Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/_Nl28Y_KjR-Ctg5BPzDGDNbc59w.roa
File: _Nl28Y_KjR-Ctg5BPzDGDNbc59w.roa (raw, json)
Hash identifier: 8ZAtV11+XaCJfbGkj5tB6WKC/y27A7NQXr9nW677hos=
Subject key identifier: FC:D9:76:F1:8F:CA:8D:1F:82:B6:0E:41:3F:30:C6:0C:D6:DC:E7:DC
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 083774AD
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/_Nl28Y_KjR-Ctg5BPzDGDNbc59w.roa
Signing time: Wed 26 Jan 2022 06:06:57 +0000
ROA not before: Wed 26 Jan 2022 06:06:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34636
IP address blocks: 91.186.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137852077 (0x83774ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 26 06:06:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fcd976f18fca8d1f82b60e413f30c60cd6dce7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:80:0c:93:a4:9a:31:1b:45:0e:ca:50:18:f2:
1a:db:a9:a3:fe:9c:8d:02:30:e1:2b:cc:e6:33:75:
81:be:a3:11:56:84:78:54:fb:f7:a1:36:c7:62:da:
a6:db:d0:7c:b2:88:0d:1f:14:24:d0:2f:07:7a:d1:
78:23:dc:71:80:c7:7c:a2:14:09:1f:34:bc:d6:df:
8c:b0:d2:3f:14:d6:25:a6:55:e6:4a:91:19:29:b2:
3c:da:dc:3a:0f:be:31:bc:fa:0e:b8:0a:f0:13:4f:
cd:00:93:b4:94:c3:e8:43:d2:24:dd:5e:84:da:69:
1e:15:cc:0c:8d:6e:61:95:d1:19:5a:50:68:80:9c:
38:fe:e9:02:68:10:61:79:3e:12:aa:fc:a4:6d:58:
1e:27:dc:97:e0:5d:5c:f5:9f:a6:43:6e:7d:2e:d8:
a9:79:3e:53:3b:93:26:03:d7:cf:41:55:db:1e:20:
22:c9:ad:50:ae:7c:e1:78:6e:f2:cc:af:ad:8b:da:
bf:2b:f0:ea:ca:80:be:f4:bb:a2:2e:fc:68:5e:b7:
05:5d:73:09:73:82:59:06:95:cb:54:36:96:90:49:
eb:72:99:2f:53:19:e4:d5:bc:a2:fa:a6:15:0b:6b:
05:47:9c:25:28:01:f4:0d:11:56:b8:09:de:53:c2:
c6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:D9:76:F1:8F:CA:8D:1F:82:B6:0E:41:3F:30:C6:0C:D6:DC:E7:DC
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/_Nl28Y_KjR-Ctg5BPzDGDNbc59w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.193.0/24
Signature Algorithm: sha256WithRSAEncryption
79:02:b6:3a:d3:c5:47:7d:f7:15:7e:34:69:ef:cb:97:24:5f:
59:b2:2f:49:74:06:a0:1c:3e:e4:77:e7:e0:03:c5:45:84:36:
8c:66:80:b8:eb:e6:88:bc:09:aa:76:45:23:34:13:a6:d7:e9:
b1:10:4b:35:08:c1:34:88:94:4d:40:c9:c3:a2:f2:1a:a8:b7:
e3:f8:e6:d2:61:f2:41:3c:68:4d:45:81:d5:98:e6:a3:80:55:
b2:51:fd:4a:36:ec:7e:87:e8:43:8f:ee:9a:9f:c4:32:ca:eb:
91:0c:ff:70:54:25:7f:7b:80:a1:79:5a:88:12:e8:c6:1f:af:
bd:cf:00:7b:93:ad:93:0d:ab:10:6a:d6:70:64:ee:2b:b6:93:
e6:f8:6d:cd:8c:bd:96:cb:7d:c7:d2:8d:db:51:14:4a:1c:58:
0e:0b:2a:0a:fd:77:6c:37:5f:70:80:32:17:34:42:a6:30:b7:
c5:96:b7:c8:da:2b:b5:3b:d7:3c:32:df:95:27:ce:cb:9d:85:
0f:71:0a:df:80:81:0e:49:fa:02:4d:40:5e:e4:8f:27:64:65:
63:5f:24:e7:7d:da:15:1c:b6:24:62:6d:4f:5c:70:79:cd:1c:
66:8d:31:e5:ed:b3:50:8e:15:c3:ea:df:8e:16:84:9e:a3:24:
9c:0d:9d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org