Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/a9mNlPK_uTVsNJ7FSkFg-zhUlug.roa
File: a9mNlPK_uTVsNJ7FSkFg-zhUlug.roa (raw, json)
Hash identifier: PXAG5pMwGW9fXftU2tAOKh1o5Bd5n3OKkcUeGC/t4Bw=
Subject key identifier: 6B:D9:8D:94:F2:BF:B9:35:6C:34:9E:C5:4A:41:60:FB:38:54:96:E8
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01851C9ABD921503E51ACC09F08D1B9792F6
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/a9mNlPK_uTVsNJ7FSkFg-zhUlug.roa
Signing time: Fri 16 Dec 2022 20:23:01 +0000
ROA not before: Fri 16 Dec 2022 20:23:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 91.226.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1c:9a:bd:92:15:03:e5:1a:cc:09:f0:8d:1b:97:92:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Dec 16 20:23:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bd98d94f2bfb9356c349ec54a4160fb385496e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:22:c2:71:26:19:98:91:bc:56:ac:50:94:3f:
66:8c:70:8b:b3:5b:f0:45:73:9b:72:8c:07:68:f2:
64:05:0f:10:79:02:65:48:68:8c:f2:0c:e2:70:28:
fe:8f:72:7a:6f:04:de:20:d9:41:5d:2d:e4:0e:e3:
1c:94:c1:5f:cc:dc:a9:8e:ec:32:ad:ac:5f:ad:1c:
6c:c4:22:e1:46:10:c2:48:73:60:56:ae:00:dd:10:
57:b4:c8:a6:18:e1:a4:6f:15:fe:49:51:02:37:79:
81:9d:0a:40:54:b1:2d:43:a2:8b:bb:f1:8f:a9:4f:
ed:b4:c8:e3:d1:75:0e:30:0e:9b:13:b8:43:7d:6b:
c6:f2:c5:97:70:63:47:79:be:1c:d1:90:0a:9b:d4:
7a:48:24:9d:2b:0e:a0:91:76:91:8a:97:68:27:f9:
60:32:dd:df:4c:b1:0f:81:48:ff:b6:34:59:93:84:
51:41:a3:95:8e:5d:43:b8:59:31:4d:35:a0:ea:b8:
f1:f4:ba:60:cc:2e:cc:fd:95:91:e2:88:37:19:fc:
76:49:b3:e8:d7:a7:d2:df:46:65:b0:d6:df:d9:b4:
91:58:8d:10:9f:1a:92:e5:41:97:a6:74:a5:58:59:
a3:38:2e:00:88:82:b5:5d:b0:43:2a:67:2b:e6:32:
82:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D9:8D:94:F2:BF:B9:35:6C:34:9E:C5:4A:41:60:FB:38:54:96:E8
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/a9mNlPK_uTVsNJ7FSkFg-zhUlug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.58.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:d3:5b:3c:ca:38:d6:60:8e:d2:cb:ad:2c:79:af:b4:7c:98:
40:ea:b1:40:47:a0:5f:3f:14:36:f1:ea:ee:1d:14:bb:d8:b5:
cb:b8:24:2a:1e:8f:ca:71:fe:6f:e8:08:d7:6a:78:5e:17:87:
e8:5b:6e:f1:e9:7e:5b:d4:69:ea:87:b0:f7:db:14:06:a4:9f:
4e:24:8a:e4:36:0e:5f:cb:11:aa:cc:40:f4:78:a3:89:e4:cd:
00:23:ff:7d:f8:c3:a2:2c:7e:2d:b4:40:3d:76:19:79:6d:a5:
59:75:a1:db:64:e9:e6:5c:66:11:e2:ac:27:bf:66:cc:64:ac:
93:c7:65:25:33:0c:9a:e3:0f:55:b4:bc:6f:df:22:8f:22:59:
aa:b7:a3:9f:2b:04:59:71:03:7c:4e:7e:c0:20:36:a2:d2:60:
0b:2c:a8:8e:7c:2d:03:41:f0:e0:29:d0:b8:08:af:00:34:de:
fe:68:4d:99:7e:96:ac:c4:7c:3b:a3:28:fa:21:16:ca:83:11:
f0:ad:83:cf:54:53:14:eb:e2:a7:87:63:14:b0:f6:98:68:4a:
e0:97:bb:ce:e7:06:35:0f:78:75:c8:a8:8c:2d:e6:7d:4f:fd:
40:5e:1c:e1:85:4f:09:05:5e:01:6d:9d:aa:b6:53:50:10:07:
03:74:db:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org