Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9fY73E2azXCXwsK8-zp0Y5CJVSI.roa
File: 9fY73E2azXCXwsK8-zp0Y5CJVSI.roa (raw, json)
Hash identifier: Zi37Df8Y5//sop1UyCZf8v4K4ep0AFalgJkYOWUmACc=
Subject key identifier: F5:F6:3B:DC:4D:9A:CD:70:97:C2:C2:BC:FB:3A:74:63:90:89:55:22
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 094A01FF
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9fY73E2azXCXwsK8-zp0Y5CJVSI.roa
Signing time: Mon 09 May 2022 12:15:24 +0000
ROA not before: Mon 09 May 2022 12:15:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59432
IP address blocks: 91.186.208.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155845119 (0x94a01ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: May 9 12:15:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5f63bdc4d9acd7097c2c2bcfb3a746390895522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:bd:25:d7:df:b9:89:10:98:53:72:d7:b7:4d:
6c:e8:6f:8b:d8:58:ac:ae:13:77:fd:3e:7b:1d:27:
6a:61:f0:5b:3f:c0:df:fa:87:6d:09:62:02:39:55:
06:82:c5:a7:ef:cc:6a:f6:f0:e9:1b:c4:b6:44:91:
e1:99:1c:ea:4a:20:62:a2:b6:aa:cd:70:e2:90:01:
21:74:f7:fb:67:f1:a4:6f:60:4d:0d:71:9c:37:ec:
f6:e5:99:3a:7a:61:16:8e:47:7b:ac:0f:04:03:a9:
a9:06:3d:05:2a:22:87:81:09:ad:b8:53:ff:ee:84:
78:d9:7f:ec:67:5c:7c:39:1b:7f:fa:41:bf:6b:8f:
75:8e:2d:4c:62:8b:9e:7c:d7:6f:db:61:4f:db:6c:
30:41:fa:50:2b:47:59:ba:7b:07:fe:cb:7d:33:9f:
26:4f:59:de:6e:6d:93:f5:e3:4f:1c:0a:c5:3e:17:
31:96:b2:c9:33:3f:c0:ae:1a:ef:31:4e:dd:63:2a:
e7:e5:b0:f6:af:e9:95:f1:55:24:a0:b3:95:b8:99:
f6:14:90:90:1e:5f:b5:ef:e5:2f:de:93:99:eb:cc:
8b:82:48:6f:67:9a:6b:d0:2a:ff:fd:24:67:83:e3:
f5:89:19:30:03:d0:8e:a4:d2:a9:7e:d6:27:ad:64:
ba:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F6:3B:DC:4D:9A:CD:70:97:C2:C2:BC:FB:3A:74:63:90:89:55:22
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/9fY73E2azXCXwsK8-zp0Y5CJVSI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.208.0/22
Signature Algorithm: sha256WithRSAEncryption
16:8a:00:25:45:98:68:0b:d4:ea:ee:42:f9:c5:d2:25:a7:ba:
a1:28:a6:99:76:93:5f:34:ad:40:79:c7:95:f2:4a:96:f9:7e:
72:fc:c2:4b:60:01:40:cc:5a:d8:9a:b5:45:4a:08:9b:a0:ae:
7c:ab:a9:33:c3:ad:73:46:6d:6e:6d:16:06:c3:b3:0e:2f:93:
69:92:d4:ab:64:be:a3:09:c0:9e:98:e6:b9:c5:9b:1f:71:30:
35:9c:48:02:9c:8d:19:06:16:3a:61:ac:d9:c1:6a:47:d6:72:
e4:30:9e:ed:a0:a2:a8:c2:f9:91:40:7e:1b:f1:a6:b4:bb:0f:
19:1d:db:b5:4f:fc:da:f5:6d:f1:20:97:f0:b0:00:e3:82:2f:
83:d0:1b:71:fa:40:25:c3:72:c1:d6:6f:a8:8d:04:11:03:67:
d2:53:8f:08:c8:e2:66:19:c3:22:dd:3e:8d:e8:fb:4c:f2:be:
f8:9e:99:44:b9:54:e7:03:9c:ba:21:eb:4e:81:99:d9:a9:85:
59:64:d0:1c:2b:4c:3e:4d:f7:03:37:b9:f6:07:e9:d9:c6:c5:
d4:cb:22:18:de:ae:cc:6c:7f:ff:60:a5:25:e3:87:13:81:5c:
08:81:8e:94:ce:2b:2c:49:26:50:02:f8:18:d3:a8:a0:90:b2:
7d:ef:f4:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org