Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/ab0sD3QMojzdmmOtTASOEst3-Ow.roa
File: ab0sD3QMojzdmmOtTASOEst3-Ow.roa (raw, json)
Hash identifier: BKWTR5rk9OvYPLDEIq/fDLFJTBUsYaWyoilRXpmf3Kc=
Subject key identifier: 69:BD:2C:0F:74:0C:A2:3C:DD:9A:63:AD:4C:04:8E:12:CB:77:F8:EC
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0183EC91F44F3B4CDDF8ECFEA2E43B672C56
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/ab0sD3QMojzdmmOtTASOEst3-Ow.roa
Signing time: Tue 18 Oct 2022 19:28:51 +0000
ROA not before: Tue 18 Oct 2022 19:28:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14445
IP address blocks: 91.226.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:91:f4:4f:3b:4c:dd:f8:ec:fe:a2:e4:3b:67:2c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Oct 18 19:28:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=69bd2c0f740ca23cdd9a63ad4c048e12cb77f8ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b3:ff:7d:04:ba:69:1d:22:ca:30:7a:b6:2b:
f2:2f:6c:0a:61:12:d1:ac:0e:cb:07:8a:af:8f:60:
85:c8:55:98:48:47:39:67:fd:f6:bd:78:eb:ee:9e:
40:5f:19:78:72:78:bd:98:cb:50:27:b3:52:4a:ee:
a9:d0:96:c9:81:cb:8f:81:3f:70:9e:a6:be:a2:f4:
ee:43:f8:c7:8e:0f:aa:f5:44:a3:85:c8:21:c4:46:
74:95:dd:6e:95:f1:82:9f:1f:de:79:64:81:28:ce:
74:50:7d:b8:e9:54:39:b6:37:ca:02:f0:a6:bb:e8:
a4:33:51:0d:d1:7a:f6:7e:d7:75:d5:d7:7a:d3:e0:
10:d9:cd:db:e9:36:60:4e:cf:58:a1:4d:0c:ec:21:
5c:10:76:b8:c9:af:0a:62:46:cf:f7:04:a4:bf:b7:
6a:1e:f4:f6:54:26:3d:a0:28:8b:09:6e:9c:9a:ce:
fc:29:e8:fe:f0:1f:dd:51:b4:c5:cc:9e:c6:14:9e:
91:e3:1b:bc:1c:89:1c:c8:89:65:eb:20:be:76:b4:
bf:b7:38:5b:3f:32:3d:64:e8:ea:82:8a:9e:a1:f9:
ba:3d:86:00:40:1b:d1:b2:23:0e:b0:e9:6a:96:6a:
51:03:72:44:cf:fa:30:0f:14:78:9f:e7:80:3d:d8:
36:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:BD:2C:0F:74:0C:A2:3C:DD:9A:63:AD:4C:04:8E:12:CB:77:F8:EC
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/ab0sD3QMojzdmmOtTASOEst3-Ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.57.0/24
Signature Algorithm: sha256WithRSAEncryption
32:b1:59:9e:45:28:56:27:8d:04:87:fb:52:e3:e1:18:df:98:
f5:f4:97:53:bd:1d:35:1a:9a:d2:cf:ce:cd:3a:3a:40:66:48:
c9:de:13:4c:95:f4:60:a5:d1:95:7c:a2:bf:d5:a3:72:78:25:
ba:24:8a:f4:0d:5d:20:50:93:58:0d:7c:57:f6:54:f7:aa:dd:
37:7b:85:4a:95:62:4e:5f:40:0e:b1:37:a4:39:ae:dd:21:5f:
73:d7:3a:6d:1c:86:15:5a:37:4b:35:5a:8a:c4:ba:78:f9:65:
3d:67:c6:3a:7d:95:48:83:22:b9:15:03:de:28:b2:c4:e7:7a:
a9:34:86:6e:33:bd:ae:b8:ef:d6:9a:d3:a0:73:a6:a4:ee:95:
09:75:2c:e8:70:f1:59:c5:bb:8b:5a:87:ae:51:de:d2:35:3d:
68:05:59:a4:57:0c:7e:65:30:e3:66:1c:00:6c:f5:5b:e2:3c:
34:4a:8b:94:6f:ad:c9:3f:e4:90:be:42:ad:5f:10:cf:fa:8d:
43:79:74:9e:6b:44:91:d7:be:11:f2:13:96:a3:8c:92:27:c8:
7b:9e:eb:c8:63:ae:cd:c2:7b:ab:56:a6:bd:68:d5:b2:a3:17:
27:d3:dd:e9:23:70:33:44:6d:54:c2:68:72:b7:e2:cf:8d:04:
a6:0a:51:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org