Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/AOVTW-SKDZy7IlmIa1QzgC6Zlcc.roa
File: AOVTW-SKDZy7IlmIa1QzgC6Zlcc.roa (raw, json)
Hash identifier: gWby3NrKHXKKRO+LggSyAkASrQ/AfFJYcLM+93u54S4=
Subject key identifier: 00:E5:53:5B:E4:8A:0D:9C:BB:22:59:88:6B:54:33:80:2E:99:95:C7
Certificate issuer: /CN=1c98955128bcbc7693eb1a937ff28b40eb3448a0
Certificate serial: A669
Authority key identifier: 1C:98:95:51:28:BC:BC:76:93:EB:1A:93:7F:F2:8B:40:EB:34:48:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJiVUSi8vHaT6xqTf_KLQOs0SKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/AOVTW-SKDZy7IlmIa1QzgC6Zlcc.roa
Signing time: Fri 20 May 2022 10:20:12 +0000
ROA not before: Fri 20 May 2022 10:20:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43887
IP address blocks: 91.198.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42601 (0xa669)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c98955128bcbc7693eb1a937ff28b40eb3448a0
Validity
Not Before: May 20 10:20:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00e5535be48a0d9cbb2259886b5433802e9995c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:83:aa:79:6c:69:db:12:27:b9:2a:4e:4b:16:
0e:c7:67:32:78:dd:07:49:11:68:17:b7:d8:44:b9:
6e:e2:d1:fd:f8:e0:a6:38:07:dc:b5:8f:7a:13:97:
0c:5d:7a:a2:8d:a9:05:bf:bb:c4:59:36:d7:46:83:
87:27:26:5b:58:c2:f3:f0:07:53:58:2d:45:76:ca:
12:25:63:8d:a9:12:68:e3:eb:ce:a1:42:05:58:4b:
7b:66:a1:82:2a:8e:ed:0f:57:92:d9:a7:fb:a6:1a:
dd:16:65:88:c6:66:7f:fb:70:9b:03:74:57:75:6e:
6c:b2:19:84:0b:ad:b4:12:42:b4:98:98:15:15:c4:
a2:02:84:4f:58:e6:da:d4:df:e2:c2:1b:3f:f8:8e:
fa:7c:9e:45:94:ef:cd:e5:21:38:1f:23:a0:6b:d5:
ea:24:7d:ab:4a:08:48:ed:f4:c5:11:25:ab:ec:1c:
63:4f:cf:06:25:ea:d1:39:10:79:9d:25:05:68:e2:
ad:7a:f7:57:02:fd:e6:68:0a:e6:50:76:9b:cb:dd:
f7:7b:aa:99:06:9f:f8:d7:0e:65:da:59:29:dc:60:
7c:1c:56:33:d3:52:3b:b4:a8:81:b2:49:13:13:df:
3e:f7:60:5c:1a:28:e6:07:d4:cf:29:5c:65:01:ed:
96:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E5:53:5B:E4:8A:0D:9C:BB:22:59:88:6B:54:33:80:2E:99:95:C7
X509v3 Authority Key Identifier:
keyid:1C:98:95:51:28:BC:BC:76:93:EB:1A:93:7F:F2:8B:40:EB:34:48:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJiVUSi8vHaT6xqTf_KLQOs0SKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/AOVTW-SKDZy7IlmIa1QzgC6Zlcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c871d-853e-4a2d-a8d4-bf813cf081b7/1/HJiVUSi8vHaT6xqTf_KLQOs0SKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.182.0/24
Signature Algorithm: sha256WithRSAEncryption
23:55:ed:68:00:c7:56:51:72:5c:d3:46:9b:dd:e4:07:32:ce:
08:8f:78:a4:a8:ed:44:8f:d6:68:94:72:08:2a:02:72:b1:11:
eb:1e:b2:e5:59:c9:04:32:12:60:6b:1b:ec:81:70:23:e4:e5:
50:69:c4:82:26:76:f0:7b:a0:d5:b1:4c:89:53:d4:d7:bd:63:
85:8c:79:4c:df:54:4b:dc:90:17:fb:df:8c:20:88:22:05:01:
f3:23:d4:af:ee:21:4c:64:ad:01:02:7c:b2:f2:65:52:c6:39:
f9:e2:9e:8e:d3:8d:d8:ac:03:e1:40:bb:92:f1:87:53:35:c4:
2c:48:7e:e4:83:5c:36:5b:75:7a:30:ef:36:80:70:d3:65:d6:
37:ce:c4:8d:f1:2a:8b:5f:57:a7:f8:69:11:98:41:c3:16:e4:
7c:96:40:62:c5:89:4c:a3:5e:88:32:e0:92:7d:56:1d:3c:6e:
c0:15:07:aa:f5:91:11:e0:b4:cf:ca:ab:4c:14:72:44:f5:5a:
fe:6e:e1:e8:7f:c2:f4:f9:98:cf:cc:3e:3c:f9:32:79:77:6d:
c4:f4:3b:46:88:e4:a3:43:12:34:0b:0f:04:15:20:72:41:a5:
a8:fb:4b:43:f0:f7:48:b8:23:cb:26:f0:74:b0:11:b4:df:0d:
8a:fb:de:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:03 2024 by rpki-client on console-ams.rpki-client.org