Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9bgTAYPjEnyHbl9qCtOCHrFePSs.roa
File: 9bgTAYPjEnyHbl9qCtOCHrFePSs.roa (raw, json)
Hash identifier: RlFISDc+47xDY6fG2zwh1W/N56ZVLTWw+mun9Y3WI5E=
Subject key identifier: F5:B8:13:01:83:E3:12:7C:87:6E:5F:6A:0A:D3:82:1E:B1:5E:3D:2B
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 08FE0996
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9bgTAYPjEnyHbl9qCtOCHrFePSs.roa
Signing time: Wed 13 Apr 2022 08:49:53 +0000
ROA not before: Wed 13 Apr 2022 08:49:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 91.186.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150866326 (0x8fe0996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Apr 13 08:49:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5b8130183e3127c876e5f6a0ad3821eb15e3d2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:43:4e:71:de:a9:a3:03:e5:00:97:9f:76:a6:
c9:25:4a:8f:43:f8:aa:31:d8:8d:d2:fc:41:63:e5:
a1:da:86:7b:89:ab:d7:6f:dd:52:fb:9c:6f:85:8b:
91:7d:9f:3a:cc:c5:36:f9:e6:01:c0:df:17:75:11:
ed:cd:e9:c8:87:d5:b8:5f:eb:98:94:26:62:5a:00:
08:29:93:16:5e:d3:6c:be:79:92:fd:23:08:46:64:
85:79:b0:c9:50:cc:ba:db:29:93:0d:c9:ae:7e:1f:
e1:01:0e:fa:54:10:1f:88:18:c7:45:be:76:7c:f0:
1f:14:36:6f:22:4c:e6:06:89:bd:82:b1:85:45:37:
a5:07:9b:2f:73:e3:55:a3:ad:62:00:93:f3:fe:05:
9e:34:09:9e:c9:e8:98:a0:fb:87:93:16:ab:15:63:
5a:ab:9b:45:4b:4e:47:7b:73:84:73:ee:35:3e:37:
65:fd:fd:d0:01:ad:5e:53:9c:eb:f3:21:3a:7d:15:
97:4f:08:08:84:f7:c8:3d:c7:84:fc:e9:42:e8:3b:
f5:3b:e1:c1:99:f3:46:23:42:7f:39:65:d2:af:0f:
5c:1e:23:60:59:6d:ba:5f:a1:8a:be:0c:2c:4f:7f:
6d:4f:51:98:cc:93:85:96:fe:f2:ac:a0:82:e8:4f:
92:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B8:13:01:83:E3:12:7C:87:6E:5F:6A:0A:D3:82:1E:B1:5E:3D:2B
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9bgTAYPjEnyHbl9qCtOCHrFePSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.204.0/22
Signature Algorithm: sha256WithRSAEncryption
16:d3:b1:1d:1f:6b:37:6f:87:22:02:27:5e:36:79:08:ff:70:
58:b1:2a:ad:8d:ac:cb:eb:79:5f:92:d8:26:76:4d:f2:66:13:
d8:c9:b6:a1:0d:7f:68:48:c9:91:59:45:eb:87:4d:13:95:56:
69:47:15:27:54:6b:5a:6f:78:8e:d2:d2:05:60:54:04:82:44:
90:b8:d6:84:ef:79:47:39:7e:14:2e:86:0e:bb:f1:a3:40:e3:
77:ba:a0:94:f6:32:6f:68:f4:33:af:f5:fe:f0:a8:17:1e:df:
1c:84:63:78:fb:c9:af:f5:43:78:c7:08:a0:97:ee:a8:91:2e:
a7:c8:a8:0b:37:00:6b:a7:4c:89:8e:09:53:5b:5e:d0:c9:d2:
79:8c:25:77:d6:f1:9c:b0:06:29:c9:88:f6:4d:21:e4:ec:f2:
f3:6c:07:74:81:ff:95:4d:22:40:3d:51:33:7e:1a:b7:ba:bc:
5b:73:bf:53:e7:02:1a:c1:a2:81:29:0e:02:4e:a4:0f:bc:01:
43:c7:af:c4:b5:75:4f:65:d2:e3:96:a9:e8:9d:48:55:05:25:
64:b3:85:37:8a:82:70:38:f7:48:50:a9:f8:65:f3:4b:cd:84:
ed:ab:ff:d9:83:1b:3b:3f:57:11:6e:83:d4:19:9f:e3:99:c1:
f9:32:3f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org