Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/8c3d5c-a36c-4e3f-a059-1a5579e8c6c0/1/8aqxexsrRZldwV3WmGRJ2NyisQU.roa
File: 8aqxexsrRZldwV3WmGRJ2NyisQU.roa (raw, json)
Hash identifier: v9UTOUmnSFqPAYvphsubVOs4MrkC0yFCFQB3qj/PiUQ=
Subject key identifier: F1:AA:B1:7B:1B:2B:45:99:5D:C1:5D:D6:98:64:49:D8:DC:A2:B1:05
Certificate issuer: /CN=a1864edfa412d77a03cbf59131e3fcc03a60e188
Certificate serial: 118BA32A
Authority key identifier: A1:86:4E:DF:A4:12:D7:7A:03:CB:F5:91:31:E3:FC:C0:3A:60:E1:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oYZO36QS13oDy_WRMeP8wDpg4Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/8c3d5c-a36c-4e3f-a059-1a5579e8c6c0/1/8aqxexsrRZldwV3WmGRJ2NyisQU.roa
Signing time: Sat 01 Jan 2022 15:00:13 +0000
ROA not before: Sat 01 Jan 2022 15:00:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201322
IP address blocks: 91.186.70.0/24 maxlen: 24
91.186.71.0/24 maxlen: 24
91.186.68.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 294363946 (0x118ba32a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1864edfa412d77a03cbf59131e3fcc03a60e188
Validity
Not Before: Jan 1 15:00:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1aab17b1b2b45995dc15dd6986449d8dca2b105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c6:72:65:93:e9:10:81:76:71:1c:9c:e8:a9:
ba:48:c9:9b:ec:97:d9:6f:3f:ea:77:44:99:8c:e6:
e5:c7:0e:ea:c7:05:7e:a0:e1:8a:6a:d4:fd:06:71:
7f:fd:b3:23:38:5d:79:62:f6:bf:84:19:46:0a:7f:
81:26:e5:6e:f3:95:d8:e6:67:da:87:fc:a6:87:34:
81:c0:94:75:09:f1:13:ce:57:53:85:2b:e9:41:b2:
d1:ce:a0:0f:52:28:6c:14:a6:1d:35:f4:6e:24:31:
90:70:ee:ab:f2:40:08:29:e8:cd:84:09:cb:95:79:
14:4e:2a:e2:36:e7:90:b0:a6:69:8f:49:34:29:ea:
6d:c0:39:2d:ae:01:c4:5d:e6:9d:59:44:26:44:73:
3f:23:ec:86:0c:dd:5b:09:ca:1c:6a:ac:73:67:1f:
79:31:d6:20:3b:b9:81:0f:cc:49:f9:67:da:17:4d:
0e:a3:b7:98:f4:f8:f7:da:22:52:b2:e2:27:1b:27:
6f:b2:2b:3b:91:6b:ac:ab:c7:7b:26:92:a3:c3:cb:
b5:52:dc:fe:75:ae:6c:d7:fd:9e:ba:c7:62:ca:38:
33:d9:96:22:84:ff:36:e2:92:f5:9f:f4:86:71:90:
50:be:1b:2d:f7:35:44:6e:1a:27:c7:c9:a5:3b:26:
d2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AA:B1:7B:1B:2B:45:99:5D:C1:5D:D6:98:64:49:D8:DC:A2:B1:05
X509v3 Authority Key Identifier:
keyid:A1:86:4E:DF:A4:12:D7:7A:03:CB:F5:91:31:E3:FC:C0:3A:60:E1:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oYZO36QS13oDy_WRMeP8wDpg4Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/8c3d5c-a36c-4e3f-a059-1a5579e8c6c0/1/8aqxexsrRZldwV3WmGRJ2NyisQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/8c3d5c-a36c-4e3f-a059-1a5579e8c6c0/1/oYZO36QS13oDy_WRMeP8wDpg4Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.68.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:1f:d2:40:f9:a8:75:ff:23:42:27:80:a3:5b:40:36:99:22:
56:35:5b:22:9b:7b:9e:3d:91:e3:f9:f7:a7:d0:9c:d6:86:72:
35:06:73:aa:d3:3e:7e:2b:64:fd:ff:87:eb:44:cc:cf:60:ad:
0c:67:73:88:3b:8b:19:78:63:63:50:e8:94:44:f0:90:e1:d2:
12:3c:79:71:c4:82:65:75:c5:8e:78:9d:85:af:45:1b:4c:50:
f5:a8:ac:08:e2:25:33:cb:09:86:be:74:45:fe:a9:c4:fe:bd:
19:68:0f:5b:d0:8a:2a:3b:fd:75:80:7a:05:e7:b0:e2:7d:23:
85:29:2a:36:53:95:a6:d7:47:be:d9:37:0a:84:50:2f:1e:d4:
9e:10:79:c5:c5:a1:fd:87:74:19:bf:65:2a:2d:a5:ab:99:67:
08:2d:ef:c6:4f:4a:37:74:ee:62:49:3d:07:b4:85:a6:3c:5e:
00:40:cf:fb:67:d2:d1:3b:50:a7:19:b0:7f:e7:01:ee:1a:13:
44:ff:b5:a7:40:8e:91:9d:2f:54:9e:b3:4d:3c:44:69:99:be:
02:5c:94:8f:16:57:a6:36:6c:b3:9a:b2:ee:ba:12:70:bb:b0:
aa:72:19:52:e2:ce:93:c5:f0:a5:c7:32:ff:98:9f:18:d3:b0:
28:d8:a8:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:38 2024 by rpki-client on console-ams.rpki-client.org