Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/606dde-fc51-456e-b5f1-dcaf7ef7ae3a/1/mV2mxwCR_uF81QX3A-bgOkZ5X8k.roa
File: mV2mxwCR_uF81QX3A-bgOkZ5X8k.roa (raw, json)
Hash identifier: gQV9YFo2w8hbvebIfsm8FJ8MIU6mNYgIdbf7b+7OFxI=
Subject key identifier: 99:5D:A6:C7:00:91:FE:E1:7C:D5:05:F7:03:E6:E0:3A:46:79:5F:C9
Certificate issuer: /CN=58dd1017c53457a8a921419687bde8a8b8eb5611
Certificate serial: 4879
Authority key identifier: 58:DD:10:17:C5:34:57:A8:A9:21:41:96:87:BD:E8:A8:B8:EB:56:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WN0QF8U0V6ipIUGWh73oqLjrVhE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/606dde-fc51-456e-b5f1-dcaf7ef7ae3a/1/mV2mxwCR_uF81QX3A-bgOkZ5X8k.roa
Signing time: Thu 19 May 2022 14:23:01 +0000
ROA not before: Thu 19 May 2022 14:23:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43842
IP address blocks: 91.195.162.0/24 maxlen: 24
193.138.92.0/24 maxlen: 24
91.195.163.0/24 maxlen: 24
91.193.51.0/24 maxlen: 24
91.193.48.0/24 maxlen: 24
91.193.49.0/24 maxlen: 24
91.193.50.0/24 maxlen: 24
209.35.197.0/24 maxlen: 24
193.28.155.0/24 maxlen: 24
195.62.19.0/24 maxlen: 24
195.62.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18553 (0x4879)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58dd1017c53457a8a921419687bde8a8b8eb5611
Validity
Not Before: May 19 14:23:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=995da6c70091fee17cd505f703e6e03a46795fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:24:60:0e:c2:34:7b:51:e1:bf:6f:bb:9a:a2:
af:44:de:5f:a0:8b:d5:73:ec:44:11:1f:de:42:4b:
b6:69:47:84:b6:28:d1:85:96:88:2a:ff:53:90:ea:
7d:6d:aa:80:fb:22:d7:32:fa:7c:e9:0f:b2:2f:44:
bf:e4:86:0e:cc:8a:31:03:18:36:0b:76:c1:c0:47:
88:76:ee:1a:4b:a1:5b:3f:5a:dc:4c:ec:a9:73:f2:
c1:07:17:f7:7c:db:a9:39:a0:d6:d7:f1:e6:20:ce:
42:92:6f:de:bc:3f:27:48:e5:01:09:e1:3a:b6:da:
95:16:80:6e:27:80:23:a6:bb:4b:77:23:ae:df:eb:
94:a7:ba:71:45:43:01:82:28:78:fa:90:6b:03:2b:
57:af:c5:d8:aa:2b:be:9e:79:70:b3:fc:bf:40:a2:
de:c4:1e:55:e7:2c:69:a8:02:5b:fd:ca:38:9e:86:
dc:ee:f2:37:fe:e2:b4:05:e6:73:65:63:01:25:f6:
08:b4:f3:3a:4a:47:c6:4c:ec:d4:52:65:ae:2b:13:
eb:a6:26:51:af:57:58:96:97:22:c1:d2:06:e0:89:
64:72:23:dc:30:9e:6c:a7:e2:a6:b3:4f:3a:a4:98:
17:39:36:33:64:35:3e:db:a9:b6:1b:19:e2:6c:f2:
ac:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:5D:A6:C7:00:91:FE:E1:7C:D5:05:F7:03:E6:E0:3A:46:79:5F:C9
X509v3 Authority Key Identifier:
keyid:58:DD:10:17:C5:34:57:A8:A9:21:41:96:87:BD:E8:A8:B8:EB:56:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WN0QF8U0V6ipIUGWh73oqLjrVhE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/606dde-fc51-456e-b5f1-dcaf7ef7ae3a/1/mV2mxwCR_uF81QX3A-bgOkZ5X8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/606dde-fc51-456e-b5f1-dcaf7ef7ae3a/1/WN0QF8U0V6ipIUGWh73oqLjrVhE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.48.0/22
91.195.162.0/23
193.28.155.0/24
193.138.92.0/24
195.62.18.0/23
209.35.197.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d4:35:89:b8:0f:e2:71:f6:c3:b6:8d:47:ad:e3:b4:91:dc:
fe:e2:f0:04:66:c2:6c:50:90:98:bb:4e:37:40:c2:e7:08:76:
34:bc:20:29:55:ea:57:11:1f:fc:0e:b1:84:63:4b:9b:f5:69:
56:5b:45:ed:7b:d0:e3:12:be:81:b5:9d:c8:22:cc:03:28:79:
7e:d7:29:69:ce:88:47:21:bd:40:3b:33:c8:a8:f9:64:1b:72:
90:f2:26:2f:b5:cd:a2:df:89:7d:45:f5:d1:8d:1e:d6:c4:94:
5e:1d:00:ce:40:fe:e1:d6:b0:24:29:27:1f:c2:bf:26:69:62:
91:9f:62:69:6d:37:49:f7:07:e0:c0:f4:88:0e:e9:fa:f1:33:
ae:4f:66:8e:4d:e8:86:52:a2:75:58:90:d6:13:9d:02:a2:0a:
92:47:53:a2:64:28:6c:bb:db:06:3e:af:e6:67:99:8e:cd:13:
4e:4a:a9:9b:2f:65:74:84:98:bd:3c:24:db:33:4b:66:94:fb:
87:3d:53:00:69:51:24:36:05:dc:08:40:c8:e6:80:d1:0e:55:
0f:ed:b8:86:c9:f0:30:17:c7:5a:b8:a5:a2:91:90:b0:dd:d3:
e7:08:70:83:45:12:97:98:7c:63:9f:88:c7:a1:39:5f:e9:36:
94:4c:c5:0a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:02 2024 by rpki-client on console-ams.rpki-client.org