:03:9f:7b:f7:7e:41:aa:a9:b8:12:71:3e:28:1b:38:fb:
a6:39:eb:82:74:17:d5:13:eb:1c:a1:e8:f3:03:64:4f:45:e7:
12:36:d9:0a:3e:ca:d1:85:28:83:b5:af:f8:01:25:00:83:5e:
3a:64:11:c0:36:3b:e4:5b:a8:de:78:91:14:de:a5:53:15:ee:
ed:23:6a:fc:5d:ce:a5:06:9f:06:81:66:26:5a:a8:48:03:18:
91:ee:29:4d:3e:91:d4:0b:fb:39:a9:87:a5:3c:91:58:ac:09:
f3:01:ba:f6:4f:6f:68:b2:1d:5f:7e:28:fc:70:45:e4:0e:fb:
1b:4a:b5:75:f2:8c:bf:90:07:25:61:c3:e9:48:c2:d8:0a:8d:
3b:98:90:8e:71:87:0a:3e:68:82:f0:b2:8e:ee:d6:64:d0:8b:
b9:6a:6d:97:f3:4b:6f:34:28:8d:59:73:5a:5a:1f:34:77:ef:
ff:8b:95:0d:7a:14:10:ac:62:92:e8:02:5c:f0:08:29:4a:f3:
5e:fa:e5:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org