Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/oZ2MB4_Aus4zfbLyh3ZK5R1hSfc.roa
File: oZ2MB4_Aus4zfbLyh3ZK5R1hSfc.roa (raw, json)
Hash identifier: sun/xvJIXA/FLyJ///BMgdmk3bUuNMIiZHM60E66LnE=
Subject key identifier: A1:9D:8C:07:8F:C0:BA:CE:33:7D:B2:F2:87:76:4A:E5:1D:61:49:F7
Certificate issuer: /CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
Certificate serial: 010838
Authority key identifier: 32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/oZ2MB4_Aus4zfbLyh3ZK5R1hSfc.roa
Signing time: Tue 12 Apr 2022 10:05:11 +0000
ROA not before: Tue 12 Apr 2022 10:05:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199663
IP address blocks: 91.245.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67640 (0x10838)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
Validity
Not Before: Apr 12 10:05:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a19d8c078fc0bace337db2f287764ae51d6149f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d8:cf:d5:3b:2b:1a:ed:fc:29:34:8a:e0:7a:
cf:e5:80:f2:ec:98:63:3b:98:f8:aa:60:fc:1c:2f:
a0:df:ce:58:e2:ca:0f:42:a0:f8:59:c1:d9:1b:f4:
3e:e6:e7:44:a3:5b:bc:5d:9b:3c:44:51:51:59:48:
cb:46:47:1a:19:91:b5:ac:b0:0f:be:e9:f5:e6:9e:
80:9d:28:18:00:ce:48:9a:50:2c:84:c4:fc:a7:2c:
ee:97:63:1b:87:9a:48:d3:c8:0c:da:21:01:c9:0f:
61:c7:15:cf:95:2e:c7:8f:85:d5:0f:9e:cc:8c:21:
f7:5d:26:bb:07:ea:cf:7b:66:04:71:42:f1:69:f6:
ab:c1:f4:dd:6f:b5:17:f7:2a:ee:97:27:85:7d:c2:
a2:9b:4c:8d:c9:2a:57:46:d8:60:aa:5d:9a:80:40:
5b:a7:5f:d6:ab:e7:24:41:3a:09:a3:d1:72:81:31:
fe:9a:ff:c5:eb:e1:7b:28:b1:e5:04:58:ec:93:54:
6b:8f:cf:c4:eb:f5:18:b0:e3:68:41:79:22:a7:33:
16:4e:c0:63:94:79:bb:42:d8:af:6d:24:f5:34:99:
81:f8:6c:85:9b:7a:a3:eb:5b:af:0a:93:83:ea:c7:
2e:ff:b6:fe:88:51:96:5e:1f:bb:f2:a8:d3:86:ff:
fc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:9D:8C:07:8F:C0:BA:CE:33:7D:B2:F2:87:76:4A:E5:1D:61:49:F7
X509v3 Authority Key Identifier:
keyid:32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/oZ2MB4_Aus4zfbLyh3ZK5R1hSfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.194.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:47:ce:d1:43:33:5c:97:68:24:18:ac:b1:fb:28:b0:84:00:
af:8d:8d:ec:70:f6:ca:39:eb:d0:17:4d:e9:9f:17:01:85:b5:
de:1f:17:d2:40:8b:51:00:d5:be:45:ce:93:49:8c:7a:7a:9a:
70:eb:c9:2a:77:4b:d7:be:19:47:a1:4f:5e:7e:d9:80:4e:06:
b4:76:cd:70:41:78:c6:52:a5:f8:f5:7e:46:d9:69:64:8d:c4:
8d:1a:ed:dc:52:aa:bf:97:a2:60:2e:ba:11:56:92:07:23:b7:
1a:96:5d:4e:dd:42:50:f2:19:3b:2a:3b:81:d7:f8:10:a0:11:
e5:da:af:2b:95:63:45:7b:f8:21:00:62:4e:a9:0e:ba:44:ef:
58:9c:42:0b:ea:a7:76:1d:36:c7:9c:26:60:19:cd:0f:bb:e7:
cd:17:b1:ba:a8:96:66:80:8e:8c:45:61:06:1d:32:c8:db:8d:
2c:93:78:2e:6d:1e:0d:2d:8a:6b:7e:ce:36:a8:0c:b4:5e:62:
28:9c:d2:74:71:bc:99:fe:05:d2:ed:03:14:6c:40:13:4c:be:
ed:a5:97:de:6a:2f:64:cb:14:ad:14:2f:6f:c2:79:18:94:5d:
45:1b:04:a1:ad:3c:d6:16:16:f3:22:44:d7:d2:48:61:7e:08:
dd:f5:64:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:47 2024 by rpki-client on console-fra.rpki-client.org