Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/ed1594-2b3f-4962-acab-ceb21b8e832b/1/IlWuAGBshkfz1tbyLW0GyXpPVSo.roa
File: IlWuAGBshkfz1tbyLW0GyXpPVSo.roa (raw, json)
Hash identifier: gOvEFI9p+G4Ujq+UtNYwgHgEyQQcJqDZjLL+A4g7yY0=
Subject key identifier: 22:55:AE:00:60:6C:86:47:F3:D6:D6:F2:2D:6D:06:C9:7A:4F:55:2A
Certificate issuer: /CN=72a3c6ca435ebdbf96fffa4c5d98e4600828f712
Certificate serial: 0250E66D
Authority key identifier: 72:A3:C6:CA:43:5E:BD:BF:96:FF:FA:4C:5D:98:E4:60:08:28:F7:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cqPGykNevb-W__pMXZjkYAgo9xI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/ed1594-2b3f-4962-acab-ceb21b8e832b/1/IlWuAGBshkfz1tbyLW0GyXpPVSo.roa
Signing time: Sat 01 Jan 2022 07:52:36 +0000
ROA not before: Sat 01 Jan 2022 07:52:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48642
IP address blocks: 91.211.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38856301 (0x250e66d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72a3c6ca435ebdbf96fffa4c5d98e4600828f712
Validity
Not Before: Jan 1 07:52:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2255ae00606c8647f3d6d6f22d6d06c97a4f552a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:79:d9:53:61:1c:a7:28:05:b1:8c:0e:07:11:
20:0d:1b:3e:db:37:d6:36:1a:02:94:c8:40:d4:6c:
f0:9f:cd:36:55:2b:40:0b:08:dd:7c:22:19:06:70:
f5:3b:fb:48:09:36:4a:b1:62:ee:89:27:36:6b:06:
b8:c1:e8:98:1e:c5:f8:79:c8:b7:7e:91:54:24:27:
4d:98:65:1f:89:5c:cd:bd:dd:c0:c8:29:4d:a9:b4:
dc:c1:24:66:a1:bf:68:8a:23:a0:28:40:8d:5d:71:
45:8d:39:a9:56:1d:de:b5:37:28:ae:19:70:d2:4c:
b9:54:b2:cb:38:1d:f9:92:56:90:42:e1:37:e3:a0:
1b:62:1f:92:7c:c9:c1:0a:ca:7e:75:3b:a7:7b:92:
5b:61:bd:6d:d7:e8:f4:cb:ae:e1:13:f7:d5:91:ca:
ba:11:74:a8:ab:22:91:96:2d:cc:d9:d6:a1:47:13:
54:9d:dc:2e:ea:b4:21:11:27:dc:96:ab:71:03:58:
51:8b:cc:cb:2f:d4:b5:5f:29:f5:7d:b3:5b:51:2c:
56:db:b7:8b:67:14:af:62:74:1d:7b:87:8c:cc:62:
ba:d7:ef:e9:ea:bf:95:a9:e9:b7:02:1f:a5:bf:bd:
85:4b:13:22:f5:b3:0d:35:b4:55:da:1d:ea:9b:36:
f5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:55:AE:00:60:6C:86:47:F3:D6:D6:F2:2D:6D:06:C9:7A:4F:55:2A
X509v3 Authority Key Identifier:
keyid:72:A3:C6:CA:43:5E:BD:BF:96:FF:FA:4C:5D:98:E4:60:08:28:F7:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cqPGykNevb-W__pMXZjkYAgo9xI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ed1594-2b3f-4962-acab-ceb21b8e832b/1/IlWuAGBshkfz1tbyLW0GyXpPVSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/ed1594-2b3f-4962-acab-ceb21b8e832b/1/cqPGykNevb-W__pMXZjkYAgo9xI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.20.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:9d:47:63:86:8c:22:cd:bf:f7:ad:10:7f:32:06:f3:8f:85:
f7:7c:26:96:69:a5:77:f9:eb:2c:71:8e:ee:8c:20:af:11:34:
51:28:13:14:52:d0:06:ac:1f:9c:e0:8b:4a:6a:27:e0:75:bf:
93:1b:d9:10:c3:c6:8a:db:b0:b0:42:32:fc:8d:41:c3:5c:f3:
31:0e:aa:64:05:94:fe:86:da:83:4b:7e:cd:6a:9b:89:e3:c0:
e7:7d:d2:dc:fb:e9:95:2e:96:39:f7:90:7a:8f:da:df:b5:3b:
55:48:c3:8f:89:9c:3b:28:a9:07:a2:83:e4:71:d0:cb:2c:1a:
be:55:5e:13:72:df:70:87:58:74:4a:1e:e9:5a:9a:39:cd:d4:
58:fe:41:2c:4e:90:7f:9d:e9:c4:8c:23:e0:81:88:ef:be:c4:
dc:d6:13:b9:a0:55:b1:7b:ee:a6:ce:74:e8:41:90:24:6c:e1:
6c:1c:f2:57:a3:cb:9b:8a:29:d1:c4:da:73:b1:77:0d:fb:63:
6a:e0:93:df:b9:ec:d0:63:bd:7f:6a:cd:c7:6f:f3:35:9d:ff:
5b:ed:bc:fa:30:ec:57:8c:7b:48:0b:5e:17:e8:a8:51:3c:24:
60:3c:4a:94:83:d1:83:48:32:7e:20:7c:d1:d4:8e:a8:01:f7:
dc:6f:50:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:56 2024 by rpki-client on console-fra.rpki-client.org