Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/A0BGSkM0mJJ_cl4UOI0c3cK_cJw.roa
File: A0BGSkM0mJJ_cl4UOI0c3cK_cJw.roa (raw, json)
Hash identifier: L6ILRO48QsXQd5wdf5m4JbCcFK6NhsR0YArFPbrFX28=
Subject key identifier: 03:40:46:4A:43:34:98:92:7F:72:5E:14:38:8D:1C:DD:C2:BF:70:9C
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 01854D0FD6E86DE1A62115854F03E227B9B4
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/A0BGSkM0mJJ_cl4UOI0c3cK_cJw.roa
Signing time: Mon 26 Dec 2022 06:12:41 +0000
ROA not before: Mon 26 Dec 2022 06:12:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 188.191.96.0/24 maxlen: 24
91.225.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:4d:0f:d6:e8:6d:e1:a6:21:15:85:4f:03:e2:27:b9:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Dec 26 06:12:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0340464a433498927f725e14388d1cddc2bf709c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:46:65:91:8c:7d:5a:b4:31:d7:36:ba:91:b9:
ab:82:52:ea:68:68:5f:fd:28:f1:f7:ab:83:6c:88:
82:82:61:96:94:56:12:55:49:5e:8a:9c:59:12:cb:
4b:5b:51:4d:31:20:38:3f:39:09:f2:56:a4:d5:f1:
98:42:09:95:9a:5a:9d:02:2e:3d:e1:e4:61:cd:ef:
32:7f:a8:ba:7a:1d:6b:98:5b:3b:cb:47:fa:4f:15:
ec:9a:13:e0:74:44:fa:dc:24:c0:28:2c:a6:76:03:
56:d5:c4:3f:7a:ac:d7:dc:19:9c:55:39:b2:fc:21:
45:4c:e5:0d:5e:6f:09:60:50:05:b5:ca:37:1f:5b:
65:e9:23:69:c2:f8:79:54:2a:59:56:e8:4a:6a:a8:
5d:93:30:3b:03:9d:95:51:6e:d9:89:9f:67:79:58:
2a:7b:19:5f:32:cb:00:f1:b2:2f:14:6f:56:86:1f:
b1:b8:30:ab:c5:96:98:58:73:5e:e2:f3:29:32:ff:
3e:94:9e:43:38:0d:51:fe:6f:29:a5:d8:38:b2:d1:
30:27:51:54:fb:a8:ee:4b:2e:46:54:a6:eb:42:8c:
20:af:11:2d:99:94:ab:71:63:a8:0a:d7:e2:7b:b9:
6b:cc:85:74:d1:65:36:37:a3:4a:6c:5f:36:0b:6b:
8e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:40:46:4A:43:34:98:92:7F:72:5E:14:38:8D:1C:DD:C2:BF:70:9C
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/A0BGSkM0mJJ_cl4UOI0c3cK_cJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.225.0/24
188.191.96.0/24
Signature Algorithm: sha256WithRSAEncryption
66:51:e9:49:c7:08:99:b8:02:ab:d0:4b:00:95:6a:99:83:a9:
c5:6c:ee:4f:07:0a:dd:72:ac:4b:a5:8b:08:75:d6:38:71:67:
4f:3d:3f:70:3e:d6:e6:a9:e2:74:d0:26:41:4b:f4:58:4f:de:
de:c5:43:7f:16:b8:ff:8f:30:57:60:9c:15:f4:37:3c:6e:7b:
66:f8:4d:f0:af:7a:99:0d:85:74:ec:4f:9d:36:42:d7:08:79:
d4:e1:c3:ff:2f:da:d6:7c:f2:ad:2f:af:95:24:a0:93:05:0a:
7b:67:d5:73:43:a6:04:53:34:2d:dd:89:7d:1f:1b:74:84:e1:
38:0b:2f:cc:36:14:51:07:43:7b:92:23:be:e4:00:f0:ab:1b:
1b:e9:e6:cc:cc:75:ff:cb:f6:af:5d:50:95:58:f1:0a:b3:60:
21:6b:e0:61:2f:ad:73:8f:b8:4e:41:e2:b4:49:0d:ed:cf:69:
e5:17:e3:ed:3b:61:09:49:aa:88:89:92:02:3d:15:9c:0e:97:
b8:c5:ec:a1:e0:3e:55:8a:e9:9a:11:cb:26:d6:b3:32:90:0d:
33:e5:b1:33:fe:14:d3:4e:d1:d3:63:eb:0f:9a:ca:0e:5b:d3:
95:60:db:0d:8f:c9:fc:26:b0:5e:c6:4e:2e:7b:41:b4:29:a4:
63:f4:16:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:06 2024 by rpki-client on console-fra.rpki-client.org