Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/2ece26-1781-455e-80b3-93dd6507488e/1/gL0r5ZEFMzG3jn_jxQk-FZEsA50.roa
File: gL0r5ZEFMzG3jn_jxQk-FZEsA50.roa (raw, json)
Hash identifier: Ff/bCpOAwEtLBO8Ekf0o7K+WofZo25oNvjU6yFlcv3Y=
Subject key identifier: 80:BD:2B:E5:91:05:33:31:B7:8E:7F:E3:C5:09:3E:15:91:2C:03:9D
Certificate issuer: /CN=82e5fbc3ea525a78c630c4da864ba9a60e199bff
Certificate serial: 06467A4D
Authority key identifier: 82:E5:FB:C3:EA:52:5A:78:C6:30:C4:DA:86:4B:A9:A6:0E:19:9B:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/guX7w-pSWnjGMMTahkuppg4Zm_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/2ece26-1781-455e-80b3-93dd6507488e/1/gL0r5ZEFMzG3jn_jxQk-FZEsA50.roa
Signing time: Sat 01 Jan 2022 02:52:09 +0000
ROA not before: Sat 01 Jan 2022 02:52:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12565
IP address blocks: 91.211.164.0/24 maxlen: 24
91.211.164.0/22 maxlen: 22
91.211.166.0/24 maxlen: 24
91.211.165.0/24 maxlen: 24
91.211.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105282125 (0x6467a4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82e5fbc3ea525a78c630c4da864ba9a60e199bff
Validity
Not Before: Jan 1 02:52:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80bd2be591053331b78e7fe3c5093e15912c039d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:72:7f:58:32:10:99:40:87:6b:2d:01:37:0b:
ce:8e:c3:d0:ab:4b:be:33:30:ef:e4:8d:8f:65:93:
ae:e4:bf:ea:95:b4:98:8b:bc:b4:4d:88:86:e1:6f:
81:e7:9f:80:de:6a:fa:32:c1:6c:ec:f6:21:3c:d7:
6c:54:24:db:d6:7b:d8:aa:f6:1d:f2:35:0f:16:be:
03:74:b8:84:64:5a:7d:04:53:6e:45:47:da:98:6d:
e8:39:2c:09:50:b4:8f:1b:4e:90:65:c2:04:6d:c3:
9f:46:8e:91:fa:57:4b:50:80:42:4b:ab:9c:b2:f5:
62:0a:f3:29:6f:f0:db:eb:08:2e:36:f6:13:49:4c:
e4:76:ac:c4:3b:6f:57:e8:91:95:2d:a3:37:9c:31:
ae:6e:e5:4f:b4:26:f2:9d:3d:de:e8:0b:12:ed:e0:
36:19:c0:61:f1:ea:1b:36:44:7f:52:59:e2:ba:5e:
6b:73:c7:10:5e:54:74:45:f9:84:31:f5:93:93:ed:
52:d8:69:12:d3:9b:3c:b4:3f:bd:ed:04:88:c4:5d:
d8:a6:57:0f:41:39:19:2c:40:c0:6a:3f:3d:cc:42:
9b:5b:ef:8c:20:e1:3c:29:a9:db:32:e2:67:16:e0:
ef:45:45:54:49:09:ee:0b:6c:12:af:92:0e:ff:fa:
a0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:BD:2B:E5:91:05:33:31:B7:8E:7F:E3:C5:09:3E:15:91:2C:03:9D
X509v3 Authority Key Identifier:
keyid:82:E5:FB:C3:EA:52:5A:78:C6:30:C4:DA:86:4B:A9:A6:0E:19:9B:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/guX7w-pSWnjGMMTahkuppg4Zm_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/2ece26-1781-455e-80b3-93dd6507488e/1/gL0r5ZEFMzG3jn_jxQk-FZEsA50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/2ece26-1781-455e-80b3-93dd6507488e/1/guX7w-pSWnjGMMTahkuppg4Zm_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.164.0/22
Signature Algorithm: sha256WithRSAEncryption
14:ae:4d:c6:e1:65:f1:cb:3c:de:38:ad:7b:72:40:49:89:31:
11:4e:15:45:f6:ef:21:cc:97:d8:d8:bd:ca:fb:db:53:87:5c:
3b:80:fe:89:6e:a3:72:b2:33:86:03:39:e1:78:89:cc:5a:a6:
5f:9d:0a:df:03:db:47:55:a4:bd:07:24:a1:56:d1:07:63:17:
0b:22:35:c8:32:f7:a1:72:f1:fe:a3:8a:a1:13:5d:e5:91:af:
ce:4e:05:ab:67:54:b6:19:1a:fa:87:de:2b:96:c5:ce:12:bc:
d9:70:4b:1e:f0:35:82:47:27:41:56:3d:c8:3f:0a:37:5d:d7:
78:48:ee:40:53:ef:b1:d6:c4:f9:7e:aa:3f:6a:f7:fc:79:bd:
e7:90:5f:f1:10:c8:ff:ec:ba:a3:1e:df:76:cc:25:bc:60:1b:
13:28:86:89:e3:f9:66:0c:d3:1e:08:b4:c7:d5:f0:f9:ef:f1:
06:97:f9:bf:03:0d:9c:8d:61:34:9f:e1:cc:91:39:2a:1f:ff:
25:b2:84:37:fb:eb:79:18:ca:f2:f5:bc:b3:5e:64:79:85:c8:
e8:0d:56:27:0b:bc:69:af:ab:92:c1:42:89:cc:b1:b8:e2:51:
bc:61:ee:28:40:7e:1f:90:d1:8f:08:4f:18:f5:82:a8:b5:9e:
ac:06:e5:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:50 2024 by rpki-client on console-fra.rpki-client.org