Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/IMwCUtDj3i_DOgh3I4-c0BBtLc8.roa
File: IMwCUtDj3i_DOgh3I4-c0BBtLc8.roa (raw, json)
Hash identifier: Qk7F8ETQep1dNLxvukQ3fbyZ0e7pJvhMedM6ljrbOjA=
Subject key identifier: 20:CC:02:52:D0:E3:DE:2F:C3:3A:08:77:23:8F:9C:D0:10:6D:2D:CF
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 1D544E73
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/IMwCUtDj3i_DOgh3I4-c0BBtLc8.roa
Signing time: Fri 20 May 2022 10:58:27 +0000
ROA not before: Fri 20 May 2022 10:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199429
IP address blocks: 91.237.93.0/24 maxlen: 24
91.232.18.0/24 maxlen: 24
91.200.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 492064371 (0x1d544e73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 20 10:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20cc0252d0e3de2fc33a0877238f9cd0106d2dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:69:49:03:90:2f:10:c3:a4:16:8f:36:3b:8e:
b7:6d:72:a1:25:8b:12:72:87:b1:9e:64:7f:c6:1b:
65:ad:14:08:18:ac:85:56:a7:0a:34:b9:48:b2:70:
e1:72:72:bd:97:52:91:36:8c:a3:4e:5f:0d:03:f7:
c9:0c:f1:d1:1b:5d:0f:b0:bd:af:6b:1d:44:62:cd:
85:90:67:7b:0c:b6:34:86:11:26:33:5d:a5:0d:9d:
b6:4a:0b:a9:4a:9f:a4:33:42:a3:4e:a1:a0:e5:5a:
a1:7e:81:69:83:5e:2f:b1:55:02:f6:b3:58:7e:31:
24:e2:ab:1d:38:6d:33:2d:0d:43:70:f5:e2:1f:6f:
80:d6:8c:3f:91:04:76:04:02:98:66:c3:cf:da:ae:
4c:dc:d4:4d:88:cf:94:96:0f:0c:34:1b:81:c6:20:
43:31:30:92:d6:92:5a:d2:37:ec:5b:a0:0b:28:c4:
80:ee:f8:9b:24:dc:cf:43:c4:d9:ab:fa:7d:39:75:
03:f9:ef:b4:89:45:3e:99:08:89:2b:c1:6e:35:31:
cc:cd:ba:3e:68:2e:fc:8d:88:8e:cb:3b:ff:69:45:
97:14:1d:b0:01:fa:9b:04:1e:a8:da:17:b0:93:8f:
c3:54:9d:31:fa:5a:b1:5d:6e:c9:c1:0f:ad:3d:f5:
71:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:CC:02:52:D0:E3:DE:2F:C3:3A:08:77:23:8F:9C:D0:10:6D:2D:CF
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/IMwCUtDj3i_DOgh3I4-c0BBtLc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.133.0/24
91.232.18.0/24
91.237.93.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a2:9d:a8:5f:c5:a6:9b:12:21:f6:37:b1:7f:70:12:0e:47:
64:34:55:de:9e:c5:13:69:38:a3:74:9a:17:9e:5e:32:0a:84:
8c:5e:fe:9e:1e:11:ae:db:ec:df:22:d0:14:09:52:11:3f:03:
ce:6d:6f:38:07:3d:f6:44:34:51:bb:d5:39:14:02:9e:35:03:
1c:1a:31:c9:80:c8:81:a1:ef:d0:f3:cd:c2:fa:76:8e:4e:cd:
98:48:bb:3a:43:77:d8:ba:81:17:b9:ed:51:5d:63:5e:c1:f0:
89:df:4d:67:5e:35:0f:61:07:fb:99:6d:64:85:07:c4:25:41:
12:6e:1e:cb:31:5d:ad:5b:b9:6b:36:79:99:b4:c6:5f:4c:c0:
9c:a2:8e:2f:3f:dc:50:58:bd:37:84:d7:c8:1e:d0:0d:86:03:
84:1b:3e:ca:db:1e:fc:e7:19:49:68:07:4f:eb:e0:a6:c7:4a:
24:18:05:89:de:ad:1c:67:e7:5d:7d:4a:66:2a:19:de:48:88:
3d:16:f4:d5:47:eb:90:71:99:6e:9d:b6:78:7c:bc:ad:b3:9d:
d0:d3:c4:de:89:dc:1f:2f:e5:0c:71:f2:b8:2a:7e:82:51:ef:
7b:63:03:f3:9b:c8:69:0f:04:64:17:83:a7:af:51:6e:1a:8b:
df:3a:7c:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:55 2023 by rpki-client on console-fra.rpki-client.org