Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/CEItRYA6rafpJoaKc0G_oGKLwCg.roa
File: CEItRYA6rafpJoaKc0G_oGKLwCg.roa (raw, json)
Hash identifier: 4877R7KvIEgxM/QjxKIo2nkycEA5u0DoCdqgiwoOEoE=
Subject key identifier: 08:42:2D:45:80:3A:AD:A7:E9:26:86:8A:73:41:BF:A0:62:8B:C0:28
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 09872782
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/CEItRYA6rafpJoaKc0G_oGKLwCg.roa
Signing time: Wed 01 Jun 2022 15:53:20 +0000
ROA not before: Wed 01 Jun 2022 15:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 91.186.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159852418 (0x9872782)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jun 1 15:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08422d45803aada7e926868a7341bfa0628bc028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:67:92:90:9f:b5:9c:52:b4:a5:d7:d8:cc:f3:
3a:1d:df:32:b5:69:62:68:b1:99:fa:48:ee:22:64:
93:8f:15:f5:50:0e:0f:6b:31:18:5c:a9:f1:a8:09:
93:ce:85:7f:50:67:aa:d3:ba:5b:27:4b:d7:70:d4:
f2:03:a5:55:18:a8:1b:45:a9:e1:6e:c9:35:31:3d:
0a:e7:ff:05:27:d2:dc:0e:d5:e4:3c:08:46:82:2a:
ad:70:e6:df:73:3d:62:77:20:99:f8:62:44:ec:af:
ad:eb:30:ff:90:a4:55:cd:c8:3a:aa:cb:3b:4a:a5:
d1:4a:a8:91:bb:73:63:c9:bd:cc:5c:b2:59:73:65:
27:71:5d:4c:63:90:c2:0e:f5:15:82:3e:86:39:34:
e5:9b:d3:e5:9d:5f:dc:ca:e2:d6:01:53:cc:b8:27:
b7:e2:ca:fe:3e:21:69:ff:07:d8:a3:69:57:29:a1:
ce:56:dd:6c:76:a1:80:d7:17:f5:6b:88:8f:47:42:
64:11:f1:d3:b4:c8:b7:67:75:b2:3d:23:6f:2d:59:
bb:e5:d6:d8:df:d7:0e:19:e1:28:8e:44:af:8e:a2:
72:27:a4:b6:df:3b:61:ca:bd:80:d6:6e:d8:fe:92:
aa:b1:66:68:cf:cb:34:a6:89:72:7f:2f:c7:c0:32:
e8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:42:2D:45:80:3A:AD:A7:E9:26:86:8A:73:41:BF:A0:62:8B:C0:28
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/CEItRYA6rafpJoaKc0G_oGKLwCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.220.0/22
Signature Algorithm: sha256WithRSAEncryption
90:6c:84:87:81:18:d0:7f:f8:27:93:e9:53:82:85:5a:6e:2b:
d8:8b:80:ea:5f:5f:82:cb:cb:30:31:55:45:e1:51:40:28:3b:
de:d2:b8:62:a0:95:44:16:4f:d0:0f:7f:53:94:10:16:30:63:
3c:60:c5:7e:fb:21:af:25:b0:96:bc:1c:fe:5c:97:77:ad:45:
d0:3d:9c:52:fb:47:c8:10:94:b1:4e:60:a5:78:c9:40:d8:a4:
46:fa:c0:ee:23:14:7f:00:7f:4e:ef:bd:45:2f:14:39:72:ea:
b9:7a:95:b5:d9:33:5e:40:63:fc:f9:01:f0:6a:8b:24:10:2e:
e4:a4:c8:ce:df:0e:f4:86:9e:ed:6e:8a:4a:b6:60:f6:ed:1e:
c8:b1:b4:a2:76:af:0f:a1:e6:74:7a:cb:7e:ab:0c:03:fb:bf:
7e:9f:01:b8:2b:ae:8f:b2:71:98:a7:33:c7:6b:a5:d0:10:c3:
1d:98:06:12:50:e2:5b:48:9a:3d:7c:32:9b:ee:3c:d7:1c:82:
e0:0d:c9:a9:d4:79:05:51:66:9c:33:3d:93:bf:c1:2d:ac:dc:
a9:02:40:40:c2:82:44:ec:5b:51:f8:36:f7:36:5e:39:74:00:
db:d6:5b:b5:8f:52:9a:79:47:e5:78:17:e9:bb:4f:0a:63:c8:
e6:72:10:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:18 2024 by rpki-client on console-ams.rpki-client.org