Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/b361cb-e610-4e8c-9b22-dd61b7e44baf/1/pRYE4g1RiLOcs5PVXFyShocCrCg.roa
File: pRYE4g1RiLOcs5PVXFyShocCrCg.roa (raw, json)
Hash identifier: FGWnTJlgLNxHrC3INdeS0+Xd6xIT5tKALB62BzFVj8c=
Subject key identifier: A5:16:04:E2:0D:51:88:B3:9C:B3:93:D5:5C:5C:92:86:87:02:AC:28
Certificate issuer: /CN=5811ab97aac984b7524effad5fac68eb1e19cdce
Certificate serial: 0452813A
Authority key identifier: 58:11:AB:97:AA:C9:84:B7:52:4E:FF:AD:5F:AC:68:EB:1E:19:CD:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WBGrl6rJhLdSTv-tX6xo6x4Zzc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/b361cb-e610-4e8c-9b22-dd61b7e44baf/1/pRYE4g1RiLOcs5PVXFyShocCrCg.roa
Signing time: Sat 01 Jan 2022 12:03:34 +0000
ROA not before: Sat 01 Jan 2022 12:03:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197611
IP address blocks: 91.224.188.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72515898 (0x452813a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5811ab97aac984b7524effad5fac68eb1e19cdce
Validity
Not Before: Jan 1 12:03:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a51604e20d5188b39cb393d55c5c92868702ac28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c8:f7:e3:6a:39:21:7c:ab:e0:d3:ce:e3:37:
5d:6d:d8:ff:62:f2:21:54:d1:44:90:2d:f3:21:47:
09:e5:5c:25:93:ed:2e:9c:b7:77:e7:a8:be:41:20:
1c:a9:db:77:9d:e2:f9:ed:6e:c0:c1:17:f4:e2:c0:
31:9c:82:a6:cd:aa:ea:a3:2c:af:ab:19:23:27:b5:
2b:8b:77:f8:ff:5f:2a:a4:7d:20:65:f4:91:c7:3b:
2c:6d:b5:ee:cf:92:ab:d5:36:c1:61:51:eb:83:77:
70:35:aa:ee:b1:d3:8c:de:3f:69:00:58:0c:65:cc:
56:3f:b9:b1:bc:61:f3:1f:4a:a5:c5:d3:16:7a:e9:
1c:ce:ae:aa:04:1e:6a:07:b8:f7:c6:04:ad:65:0b:
fd:b2:9c:0a:3a:01:3d:02:6e:e3:d7:0f:b5:bd:48:
b3:f4:e7:09:26:72:27:05:5c:dd:a3:5f:26:4c:be:
cc:e9:10:d5:9a:0f:73:50:c7:4d:e7:23:e9:5b:a9:
17:9d:d6:b3:00:89:e8:e1:2f:0c:0e:fb:62:75:f4:
6f:f4:9e:73:2e:bb:ff:8f:14:e8:06:7b:8b:f1:53:
96:c2:37:66:08:5b:32:0f:e3:b6:7d:e2:38:4b:6d:
70:1b:38:22:40:35:97:c1:34:60:c0:23:36:57:49:
e7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:16:04:E2:0D:51:88:B3:9C:B3:93:D5:5C:5C:92:86:87:02:AC:28
X509v3 Authority Key Identifier:
keyid:58:11:AB:97:AA:C9:84:B7:52:4E:FF:AD:5F:AC:68:EB:1E:19:CD:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WBGrl6rJhLdSTv-tX6xo6x4Zzc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b361cb-e610-4e8c-9b22-dd61b7e44baf/1/pRYE4g1RiLOcs5PVXFyShocCrCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/b361cb-e610-4e8c-9b22-dd61b7e44baf/1/WBGrl6rJhLdSTv-tX6xo6x4Zzc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.188.0/23
Signature Algorithm: sha256WithRSAEncryption
a9:41:90:46:e1:b7:9d:7b:72:a8:39:6e:e2:3f:6e:9d:3e:95:
83:50:b6:7d:1c:1d:13:36:e1:d7:89:e1:87:ae:57:f2:aa:89:
fd:e5:38:ab:3f:79:96:fc:c1:a3:7b:85:f1:5f:61:74:2a:96:
e1:74:26:98:c5:3e:7f:33:d0:e2:91:7c:0b:c4:58:57:3d:f0:
25:a4:35:d2:a8:75:c9:1a:7f:42:2d:1b:0f:c2:6f:6b:a4:7e:
11:8f:01:13:85:34:c6:48:f6:78:5c:90:4e:8b:9b:44:48:8f:
53:eb:46:cf:ae:aa:c2:a5:a2:ce:39:77:ff:f6:bf:ce:51:4c:
4a:15:22:33:d2:b5:9d:66:91:a1:13:93:17:7a:5c:3c:40:25:
63:28:b8:8a:23:3a:9b:14:00:b6:8b:95:78:bd:79:7e:67:bb:
f5:56:a1:ac:a8:17:38:b4:b0:36:cc:0f:bd:26:46:b2:29:84:
a5:8a:d5:33:94:92:3d:dd:4d:38:e8:30:ce:a1:3d:19:2e:4f:
74:2d:2d:cf:e1:04:b2:1e:e5:87:5d:3b:06:21:07:3b:4e:5d:
4d:0b:9f:6d:19:e3:55:c3:8c:07:fa:6d:a9:64:c0:58:18:5d:
1b:e5:09:db:c4:c8:6f:12:92:70:5a:ee:35:76:8b:57:e7:0e:
ce:df:29:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:57 2024 by rpki-client on console-fra.rpki-client.org