Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/ZgOeO92BZErgIUMAjxq7Wrq-Xsk.roa
File: ZgOeO92BZErgIUMAjxq7Wrq-Xsk.roa (raw, json)
Hash identifier: 9paRl1tN781SephZuJ/d9BWJe1rfKjo4D/l9oZ5t/YY=
Subject key identifier: 66:03:9E:3B:DD:81:64:4A:E0:21:43:00:8F:1A:BB:5A:BA:BE:5E:C9
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 04A1F56D
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/ZgOeO92BZErgIUMAjxq7Wrq-Xsk.roa
Signing time: Thu 14 Apr 2022 11:34:53 +0000
ROA not before: Thu 14 Apr 2022 11:34:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 91.237.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77722989 (0x4a1f56d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Apr 14 11:34:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=66039e3bdd81644ae02143008f1abb5ababe5ec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2c:97:3d:f2:53:f5:e6:f3:0a:47:2c:c7:b0:
b4:07:c6:42:41:88:e9:39:e1:1c:c4:c4:22:f6:6b:
29:79:e8:92:2a:f9:f9:e5:b1:3b:8a:1d:6d:c3:ec:
1f:f7:44:8f:94:90:82:98:56:60:6c:ec:19:c9:61:
5c:df:dd:0c:94:c4:9f:c9:c6:6d:8f:98:cd:78:7b:
9a:51:7a:7d:da:a4:9d:cf:2f:fa:6d:f1:d4:14:41:
15:03:ff:3b:17:02:b9:b6:5b:55:48:a8:c5:7a:6b:
0c:d0:1f:19:99:ea:ae:82:99:78:97:e4:49:b5:ad:
af:3c:32:d1:97:bb:ac:c5:b0:1c:33:e8:5b:23:ef:
d5:3a:20:d5:3d:88:30:d9:2a:1e:b7:aa:81:00:dd:
75:b8:d0:1f:18:e5:52:dd:cf:b0:91:8f:c2:80:5c:
8f:ce:fd:0d:5a:ed:9f:cd:40:dd:74:f2:b7:5a:2f:
b3:15:e4:9d:8d:c1:d0:a1:41:31:d6:8c:98:e8:db:
e2:24:c5:5f:91:18:a2:33:e4:0e:11:97:fc:b4:ab:
33:01:ad:42:ae:c7:bf:d4:53:ed:a4:9e:12:23:24:
da:7e:b5:61:eb:f6:f5:71:00:5c:62:bf:78:2b:c4:
b0:a7:50:c1:ae:21:be:69:db:29:d9:80:bc:74:89:
4b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:03:9E:3B:DD:81:64:4A:E0:21:43:00:8F:1A:BB:5A:BA:BE:5E:C9
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/ZgOeO92BZErgIUMAjxq7Wrq-Xsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.119.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:e4:d9:59:07:2e:2a:68:aa:8f:4b:14:2c:07:77:50:bb:35:
c9:cb:bb:05:41:ab:9f:47:6c:e7:ab:4f:e4:4e:8a:0b:2a:4a:
b4:de:72:b5:c0:fd:fa:5b:57:5c:af:1f:92:84:27:a0:1f:2e:
e9:b4:41:f1:ce:34:2f:cd:c4:5b:5f:d7:71:28:18:14:61:cc:
28:83:0f:92:77:09:78:05:01:44:d6:7c:e9:d0:3f:98:e1:92:
57:5a:a0:18:86:74:90:51:50:57:55:20:8e:18:7b:87:f8:02:
6e:da:9e:70:b3:e4:70:76:8b:88:7c:e8:f7:2f:d5:b6:82:33:
54:16:f9:51:92:52:5e:e8:d9:47:bd:4e:09:7e:b7:2c:d1:a6:
1b:8f:76:54:b8:f1:fa:0f:4b:98:e9:11:68:23:35:08:d0:f7:
37:48:60:9e:1c:a6:e8:31:9a:88:42:24:a4:35:b3:69:aa:2d:
87:43:9d:19:b8:48:a2:9d:0e:4b:f5:3f:05:c6:0a:b4:f2:c7:
3d:1d:ea:c5:2d:41:c7:2f:95:de:96:cb:7f:89:ee:7b:8b:b8:
13:50:5d:46:c9:26:bf:d7:74:30:83:b0:54:6c:e8:fa:ca:6b:
b5:38:24:98:e4:57:68:22:7f:f6:6c:aa:12:1e:4a:a1:ca:17:
49:e6:a3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:33 2023 by rpki-client on console-ams.rpki-client.org