Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Gx5v865p-Uc6sElmpH0gnvso0-w.roa
File: Gx5v865p-Uc6sElmpH0gnvso0-w.roa (raw, json)
Hash identifier: jH8kdTWZf7jaxcWd75t8X6eddJy18F6W3PriqGAWiiw=
Subject key identifier: 1B:1E:6F:F3:AE:69:F9:47:3A:B0:49:66:A4:7D:20:9E:FB:28:D3:EC
Certificate issuer: /CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7
Certificate serial: 0247CCB7
Authority key identifier: 53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Gx5v865p-Uc6sElmpH0gnvso0-w.roa
Signing time: Sat 01 Jan 2022 05:52:28 +0000
ROA not before: Sat 01 Jan 2022 05:52:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198701
IP address blocks: 91.238.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38259895 (0x247ccb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7
Validity
Not Before: Jan 1 05:52:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b1e6ff3ae69f9473ab04966a47d209efb28d3ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:13:84:cc:46:c5:5e:a1:82:0b:97:72:f4:4b:
05:28:3c:31:33:fa:23:84:f5:52:ad:62:b2:d4:4e:
14:b2:92:71:5e:7d:ed:60:bc:9b:07:fe:21:e7:03:
89:3b:36:72:ca:f5:b7:52:8d:51:e4:22:4c:4d:cf:
e6:26:cd:f8:3d:5a:71:45:c4:10:e5:32:c3:22:79:
72:c4:4e:4b:e0:4c:8e:9b:40:a3:1b:a5:08:51:e3:
da:5f:71:09:23:ce:ae:fe:63:e2:5a:00:c2:25:e4:
15:07:42:5d:31:8e:cc:c2:aa:65:95:af:ec:fa:4a:
4d:03:d5:22:be:2f:31:d4:39:94:b9:a0:7e:76:3f:
1f:3d:6e:30:95:f5:87:ab:10:de:81:58:2a:59:92:
d1:df:dd:e7:ad:48:78:09:35:a9:ab:49:2f:85:ee:
ff:a7:ef:f2:22:65:7e:5e:91:2e:96:0b:54:4d:82:
a5:4f:be:69:91:1b:81:65:d1:5e:70:49:0d:3a:52:
a5:10:26:95:8a:6e:61:f3:24:97:04:75:0e:f3:52:
d7:2d:0e:f1:29:c4:57:ef:6c:ef:78:62:47:6c:49:
f5:a0:4f:a2:40:78:77:df:40:03:5b:bf:06:99:e5:
c4:ca:bc:cd:7d:3f:3f:86:a7:1c:78:77:7f:ec:07:
03:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:1E:6F:F3:AE:69:F9:47:3A:B0:49:66:A4:7D:20:9E:FB:28:D3:EC
X509v3 Authority Key Identifier:
keyid:53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Gx5v865p-Uc6sElmpH0gnvso0-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.22.0/24
Signature Algorithm: sha256WithRSAEncryption
45:cf:45:e7:71:43:f7:84:fd:6c:48:80:f3:b5:43:78:2d:7c:
91:90:0f:d4:b2:8d:6f:85:f4:e6:49:51:59:ff:c2:14:30:82:
2b:5c:bf:21:fa:ae:92:93:80:d7:b1:fb:19:72:9d:6c:90:9d:
28:b3:c2:e0:c5:33:3e:70:90:a9:91:4f:d2:9b:61:59:85:5b:
c6:17:d1:5a:f0:eb:8f:e2:c6:56:e0:c3:d3:74:67:f8:e0:b8:
16:8f:44:89:56:62:8a:b7:2d:32:3f:25:14:28:85:30:3f:8b:
32:44:3a:dc:13:4c:42:45:5e:dd:d6:53:a5:65:ff:fa:4a:c6:
ec:d2:22:26:30:3c:7c:72:fd:ea:6e:2c:e5:2d:eb:2a:af:8e:
d5:5c:c3:67:be:ee:42:cc:fb:85:8c:52:4a:c5:c3:ef:a0:89:
ad:e7:4b:9f:d3:21:89:31:7d:a8:4a:95:67:7f:1d:53:98:0c:
60:fe:f2:cc:16:b4:17:04:5f:07:e3:5f:bc:e7:ec:cc:3c:c6:
ea:4c:f7:a7:ea:06:89:12:8d:67:91:cc:8e:d9:3b:1c:cc:ce:
86:4a:bd:2f:92:1f:c2:f5:06:a1:42:b4:e0:04:21:64:cd:83:
d9:2e:16:a9:66:db:f8:54:35:6f:67:be:d5:98:f2:57:ca:98:
03:b1:1f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:05 2024 by rpki-client on console-fra.rpki-client.org