Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/XwDEMP4z1o0qniCPc7PVqvDPYUY.roa
File: XwDEMP4z1o0qniCPc7PVqvDPYUY.roa (raw, json)
Hash identifier: iSuux3IcDYSspF+mwXpDi9aLNEvY9YaVwwUcfaCquQQ=
Subject key identifier: 5F:00:C4:30:FE:33:D6:8D:2A:9E:20:8F:73:B3:D5:AA:F0:CF:61:46
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 08C743AB
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/XwDEMP4z1o0qniCPc7PVqvDPYUY.roa
Signing time: Tue 22 Mar 2022 20:40:53 +0000
ROA not before: Tue 22 Mar 2022 20:40:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 91.186.194.0/23 maxlen: 24
91.186.212.0/22 maxlen: 24
83.147.212.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147276715 (0x8c743ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Mar 22 20:40:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f00c430fe33d68d2a9e208f73b3d5aaf0cf6146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:94:11:26:d9:a5:07:84:d6:32:f1:5e:6f:f5:
93:ad:b8:c1:83:d4:c8:66:9d:b9:0f:99:d0:86:91:
71:0c:f9:0d:2e:66:d6:3d:3c:fa:73:eb:fc:51:41:
d5:74:87:30:63:13:44:c1:ff:b1:07:07:ec:ec:c4:
03:bf:b8:af:4a:51:8c:6b:3e:0a:69:ee:25:fd:44:
4f:0f:b8:ba:95:b1:7a:25:f4:70:56:52:f3:b1:dc:
cd:de:3c:2d:fc:6f:f2:c3:66:38:df:06:d7:49:22:
a5:b4:cd:46:d2:be:ae:1b:95:94:bd:1b:84:13:b4:
71:45:c0:9b:d9:6e:dc:97:82:b7:1f:78:30:92:44:
0b:39:f2:c1:23:5e:51:34:f7:9e:ec:dc:19:79:f0:
5c:25:b0:a8:7a:a8:7b:4d:a1:0d:62:c8:77:0b:fa:
01:9c:33:52:66:13:55:d9:2d:4e:99:d5:0e:c3:46:
a5:f1:11:32:a4:9a:39:44:11:77:3c:1a:ae:54:7e:
f1:1d:cb:52:07:1c:04:62:9e:1c:bb:b1:bf:3f:61:
e9:3d:0f:90:5d:3c:77:7d:d7:e4:3e:dd:a1:13:9e:
eb:e2:8d:c2:99:1c:b6:05:06:2d:3f:30:e9:be:80:
ff:54:55:77:91:8c:6b:c1:15:5d:64:b4:71:e9:59:
10:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:00:C4:30:FE:33:D6:8D:2A:9E:20:8F:73:B3:D5:AA:F0:CF:61:46
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/XwDEMP4z1o0qniCPc7PVqvDPYUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.212.0/22
91.186.194.0/23
91.186.212.0/22
Signature Algorithm: sha256WithRSAEncryption
82:f1:db:ba:f2:d8:dc:2b:d7:56:98:b5:9a:e3:ff:a3:a4:7a:
9b:a5:50:2f:45:66:7c:c3:1e:8b:bc:9a:34:8b:07:ad:86:1a:
b7:e3:02:5f:e6:64:02:da:bb:b8:31:4d:b3:d3:fb:96:70:9c:
e9:85:ef:96:17:ce:5c:ee:59:94:55:6d:23:29:15:f2:a4:31:
89:03:82:e8:b0:eb:07:a8:6f:91:ff:52:c5:06:c7:45:e4:51:
3c:1c:f1:07:ed:ca:e8:3c:7a:93:86:66:60:95:c4:fa:7d:23:
dd:c7:58:55:d5:71:04:71:ab:14:da:cf:25:4a:24:ee:98:c4:
b1:e0:14:7f:80:e9:a9:ca:78:8a:bb:b3:47:ce:01:27:81:e2:
ca:12:95:ef:fa:03:8a:38:08:c5:9b:29:43:c2:c3:97:1d:8e:
eb:fa:22:80:fa:14:50:6a:92:4e:43:c4:1a:79:45:4f:4e:cc:
5b:27:b5:18:cf:01:f3:fc:22:95:21:0c:fd:d6:ae:fd:14:1a:
aa:d1:58:9e:b0:53:12:ee:02:80:44:bf:5f:53:ce:c9:96:3f:
14:85:1d:0d:d2:e1:a6:d8:3e:ba:11:f1:3b:cc:b5:11:af:06:
6e:d0:39:81:2e:f8:e1:37:52:36:88:05:85:6a:e9:7c:a0:df:
29:f1:12:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org