Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/ywDmug5wmSm_UU7uYWjrPsGl030.roa
File: ywDmug5wmSm_UU7uYWjrPsGl030.roa (raw, json)
Hash identifier: CbD2XTks9LCyTcbzWR7b63yqMWiYUk/hhxhk4pZWjjo=
Subject key identifier: CB:00:E6:BA:0E:70:99:29:BF:51:4E:EE:61:68:EB:3E:C1:A5:D3:7D
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 01847B1154465BD36FA416099BF99A0BD308
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/ywDmug5wmSm_UU7uYWjrPsGl030.roa
Signing time: Tue 15 Nov 2022 11:34:03 +0000
ROA not before: Tue 15 Nov 2022 11:34:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212669
IP address blocks: 91.193.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7b:11:54:46:5b:d3:6f:a4:16:09:9b:f9:9a:0b:d3:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Nov 15 11:34:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb00e6ba0e709929bf514eee6168eb3ec1a5d37d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c8:74:24:b4:4e:83:db:5e:77:48:ca:76:5b:
d4:e3:1f:38:83:ee:15:4b:cb:36:ad:64:5f:c2:b8:
13:80:c2:d8:46:2e:55:a7:05:a9:f5:95:b1:04:fd:
18:48:87:25:4c:b3:18:0b:17:fb:0b:c3:af:7d:5d:
f8:0e:29:ae:c1:c7:27:9b:22:ca:b4:f5:ea:4d:98:
d3:bf:0f:82:69:5a:27:c6:92:7d:7b:26:fb:6b:3f:
ca:d2:4f:25:d2:af:c2:5f:da:16:00:9d:82:d6:25:
1c:25:cb:6d:7d:58:08:fb:e1:11:bf:8d:67:7e:d9:
da:8c:88:74:ad:41:92:3f:c0:fe:29:1e:7a:6c:9d:
c6:cf:3a:9b:b2:20:69:7c:ee:a7:79:9e:83:af:5d:
a2:77:d1:43:85:56:70:84:23:d1:80:59:c1:a9:e8:
32:dc:6c:8f:da:c1:f7:74:3b:bc:ea:a9:2d:67:52:
a8:0d:25:2b:f8:2e:0a:ae:f4:88:d7:0b:5c:09:46:
bd:65:f5:d8:a3:97:11:e2:13:93:bc:54:0f:2e:7d:
46:5b:ef:0e:7e:c6:13:79:7b:a3:19:ec:f6:0a:df:
9f:a9:a5:84:54:1d:ea:8d:e8:7c:50:45:2a:5b:28:
69:53:89:da:87:ae:4e:a0:f4:5d:7e:38:70:81:f2:
3a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:00:E6:BA:0E:70:99:29:BF:51:4E:EE:61:68:EB:3E:C1:A5:D3:7D
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/ywDmug5wmSm_UU7uYWjrPsGl030.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.235.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:1b:6a:a5:d2:03:0e:c7:fe:11:96:21:eb:a7:5a:14:61:17:
0c:2b:32:fe:35:b2:87:fd:19:1e:c7:be:dc:e7:d1:0a:94:78:
43:47:cd:8a:e0:51:b6:b0:d2:12:73:c1:bd:30:52:df:e1:d4:
ce:3a:fb:94:f8:02:68:e0:39:44:94:5f:35:c7:41:af:f1:57:
d1:c1:b6:a7:3d:50:34:05:5e:3a:40:f7:38:d7:91:df:d0:7e:
b5:52:a9:e0:e9:3b:0f:0f:e7:9b:13:cc:bc:e3:df:5e:31:9c:
59:72:63:2a:6f:e0:49:ab:41:4b:5d:27:9c:81:67:6b:f6:23:
65:a6:34:8b:f7:a9:9d:c8:38:7b:a2:5e:8f:8b:e1:8f:c1:e5:
29:ca:53:d3:5b:0d:16:f4:a8:bd:1f:6c:62:69:5c:04:0a:c4:
5e:26:9e:24:fb:1c:33:4a:ca:d7:0f:33:66:64:87:1b:1b:ae:
77:13:ff:46:58:88:a5:52:4a:3b:c3:5e:65:56:20:36:56:bc:
88:f8:b4:1f:49:b0:58:ab:11:ba:48:3e:f2:80:8e:5a:f3:cb:
d3:0e:e0:89:3d:7c:13:fe:3b:00:ac:33:25:4a:59:38:85:d3:
59:e7:e7:ef:79:b6:59:68:27:7a:2b:84:2f:a1:f8:ab:b8:03:
f1:61:9d:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:49 2023 by rpki-client on console-fra.rpki-client.org