Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/Cu12uiV-_z-JSCdPJkQ6z8nxBOI.roa
File: Cu12uiV-_z-JSCdPJkQ6z8nxBOI.roa (raw, json)
Hash identifier: ZXi/wU0gEqGLN7dEDZltgnEskLl81lcYSishn5P4jr8=
Subject key identifier: 0A:ED:76:BA:25:7E:FF:3F:89:48:27:4F:26:44:3A:CF:C9:F1:04:E2
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 0182C6DCCEE193D532B0C3B983B8227454BB
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/Cu12uiV-_z-JSCdPJkQ6z8nxBOI.roa
Signing time: Mon 22 Aug 2022 18:42:15 +0000
ROA not before: Mon 22 Aug 2022 18:42:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 91.193.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c6:dc:ce:e1:93:d5:32:b0:c3:b9:83:b8:22:74:54:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Aug 22 18:42:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0aed76ba257eff3f8948274f26443acfc9f104e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ac:2b:a2:82:2f:e0:39:bf:6c:db:1d:c5:85:
ec:d8:1a:7d:ab:2d:81:6b:d9:5b:db:59:b4:71:ed:
48:ac:43:fa:df:61:fb:e1:3a:18:a8:f5:4d:4e:9b:
61:51:d1:9a:7f:56:e0:2f:0d:89:1c:54:47:cc:90:
6f:5e:f3:9a:d7:f5:16:49:3c:6d:30:09:6a:1b:0b:
68:a2:b5:b3:61:f5:51:57:a9:9c:48:90:e3:d0:ac:
21:49:b5:c3:af:03:ed:a8:c2:4e:ec:44:20:56:c2:
06:a6:93:08:cd:9b:22:3b:fc:8f:08:fc:2a:07:ec:
98:a5:f7:f5:ae:d4:9e:0d:04:9c:df:07:2a:28:20:
96:f6:d9:5d:7d:e8:3f:50:33:db:d9:f9:64:ba:bc:
45:d0:55:8b:a6:2a:c7:5d:90:0b:1c:31:22:f9:52:
2e:13:ff:4d:7e:5c:fa:07:cf:a7:b1:6a:54:8a:29:
ff:b0:d0:d2:d0:60:0b:61:0f:71:22:3b:b7:f5:32:
06:bd:dd:7d:1d:5f:9c:82:c3:53:0d:43:5d:e1:e7:
fe:a6:96:18:a6:e2:18:9c:3f:d7:65:15:89:0b:fd:
d5:17:25:ed:43:2b:9d:d3:e5:bd:57:56:04:48:49:
18:54:4d:37:e1:1d:f4:20:15:3f:0e:0d:a7:38:1e:
4c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:ED:76:BA:25:7E:FF:3F:89:48:27:4F:26:44:3A:CF:C9:F1:04:E2
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/Cu12uiV-_z-JSCdPJkQ6z8nxBOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.233.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:52:41:ca:5f:59:c8:93:6f:ae:9d:7d:12:46:82:ef:c3:bc:
bf:e7:88:c9:54:7a:61:e5:ab:6d:56:03:e9:ed:a3:ad:4e:85:
83:fc:cc:85:84:10:38:fd:0a:45:35:00:69:b0:50:19:54:20:
aa:11:5c:82:b3:01:6c:0a:50:46:5a:d7:22:f0:ab:cc:de:fa:
f1:f6:4b:a2:67:7b:d5:0a:00:1a:a9:25:ea:90:7c:dd:81:de:
49:3d:fa:0f:be:67:ea:a1:10:01:b8:08:30:7f:ef:ca:55:4b:
eb:30:fc:62:d9:63:a6:2d:9d:bc:0d:10:a6:82:39:f8:86:d1:
6d:48:5c:bf:38:a3:c0:0a:6b:8e:cc:fd:0b:21:0a:60:e9:18:
94:ab:4b:41:6c:80:2f:b7:4f:03:f7:ec:ce:26:93:26:c2:e5:
ce:44:20:58:2d:07:62:fc:c7:9a:99:e5:7d:99:78:1d:fb:1e:
31:f5:5c:b1:65:f7:3f:e2:5d:9a:45:84:4b:47:24:0a:15:de:
b6:49:75:0e:87:7c:05:42:37:0d:20:47:23:51:68:76:a7:52:
dd:fc:1b:c0:6a:84:85:2e:37:f9:a8:db:d6:13:ef:c1:4a:e2:
fc:8e:53:42:e1:7d:00:0d:f2:07:48:1d:5e:99:96:51:37:df:
d6:dd:0c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:28 2023 by rpki-client on console-ams.rpki-client.org