Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/6yOnlaULInL1nHRM26aD0zMe9lc.roa
File: 6yOnlaULInL1nHRM26aD0zMe9lc.roa (raw, json)
Hash identifier: Z1Oy/ddkxT+8u8TUsdbzXb9kle7HN7vChv/STtU2aCE=
Subject key identifier: EB:23:A7:95:A5:0B:22:72:F5:9C:74:4C:DB:A6:83:D3:33:1E:F6:57
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 049A4AA7
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/6yOnlaULInL1nHRM26aD0zMe9lc.roa
Signing time: Mon 11 Apr 2022 15:15:10 +0000
ROA not before: Mon 11 Apr 2022 15:15:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 91.237.119.0/24 maxlen: 24
185.255.196.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77220519 (0x49a4aa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Apr 11 15:15:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb23a795a50b2272f59c744cdba683d3331ef657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:cb:c4:c2:7b:94:d8:27:23:16:4e:1e:de:2c:
b8:be:18:af:7b:c7:ab:60:cb:b6:b9:00:27:33:95:
a0:37:6d:c4:b6:cc:99:41:66:88:f6:f6:54:cf:62:
21:97:7d:7a:3f:34:32:4f:90:55:73:7b:d2:47:c8:
58:b8:b1:62:bc:f5:fd:b5:68:4c:be:0f:05:d2:58:
9e:7e:89:ed:63:7a:0e:16:5c:97:ff:ac:53:02:13:
8c:91:22:c5:82:9f:ce:60:5e:e9:d1:b9:bd:84:ea:
e7:c0:50:6a:59:2b:d2:6e:7a:16:47:c3:7b:03:1a:
7b:6d:23:8f:8d:6e:87:66:21:66:2f:b6:d3:45:4b:
f5:09:3c:9d:0d:06:d1:77:ad:5c:eb:5e:60:9a:fa:
c0:51:64:a0:6f:02:fc:1b:42:a2:d2:cf:b0:10:c4:
ca:fb:72:86:f8:57:62:d5:c1:71:a9:f4:d0:5a:77:
39:eb:ce:5a:1f:c3:76:de:2a:9f:0e:27:ef:1b:9b:
2e:4c:f2:46:46:d3:9a:e9:d8:0a:ec:6b:22:b5:a5:
54:9f:dd:fd:11:4a:49:79:49:68:be:47:da:bc:03:
98:29:08:c1:c4:f4:3f:d6:41:8b:85:e8:6f:52:b3:
08:6a:a8:b4:9c:35:6f:a0:78:0b:39:c5:0e:55:eb:
47:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:23:A7:95:A5:0B:22:72:F5:9C:74:4C:DB:A6:83:D3:33:1E:F6:57
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/6yOnlaULInL1nHRM26aD0zMe9lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.119.0/24
185.255.196.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:3f:9c:5b:72:5b:19:ba:3f:13:c4:35:49:ca:de:af:99:09:
32:74:de:ef:70:19:5d:c7:df:30:97:16:2b:81:b4:c2:b8:3f:
45:8b:2a:9c:bd:d5:82:39:73:56:63:61:61:64:bb:9e:90:69:
af:19:d7:42:f2:2c:d1:5c:62:ad:88:65:1e:84:f3:f1:71:77:
61:c8:b9:75:f9:36:a4:5c:0b:db:b6:dd:3d:85:9e:77:d9:77:
14:22:70:3b:3a:c7:b6:1e:b3:de:4c:18:25:35:45:dd:b3:5c:
56:8f:d0:8b:09:7a:1f:2b:3a:5a:22:32:c5:b5:a3:9a:86:5e:
f5:24:83:04:b4:f6:c6:55:15:4a:ea:ad:27:cb:43:83:e4:7d:
94:92:e7:47:1f:66:f8:fe:5a:f1:fb:35:28:fb:e2:89:10:8c:
5b:50:70:19:1c:e5:9d:ed:2d:89:80:4b:da:ad:0e:9e:46:2d:
e4:62:5f:3d:97:88:47:a8:c2:05:0f:e6:b8:1f:76:d9:1d:51:
8c:2a:5f:ff:1a:ae:82:af:5b:2d:31:9a:dd:0d:4d:54:c9:ef:
ed:de:65:98:8b:0b:fb:e7:83:71:26:76:d0:e9:cd:5a:b3:a9:
4d:e0:ad:36:25:b8:22:d6:e4:18:fe:45:77:64:c8:4c:e2:05:
bf:67:f8:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:58 2024 by rpki-client on console-ams.rpki-client.org