Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/be6337-662e-4c3b-812a-3407fca12267/1/oNsqdoR2Tmzx-PcxZM1kd3ZLLKg.roa
File: oNsqdoR2Tmzx-PcxZM1kd3ZLLKg.roa (raw, json)
Hash identifier: qUTljcedoDnYogkE+mnRGNS1GdJo9e1pwpD0bVOb390=
Subject key identifier: A0:DB:2A:76:84:76:4E:6C:F1:F8:F7:31:64:CD:64:77:76:4B:2C:A8
Certificate issuer: /CN=cdb150276f55bae455988d3a13e59341074dcd0a
Certificate serial: 0B2230C4
Authority key identifier: CD:B1:50:27:6F:55:BA:E4:55:98:8D:3A:13:E5:93:41:07:4D:CD:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbFQJ29VuuRVmI06E-WTQQdNzQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/be6337-662e-4c3b-812a-3407fca12267/1/oNsqdoR2Tmzx-PcxZM1kd3ZLLKg.roa
Signing time: Sat 01 Jan 2022 09:58:02 +0000
ROA not before: Sat 01 Jan 2022 09:58:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 91.194.94.0/23 maxlen: 23
91.212.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186790084 (0xb2230c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb150276f55bae455988d3a13e59341074dcd0a
Validity
Not Before: Jan 1 09:58:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0db2a7684764e6cf1f8f73164cd6477764b2ca8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ab:d4:ee:87:33:9d:d8:27:79:49:91:6d:05:
c5:b6:63:a5:57:ae:f4:93:e9:d6:91:b1:ad:b2:86:
95:cc:ca:ff:a5:72:e7:5c:ee:67:9b:4a:f4:2d:fe:
ed:f0:b7:87:81:8c:ab:70:b3:b4:2c:13:46:ea:ba:
4a:aa:d0:e0:9a:9d:f5:69:90:d5:fc:4b:6e:ed:ba:
b3:48:bb:25:20:dc:20:26:37:7c:bd:03:8d:aa:c9:
14:ba:fc:b4:b9:4c:4d:3f:cf:41:74:cb:22:92:1c:
c6:2c:7c:e9:17:05:9c:f3:b8:84:04:cf:46:59:f7:
aa:7b:93:f6:11:de:b0:47:79:ee:94:bd:7b:f3:42:
db:63:4c:ff:cb:8d:5c:0b:74:be:c4:bf:6a:c7:0e:
c0:3d:5f:eb:b0:3c:63:1c:1d:71:d7:5b:63:78:b2:
71:ea:8a:7b:9c:3b:14:7e:f9:6f:b1:40:0c:40:7b:
b4:fd:4d:e0:96:ef:2e:07:0c:94:33:88:05:7a:6b:
a3:37:36:06:79:b4:9f:1f:8c:ca:cc:c6:18:11:9a:
26:0f:f3:2d:c5:9e:56:a7:99:e3:ef:97:27:78:1c:
46:f7:69:65:e0:93:e6:3b:bc:83:6e:30:8a:c0:d5:
6e:51:32:83:73:4a:f0:8b:84:c0:ee:1a:c3:36:4f:
9f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:DB:2A:76:84:76:4E:6C:F1:F8:F7:31:64:CD:64:77:76:4B:2C:A8
X509v3 Authority Key Identifier:
keyid:CD:B1:50:27:6F:55:BA:E4:55:98:8D:3A:13:E5:93:41:07:4D:CD:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbFQJ29VuuRVmI06E-WTQQdNzQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/be6337-662e-4c3b-812a-3407fca12267/1/oNsqdoR2Tmzx-PcxZM1kd3ZLLKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/be6337-662e-4c3b-812a-3407fca12267/1/zbFQJ29VuuRVmI06E-WTQQdNzQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.94.0/23
91.212.28.0/24
Signature Algorithm: sha256WithRSAEncryption
54:7e:6d:4c:16:16:fa:05:41:ee:d2:fa:82:95:d5:4d:0f:ed:
b2:e2:9b:4c:46:39:aa:f7:75:16:a7:48:9b:6c:44:30:07:9d:
36:e0:9c:24:cd:03:0e:1b:d6:06:b8:60:76:7a:ee:51:40:fa:
a6:51:49:3b:4b:79:c5:ac:37:3c:48:85:ea:15:37:bc:17:24:
40:b2:5e:ce:70:f3:09:57:df:b5:d6:33:ce:23:9b:30:c8:88:
61:20:9c:34:ef:08:3d:e7:33:90:90:07:b3:cf:f6:54:3e:6e:
9f:b2:8b:10:63:b6:42:7f:89:2e:f8:6b:b6:95:27:11:92:e9:
ad:ad:b2:82:32:c5:0d:3f:6c:f1:5c:f2:50:55:1b:62:31:de:
46:0b:fd:f3:00:c0:95:10:b3:31:31:1c:9b:99:f7:a7:1d:c3:
41:ae:29:35:0d:a8:8b:99:7f:af:03:69:fc:1c:62:1f:bd:b3:
54:37:86:9f:37:01:cb:5f:5c:46:fc:59:26:73:c7:d7:94:fb:
71:fa:90:a8:a9:4e:79:2d:9f:e0:3e:8c:10:c2:7d:d0:bc:88:
02:c1:75:04:b1:02:29:a7:a8:74:20:ff:66:e3:cb:12:0a:eb:
e6:06:9d:4a:4d:32:11:f0:92:4a:b7:8c:6f:31:14:f9:4f:2a:
33:82:1b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:37 2024 by rpki-client on console-fra.rpki-client.org