Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/4ywjCiMZyKtYcNWdhCWFPgIUCYY.roa
File: 4ywjCiMZyKtYcNWdhCWFPgIUCYY.roa (raw, json)
Hash identifier: LxIAhh9j72tSpFGe1bQ++v3QrFALDYckREWAZpTfLbw=
Subject key identifier: E3:2C:23:0A:23:19:C8:AB:58:70:D5:9D:84:25:85:3E:02:14:09:86
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 08D6614C
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/4ywjCiMZyKtYcNWdhCWFPgIUCYY.roa
Signing time: Mon 28 Mar 2022 16:01:40 +0000
ROA not before: Mon 28 Mar 2022 16:01:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 91.186.194.0/23 maxlen: 24
91.186.212.0/22 maxlen: 24
83.147.212.0/22 maxlen: 24
83.147.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148267340 (0x8d6614c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Mar 28 16:01:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e32c230a2319c8ab5870d59d8425853e02140986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:23:57:9b:32:6b:4e:a9:ad:da:99:7f:20:29:
3d:84:0e:ff:51:65:94:66:db:14:df:6c:23:5b:f7:
a7:4d:bf:f1:bc:69:c4:c0:78:37:5b:ca:6b:70:a4:
f5:32:f8:cd:ab:56:90:d2:d3:97:25:53:6c:8b:e0:
28:d8:e3:dd:05:c3:56:b8:f9:36:3a:6c:9b:3b:dc:
3d:9a:1b:39:57:cd:61:c8:f4:25:18:f2:a3:7d:a1:
1e:f4:1c:fa:5a:84:71:0a:7a:4f:54:b5:7c:0e:d9:
1c:3e:e9:7d:a6:f5:d7:0a:db:07:1c:c0:4e:74:50:
2c:30:35:a2:68:ac:4a:af:65:cd:b0:c2:0b:ef:31:
af:de:70:16:8a:35:34:0e:fc:64:a1:b6:8c:58:ec:
43:9f:13:0a:fe:92:ab:d8:33:48:04:c8:3d:e4:b2:
fb:78:54:8f:72:48:23:4c:53:7f:ac:36:b7:c9:3c:
c8:7f:05:0c:e4:fd:29:32:06:f9:73:0a:d4:72:58:
b3:3a:74:5b:19:c4:f0:65:d9:7f:d3:1f:a5:b2:e5:
48:af:bc:92:e5:92:9a:6e:32:3d:66:63:f9:0c:c4:
16:ff:94:e6:d6:ff:26:cf:18:9d:2f:52:ee:2f:dd:
17:4f:54:65:cd:c6:d0:b4:af:1a:d1:95:ba:9e:e1:
d3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:2C:23:0A:23:19:C8:AB:58:70:D5:9D:84:25:85:3E:02:14:09:86
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/4ywjCiMZyKtYcNWdhCWFPgIUCYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.212.0/22
83.147.248.0/22
91.186.194.0/23
91.186.212.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:6d:1e:b0:e2:e4:b6:9a:5d:65:56:9c:1d:86:c8:4f:94:a0:
53:8c:67:64:2b:9b:df:8e:64:98:b5:d6:cb:fd:b4:11:0b:7b:
b9:fd:35:e2:7b:c3:f4:a2:8f:3d:25:ef:1d:d7:52:1d:d0:4c:
cd:7b:68:1b:21:70:ec:b0:eb:10:b2:53:8b:4d:54:07:82:35:
a8:05:52:a2:37:32:0b:1d:0c:24:10:fc:9a:71:2b:6f:6d:e1:
6e:0e:48:0b:71:ac:cd:9d:1f:61:d6:3c:18:4e:c1:1a:9f:39:
e6:1a:f5:d1:04:83:12:5c:88:48:cb:52:92:60:4e:fa:98:0a:
ac:2c:db:06:65:ce:bc:cc:61:a5:98:2e:5b:86:c6:df:f3:fd:
d4:69:73:5b:4d:11:2d:a0:3b:71:f4:cc:cf:7b:38:e7:e3:73:
39:32:b5:15:97:fd:c0:b8:ba:e5:cc:09:49:94:82:c7:96:e9:
71:f1:d3:9d:63:54:ed:a4:6b:26:9a:37:c5:a9:05:05:84:47:
c4:0b:00:72:f3:44:6c:c2:2c:06:48:0f:13:ad:18:88:35:f0:
e4:3b:9b:f0:45:26:11:48:5e:17:4d:52:aa:3d:92:ac:ed:f6:
85:97:15:11:04:a7:b1:e3:27:be:2b:b0:f3:d9:a7:31:34:44:
fd:c1:a3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org