Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/JhyW_s0jO3Gg1eaiZ5clBUwJrWU.roa
File: JhyW_s0jO3Gg1eaiZ5clBUwJrWU.roa (raw, json)
Hash identifier: ypiMVBbahEdicdTZJxNvr8dGNkFwY+PJuKIKr4aG5bU=
Subject key identifier: 26:1C:96:FE:CD:23:3B:71:A0:D5:E6:A2:67:97:25:05:4C:09:AD:65
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 01849ECC8C1A96CBF4D09759A92D7379164F
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/JhyW_s0jO3Gg1eaiZ5clBUwJrWU.roa
Signing time: Tue 22 Nov 2022 10:05:16 +0000
ROA not before: Tue 22 Nov 2022 10:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13213
IP address blocks: 91.193.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:cc:8c:1a:96:cb:f4:d0:97:59:a9:2d:73:79:16:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Nov 22 10:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=261c96fecd233b71a0d5e6a2679725054c09ad65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a5:9e:3d:4a:6e:58:e3:ad:91:91:5f:6d:05:
3a:d2:a3:8a:b1:87:fa:6a:aa:51:62:c9:53:31:f4:
30:10:c9:68:60:68:26:cc:c6:71:37:77:74:27:8b:
0d:86:dd:37:06:8c:c7:6e:be:96:fb:59:5a:aa:ac:
55:9a:61:5a:6b:31:9a:ca:6c:66:ae:98:06:a1:cc:
cb:bd:6b:a6:9b:4a:3b:f2:31:b9:8f:a6:e5:80:40:
2a:db:c8:c3:40:76:d9:69:10:6c:4a:b4:d0:bf:7e:
eb:79:c5:32:00:5f:e5:93:3d:fb:08:68:32:0f:ae:
29:1c:6a:79:48:18:b5:e7:96:6e:16:a7:cf:f5:49:
6f:15:9a:d2:50:ba:bc:d8:4e:74:80:76:03:fc:54:
9c:ad:1a:89:52:6d:1d:6a:33:75:23:bf:84:ad:ed:
19:73:53:96:de:4e:e9:af:18:ea:61:c3:89:f4:db:
02:46:fb:b4:5f:cd:61:ba:2a:8a:dd:ee:ec:9a:9b:
18:9a:6d:8b:be:23:5e:ea:f8:2b:4a:c4:fe:0d:b1:
6a:30:65:b5:ee:98:4f:8d:63:87:54:90:c1:96:6d:
c4:69:cc:73:56:17:e1:70:f4:27:91:a6:69:13:e9:
7c:8d:2b:02:3b:f9:23:d4:1c:4f:9d:bd:a4:c9:a5:
f3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:1C:96:FE:CD:23:3B:71:A0:D5:E6:A2:67:97:25:05:4C:09:AD:65
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/JhyW_s0jO3Gg1eaiZ5clBUwJrWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.233.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:57:a9:25:a2:25:f4:da:08:4f:0c:94:9a:a8:5e:7f:2b:c4:
4a:4c:34:2f:b2:73:98:15:0f:c3:c8:9f:c4:a0:a0:fb:1e:28:
03:c8:97:41:53:e0:87:c8:74:68:b5:5b:5b:e6:b0:26:a7:e3:
2b:ca:fd:09:33:2a:c1:84:59:9f:57:e0:71:80:49:b0:53:e3:
75:55:11:3f:3b:49:48:87:18:3f:e3:bf:a1:00:1a:cd:67:f1:
01:33:f8:92:82:ed:a4:47:ad:f3:e1:cc:3c:48:cf:32:cb:f6:
b2:c4:9a:b9:4d:3c:49:63:56:a3:33:c1:2d:47:77:a4:b5:eb:
aa:0e:99:c2:20:f5:ef:4d:e6:ae:0b:90:ad:10:d6:9e:b1:22:
77:bb:94:26:2c:41:d9:77:3b:55:48:55:42:b4:0a:4c:96:3d:
83:e2:58:f2:e8:97:8a:06:ba:36:5c:20:d4:12:20:63:66:95:
4d:90:43:34:94:82:a0:af:44:af:17:01:65:a6:f4:35:2c:5c:
25:09:8f:6a:fe:7c:ec:8e:d0:26:59:cc:05:98:f1:2e:42:5c:
70:df:5f:1a:c7:ba:b1:cb:64:a4:ca:b5:ae:18:b7:f1:10:c3:
d7:d8:c0:be:fa:b1:05:31:0d:00:ed:e1:c3:6c:9a:c9:ad:b0:
08:83:81:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:49 2023 by rpki-client on console-fra.rpki-client.org