Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/a8f553-f52c-4949-97e2-822d159a97af/1/0__iL-MXqrjS5sAskW4B2RP-95Q.roa
File: 0__iL-MXqrjS5sAskW4B2RP-95Q.roa (raw, json)
Hash identifier: Qn9KOAjSzXymScwzkUQN05ZPS/AtmogbkVEk6ia20Tg=
Subject key identifier: D3:FF:E2:2F:E3:17:AA:B8:D2:E6:C0:2C:91:6E:01:D9:13:FE:F7:94
Certificate issuer: /CN=266547208206ad54474c69fccbedc24aa56a62c2
Certificate serial: 0183C7A31257BB892BC544566DC941CF9DBD
Authority key identifier: 26:65:47:20:82:06:AD:54:47:4C:69:FC:CB:ED:C2:4A:A5:6A:62:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmVHIIIGrVRHTGn8y-3CSqVqYsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/a8f553-f52c-4949-97e2-822d159a97af/1/0__iL-MXqrjS5sAskW4B2RP-95Q.roa
Signing time: Tue 11 Oct 2022 15:21:36 +0000
ROA not before: Tue 11 Oct 2022 15:21:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12301
IP address blocks: 91.196.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:a3:12:57:bb:89:2b:c5:44:56:6d:c9:41:cf:9d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=266547208206ad54474c69fccbedc24aa56a62c2
Validity
Not Before: Oct 11 15:21:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3ffe22fe317aab8d2e6c02c916e01d913fef794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:90:f6:c0:3a:40:e9:15:c9:3a:c3:f5:d1:8b:
d0:d0:cd:96:cf:98:08:f1:78:11:67:c1:27:a8:5b:
d6:42:86:ea:97:69:48:ee:82:3c:e9:d9:c2:63:b5:
d6:7f:68:cf:54:7a:ca:e8:4b:4a:ff:bb:d7:0b:60:
03:97:d0:5b:11:a1:10:37:0d:39:a3:f1:b8:bc:c7:
fc:14:ee:99:80:48:10:ef:06:87:0e:19:53:74:2b:
64:65:00:5d:ee:24:35:ab:fd:57:cd:23:03:ba:dc:
0b:f6:1d:0d:50:3d:b5:9d:fa:79:f7:6e:78:d0:6d:
4d:5e:fa:0c:05:82:2a:c9:19:de:f6:87:47:81:f9:
f2:c8:32:de:c2:1d:f9:57:95:fc:a1:f5:09:89:58:
60:0d:54:c3:f2:d1:3e:92:1e:3f:e0:0d:41:ad:fd:
28:c4:d2:ca:69:e2:b4:a7:d0:92:1a:8a:11:8a:ea:
ac:08:2b:95:c4:ae:3a:3f:d8:bc:96:4f:53:6c:88:
7a:e4:35:58:a4:c8:17:96:15:38:aa:89:0e:47:c2:
73:28:78:bb:c5:04:99:06:e5:85:07:f9:e3:49:35:
13:e8:ee:be:8b:f4:49:8f:ce:49:a6:c3:d9:c7:c4:
31:e0:bf:f3:d7:48:43:4c:fd:6b:43:a2:d0:fe:b9:
c3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FF:E2:2F:E3:17:AA:B8:D2:E6:C0:2C:91:6E:01:D9:13:FE:F7:94
X509v3 Authority Key Identifier:
keyid:26:65:47:20:82:06:AD:54:47:4C:69:FC:CB:ED:C2:4A:A5:6A:62:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmVHIIIGrVRHTGn8y-3CSqVqYsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/a8f553-f52c-4949-97e2-822d159a97af/1/0__iL-MXqrjS5sAskW4B2RP-95Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/a8f553-f52c-4949-97e2-822d159a97af/1/JmVHIIIGrVRHTGn8y-3CSqVqYsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.112.0/22
Signature Algorithm: sha256WithRSAEncryption
15:4b:43:ba:a9:ed:13:de:55:9b:6f:48:7e:b1:39:9e:ed:8b:
14:37:af:31:d1:89:ea:0e:57:13:bb:13:df:c1:83:f0:3b:c3:
c0:6a:34:57:f7:c6:cc:bf:a4:97:63:fe:d2:f2:0b:0e:39:cf:
f9:8c:ea:dc:2d:68:a4:18:43:55:76:2f:06:6d:87:04:22:41:
d8:ad:6f:ae:3d:f4:4d:29:42:16:43:07:39:b1:f3:e9:9a:76:
78:91:27:97:cc:6a:19:d6:56:0d:e5:09:c6:f6:da:74:bf:c6:
51:d8:b1:bf:c5:40:f7:62:e0:2f:a6:15:9a:9c:cd:51:f2:ff:
85:15:ce:02:de:f2:e6:e6:30:44:30:75:dc:92:d7:0a:d1:40:
24:c2:48:e5:d6:7b:18:08:76:e5:45:2e:ec:6d:5f:c2:b0:cd:
b9:0c:04:db:5e:85:cf:e2:2a:d8:2b:e7:1d:79:5c:38:83:b7:
e3:a7:cc:73:1a:5c:29:65:3b:29:93:41:3c:5c:8a:37:ea:8b:
fb:e0:a0:78:4e:0d:05:d1:15:44:f9:be:22:21:76:d7:89:b1:
1f:ab:e4:e1:7b:97:e0:60:47:62:97:24:89:ce:73:89:b8:c0:
9f:2a:cf:f2:99:a3:6d:4e:07:e2:ce:f7:c5:85:45:4f:d4:b2:
ec:cc:75:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:19 2024 by rpki-client on console-ams.rpki-client.org