Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/mwPJPMhMzw-07dcr4AbnZXSjL2o.roa
File: mwPJPMhMzw-07dcr4AbnZXSjL2o.roa (raw, json)
Hash identifier: 7vNMdg6J6gbIPGGW/+QYRo7KiddHZgR+yCio0AwBWLA=
Subject key identifier: 9B:03:C9:3C:C8:4C:CF:0F:B4:ED:D7:2B:E0:06:E7:65:74:A3:2F:6A
Certificate issuer: /CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Certificate serial: 0182F8E3501C51331C8DE9829968B29B71AB
Authority key identifier: CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/mwPJPMhMzw-07dcr4AbnZXSjL2o.roa
Signing time: Thu 01 Sep 2022 11:50:22 +0000
ROA not before: Thu 01 Sep 2022 11:50:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35297
IP address blocks: 91.236.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f8:e3:50:1c:51:33:1c:8d:e9:82:99:68:b2:9b:71:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Validity
Not Before: Sep 1 11:50:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b03c93cc84ccf0fb4edd72be006e76574a32f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f6:17:03:28:d1:a2:fa:a5:dc:a1:aa:b3:37:
cf:e9:a2:c4:44:b7:de:10:1f:cc:75:73:71:6f:9c:
5c:00:b4:cf:83:db:7c:a3:3f:f5:e8:ed:6c:08:d7:
b6:67:82:fd:c6:8e:40:b0:ee:38:65:be:e5:3f:d6:
47:de:65:34:94:4f:65:96:be:72:3a:b5:67:da:84:
55:89:79:1a:b5:69:00:b0:14:c1:ef:23:f2:ef:3a:
48:ab:f8:ea:cc:bb:a5:2c:be:25:2a:52:9d:56:bb:
70:d0:f8:c3:a0:b2:8f:7e:a2:a5:34:84:6b:38:db:
25:6e:4f:ce:b0:86:99:be:73:2d:1d:86:4e:59:f6:
41:76:f6:66:2f:dc:ce:9d:18:b2:f9:d8:cb:2f:40:
e8:e2:18:9f:5b:63:72:fd:24:39:be:00:a2:e6:24:
50:b5:d5:98:77:d9:78:66:f6:61:42:6f:96:f8:1d:
4d:34:db:32:ff:41:fa:b1:37:f2:cf:14:09:41:69:
eb:73:10:ae:41:53:32:d7:15:62:14:35:4b:d9:58:
9e:c5:f1:80:2c:6c:a7:47:28:23:99:ee:ea:37:1d:
d1:00:1e:d7:17:55:ba:fd:6e:60:3a:ad:f6:64:e4:
43:df:8f:69:09:e1:47:85:c4:32:74:f3:41:2a:f7:
7d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:03:C9:3C:C8:4C:CF:0F:B4:ED:D7:2B:E0:06:E7:65:74:A3:2F:6A
X509v3 Authority Key Identifier:
keyid:CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/mwPJPMhMzw-07dcr4AbnZXSjL2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.154.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:75:f3:89:cb:33:5f:b7:39:d3:c9:6c:12:a4:3d:01:3a:8e:
b0:f1:da:61:91:38:0b:8f:1e:0f:62:8c:91:98:90:83:8a:86:
36:1b:a6:46:25:ba:ad:b6:f1:9d:48:44:51:4a:06:4a:fe:1d:
34:50:d8:16:a0:a7:68:c2:17:b2:c8:2b:c6:69:48:50:8e:7d:
0b:f1:4c:24:9e:3a:c9:30:ff:c4:f5:a5:7e:4b:1b:d5:e9:19:
96:32:ad:7c:1d:e6:bb:40:d4:cb:9d:3c:ee:05:5a:d8:1e:29:
77:9f:ef:e1:3b:47:9c:fe:42:91:1b:ef:83:31:9b:7e:a7:33:
7d:2d:a1:a6:47:29:f3:be:34:45:eb:f1:38:f5:53:cc:85:66:
ae:90:ea:6a:1a:b4:c9:a6:82:66:57:a9:d1:a1:be:5f:6d:1b:
1e:f0:37:9f:9e:53:64:67:50:05:8f:c9:8d:6b:64:fc:c4:21:
3a:30:30:4b:2d:15:0b:c2:ce:b7:91:88:d7:9c:e5:f0:67:7c:
a4:58:de:3e:cf:ad:d9:ab:5f:25:24:ac:3d:9a:6b:55:56:b2:
90:d1:71:4e:b6:17:27:46:b9:21:64:c0:38:62:9e:64:f9:0f:
bc:49:3e:d6:f0:6a:9e:ec:cd:89:0b:15:87:59:9c:d0:b7:d4:
b5:16:1d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:14 2024 by rpki-client on console-fra.rpki-client.org