Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/_3WH5jq18GE4Zgr50it2M7QLxq4.roa
File: _3WH5jq18GE4Zgr50it2M7QLxq4.roa (raw, json)
Hash identifier: xVQf95mpM0qOvv8FG6NMVUDMrJ2nqLHPXlGgVhAKNmM=
Subject key identifier: FF:75:87:E6:3A:B5:F0:61:38:66:0A:F9:D2:2B:76:33:B4:0B:C6:AE
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 0184A58DFB1EAC7C39592D875C43A3A3B6C0
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/_3WH5jq18GE4Zgr50it2M7QLxq4.roa
Signing time: Wed 23 Nov 2022 17:34:16 +0000
ROA not before: Wed 23 Nov 2022 17:34:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197890
IP address blocks: 91.186.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a5:8d:fb:1e:ac:7c:39:59:2d:87:5c:43:a3:a3:b6:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Nov 23 17:34:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff7587e63ab5f06138660af9d22b7633b40bc6ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:29:d0:6f:71:ef:5b:52:81:b0:3c:d8:03:3a:
9d:68:2c:55:95:9f:c6:dd:2f:44:05:18:6a:c4:5a:
e9:aa:44:8a:b7:02:90:27:5e:7a:d1:73:0f:a7:fa:
85:35:61:4c:e6:8b:04:2a:6d:dc:ce:57:71:d1:e2:
ec:80:2a:28:3e:4f:80:9e:11:9d:44:55:64:67:10:
7b:21:37:fc:e2:89:b7:ac:95:1a:e0:04:6b:05:6c:
ce:8b:1b:8c:84:96:20:8b:c4:ce:05:1e:75:59:06:
43:11:22:da:2a:9d:38:77:b8:24:47:4d:9a:19:78:
04:94:f0:aa:06:64:7c:e1:64:62:de:59:d2:e8:8f:
aa:f0:77:5e:fe:9d:8d:65:76:0a:54:3f:ba:bd:b9:
bc:56:ad:28:d0:e3:62:c1:c8:9a:e0:c2:aa:9f:bc:
1e:26:4a:70:da:f3:b6:2a:e1:b7:e9:b1:bd:be:fa:
26:4c:f7:6c:f4:05:dd:3c:59:e7:73:12:f0:b4:c4:
4b:83:f1:89:da:8e:0d:85:67:1e:ef:9d:ef:7a:e5:
a0:94:83:b4:69:60:45:c7:c7:12:4b:68:9f:ba:ff:
3e:d3:8d:71:04:1e:a0:8f:15:4a:0d:c9:7b:23:37:
76:cd:8c:fa:47:55:c0:88:1c:f2:20:4e:09:1d:c9:
e9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:75:87:E6:3A:B5:F0:61:38:66:0A:F9:D2:2B:76:33:B4:0B:C6:AE
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/_3WH5jq18GE4Zgr50it2M7QLxq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.196.0/22
Signature Algorithm: sha256WithRSAEncryption
65:56:33:04:dc:c3:7c:70:fd:90:4e:0e:a0:cd:97:cb:9e:57:
0a:67:66:24:2b:1f:47:8b:1b:2f:6a:d2:1f:66:49:f2:4a:c2:
14:93:5d:cf:d5:a1:3d:7c:f3:c4:93:e5:ca:0f:a3:17:b7:e4:
3c:d0:e6:dd:73:de:00:b6:9b:8a:36:cf:b4:a3:e3:f8:04:7c:
c9:f9:1e:e8:95:d1:35:18:a0:7b:0b:0b:db:04:84:3a:b0:7c:
0c:f9:06:32:85:eb:12:51:c4:31:59:e6:56:51:d1:1e:e6:f1:
a0:e4:36:93:84:36:eb:a7:f1:ec:d6:32:e6:d8:26:ee:5c:6a:
0f:fa:17:e5:fd:4e:c3:b8:57:e7:4b:95:dc:12:25:ad:6f:cc:
67:da:03:09:b7:f4:37:b8:4a:8e:c3:ca:ba:63:d5:e4:19:a4:
e4:be:fb:28:c4:b4:33:12:2f:7c:2b:f1:17:ea:17:11:6d:75:
5f:18:0d:51:ee:06:19:55:a4:c7:ed:94:31:b8:97:1a:2f:52:
0d:9f:db:bd:39:17:f0:25:55:f2:64:a2:b3:0f:04:5e:79:6d:
82:d1:6e:28:cb:34:5f:11:6d:09:a9:ce:7b:9e:2c:12:bd:fe:
0b:e9:b8:14:6b:75:f9:b1:34:07:1f:14:1e:46:3f:c3:8f:74:
32:5d:7e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org