Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/XDklTwSp531-CxiuqqmHKqwcd-Q.roa
File: XDklTwSp531-CxiuqqmHKqwcd-Q.roa (raw, json)
Hash identifier: /jEzSQLxI6HMjRQNda3nfrJAUeGk1S5XuXRNMQdt0No=
Subject key identifier: 5C:39:25:4F:04:A9:E7:7D:7E:0B:18:AE:AA:A9:87:2A:AC:1C:77:E4
Certificate issuer: /CN=865786c75fc16584b0271ff27b971d723416618d
Certificate serial: 0182B552B3BC13565B311164BD493AE555D0
Authority key identifier: 86:57:86:C7:5F:C1:65:84:B0:27:1F:F2:7B:97:1D:72:34:16:61:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hleGx1_BZYSwJx_ye5cdcjQWYY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/XDklTwSp531-CxiuqqmHKqwcd-Q.roa
Signing time: Fri 19 Aug 2022 08:57:52 +0000
ROA not before: Fri 19 Aug 2022 08:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41798
IP address blocks: 91.185.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b5:52:b3:bc:13:56:5b:31:11:64:bd:49:3a:e5:55:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=865786c75fc16584b0271ff27b971d723416618d
Validity
Not Before: Aug 19 08:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c39254f04a9e77d7e0b18aeaaa9872aac1c77e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:a6:1b:87:a2:42:e2:be:b7:f3:d8:2f:25:c7:
5b:dc:94:01:d9:a6:d2:40:10:ab:53:a9:b4:2c:ff:
bf:4e:9e:8e:6f:66:4f:8b:85:b3:2e:7a:43:50:64:
54:71:10:0f:7e:ec:f3:47:af:c6:1c:08:87:e8:75:
e6:fc:70:25:41:f2:aa:85:0c:03:fb:4a:c9:94:f6:
7b:eb:0b:7b:31:22:41:49:24:4a:50:06:4a:25:8e:
75:96:ed:ed:b4:fc:9a:76:e2:2d:0b:8a:78:f7:9f:
2d:de:22:d3:d5:7b:3c:57:e3:ab:d0:de:40:87:29:
a9:ae:3e:6a:da:dc:0b:7d:eb:bb:d8:81:c2:b3:a1:
af:ee:9c:f0:3d:4d:c8:f5:98:f7:00:5a:05:ca:22:
64:e3:6e:2d:fc:05:20:8b:b4:40:5d:9e:08:c8:40:
88:33:15:df:df:44:e4:d6:c9:d6:92:66:d2:38:7f:
5c:eb:5b:a7:36:21:a3:0d:28:ea:52:ba:9b:f1:ac:
09:1e:5f:74:1a:7d:88:20:b3:f2:8a:a2:b1:23:ce:
c2:84:f3:66:0c:e5:48:0e:24:72:1f:6c:68:60:e0:
fe:53:83:00:6d:e6:b3:e3:a1:10:83:40:a8:b8:a5:
55:d4:1c:52:61:64:5d:0f:19:73:21:05:da:60:ce:
8c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:39:25:4F:04:A9:E7:7D:7E:0B:18:AE:AA:A9:87:2A:AC:1C:77:E4
X509v3 Authority Key Identifier:
keyid:86:57:86:C7:5F:C1:65:84:B0:27:1F:F2:7B:97:1D:72:34:16:61:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hleGx1_BZYSwJx_ye5cdcjQWYY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/XDklTwSp531-CxiuqqmHKqwcd-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/19a649-0442-4f3d-9cb9-8cf9d50adf29/1/hleGx1_BZYSwJx_ye5cdcjQWYY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.185.1.0/24
Signature Algorithm: sha256WithRSAEncryption
00:20:fd:81:33:ef:83:f4:eb:ce:27:5e:f3:42:a4:bb:99:a3:
c5:99:ec:8b:f0:46:14:e4:6e:58:b1:5a:a4:de:35:a7:30:d4:
36:7f:2b:70:75:7b:42:b7:31:c1:0d:52:cf:1d:f4:44:98:01:
4e:bb:b8:a5:fb:04:7b:a1:dc:64:79:b9:39:d8:e0:ba:d5:d7:
6d:ec:7b:d6:f3:65:6a:cb:2d:eb:15:4e:23:e6:29:12:c0:84:
4d:d6:f4:91:3d:60:e8:28:d0:db:81:50:2f:57:51:f6:bc:95:
53:1c:69:a8:6c:f7:76:6b:e2:04:22:bd:c6:b5:95:7f:b8:a3:
85:23:3b:ab:9f:0f:e5:59:c1:11:a3:b7:6e:0a:ce:46:ca:e6:
57:4c:3c:f0:a9:1b:c4:d3:72:e7:fd:06:4a:fa:34:ff:c2:e1:
fa:61:74:59:a4:4b:a5:02:e7:99:6d:9d:bc:fe:14:42:c8:ff:
77:f0:54:59:8b:e9:89:20:bc:c6:60:71:ea:34:61:37:53:f1:
7b:ec:0e:d1:ed:8f:9e:1d:9d:91:17:52:b3:74:02:62:38:08:
c3:27:4a:2d:d8:49:6a:21:5a:41:a1:ff:e4:f4:bc:52:3d:40:
de:c1:12:6f:12:69:57:30:ee:9c:c4:0e:96:8f:a7:f0:d6:58:
0c:db:dd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:38 2024 by rpki-client on console-fra.rpki-client.org