Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/oP7yf2CWvvbf_ksYa4BYn6ZY_go.roa
File: oP7yf2CWvvbf_ksYa4BYn6ZY_go.roa (raw, json)
Hash identifier: YjSOwXeZBGaeNKcEO4Wv8xmFjHxq9vo7MHr0s0rxnX4=
Subject key identifier: A0:FE:F2:7F:60:96:BE:F6:DF:FE:4B:18:6B:80:58:9F:A6:58:FE:0A
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01827EA6DFEE6501D54A8F1C42DC666CD1B3
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/oP7yf2CWvvbf_ksYa4BYn6ZY_go.roa
Signing time: Mon 08 Aug 2022 18:10:41 +0000
ROA not before: Mon 08 Aug 2022 18:10:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 91.226.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7e:a6:df:ee:65:01:d5:4a:8f:1c:42:dc:66:6c:d1:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Aug 8 18:10:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0fef27f6096bef6dffe4b186b80589fa658fe0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:09:9c:cc:3b:a5:8f:f8:03:78:f2:13:34:d8:
80:e0:bc:78:15:c9:73:40:11:02:bf:7a:9a:22:25:
51:a6:d2:27:41:a0:af:20:4f:d8:c6:f4:5a:6f:78:
bf:ad:c0:10:43:56:13:5f:b1:3f:7d:53:79:d7:7d:
10:78:0a:2e:ac:eb:c4:6d:83:f2:9b:81:5f:a7:5d:
16:80:26:bb:e8:c7:bb:5f:b4:5d:0b:49:15:cb:ee:
b3:a0:4f:74:fb:be:96:55:ad:12:2b:a0:1a:cf:1a:
16:e8:b1:bf:c1:9f:5e:70:c2:3d:17:d0:15:75:4a:
21:b4:04:d4:11:11:e0:1c:36:af:bf:fe:ad:ea:ee:
2c:2f:73:a3:f8:64:b7:25:06:32:7b:9f:78:d8:8e:
5f:6d:6c:1b:de:95:28:06:74:e8:41:d0:0a:54:5c:
1b:f9:db:23:bb:52:8a:19:dd:60:be:51:39:27:c9:
94:2b:bf:c1:1b:a1:ee:9d:0b:0f:c6:7a:97:ed:19:
2d:60:53:26:a9:a7:99:fb:ce:c1:54:37:f0:51:f6:
f8:4d:ed:29:3f:9b:35:8e:8f:3b:dd:6a:28:3f:e5:
87:ad:68:f8:2e:db:db:1b:70:78:e7:8a:5c:1a:17:
3d:d1:cb:ef:14:06:f3:70:37:bf:4b:5a:f2:51:c6:
31:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:FE:F2:7F:60:96:BE:F6:DF:FE:4B:18:6B:80:58:9F:A6:58:FE:0A
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/oP7yf2CWvvbf_ksYa4BYn6ZY_go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.56.0/24
Signature Algorithm: sha256WithRSAEncryption
83:d6:0f:21:20:8b:fd:51:a4:7c:0b:8f:25:89:6b:a3:e1:e1:
56:17:11:54:da:64:7b:1e:13:f5:f9:ba:2e:98:37:51:d7:23:
3f:9c:a1:35:5c:91:f3:93:6a:d0:01:42:78:00:a3:dd:40:9e:
31:6d:10:41:09:0c:a5:62:7d:57:d4:ca:f2:d1:e1:db:cd:f7:
e8:7b:bb:ab:8c:ae:e0:f9:df:ca:b1:94:b8:79:e1:ac:ad:ec:
46:3d:71:98:11:d0:7e:1f:c3:ec:76:64:15:e9:2b:a9:f1:70:
59:62:fc:ab:1c:90:77:a6:6a:ab:c2:f4:37:19:3b:73:5c:b9:
92:3b:01:79:c2:d3:42:5e:57:a5:73:bc:4c:84:93:63:52:45:
a6:42:54:0d:1c:db:82:1a:a5:ad:db:ec:b1:06:f4:d6:3a:4c:
30:8f:11:34:e8:69:5c:92:67:c2:fa:e1:38:9a:6d:ab:54:2f:
0d:c4:cf:cc:61:9b:17:71:b2:2b:f8:20:00:45:61:94:de:10:
a3:29:d7:a8:e7:73:85:93:e8:32:4b:ef:ec:76:35:17:32:d5:
70:68:cd:f7:04:b1:c8:d0:23:1f:20:43:2c:66:31:52:de:01:
90:fd:3a:ad:93:50:7c:a2:66:90:b3:89:4b:cd:b1:ae:c8:0a:
23:08:d3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org