Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/aGeORannaToUo9odVjYnsLMAdJ4.roa
File: aGeORannaToUo9odVjYnsLMAdJ4.roa (raw, json)
Hash identifier: MfJMElyawhd7oYTDC3guxZsOJRKxvnSFtSyEFyXXOaQ=
Subject key identifier: 68:67:8E:45:A9:E7:69:3A:14:A3:DA:1D:56:36:27:B0:B3:00:74:9E
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01825F563CB7F4F4BA35A1A1AE7E29F635B4
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/aGeORannaToUo9odVjYnsLMAdJ4.roa
Signing time: Tue 02 Aug 2022 16:14:23 +0000
ROA not before: Tue 02 Aug 2022 16:14:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 91.186.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5f:56:3c:b7:f4:f4:ba:35:a1:a1:ae:7e:29:f6:35:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Aug 2 16:14:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68678e45a9e7693a14a3da1d563627b0b300749e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:23:3b:bd:94:b3:f6:35:54:ba:30:b6:0c:9d:
40:5f:40:25:6f:3b:68:c7:3c:79:8d:91:9d:49:82:
13:c4:ca:a9:c5:34:ef:13:49:ea:69:ce:a1:dc:47:
47:61:75:f1:a2:4e:7c:3e:d9:d5:97:f3:c7:6d:6e:
21:e3:cd:65:05:37:ac:9b:0a:51:46:2b:50:3c:04:
de:9e:0e:c0:6c:b3:f6:34:fa:be:f2:b7:f2:37:e5:
3b:79:45:44:d9:76:24:77:72:d4:fc:c4:4d:2d:98:
52:17:53:18:45:63:16:23:72:e0:db:c0:90:80:af:
62:21:86:b4:42:3f:3a:93:19:c9:db:77:be:82:38:
9b:0d:d4:19:e2:0f:7f:30:b0:68:a1:76:ad:88:43:
f4:c1:d4:6b:b5:71:24:ba:fc:73:8f:17:66:d8:ed:
61:33:4b:56:d1:d0:a6:fa:11:bb:52:f5:e0:51:21:
0b:41:04:e2:00:29:2b:fb:8c:dd:07:83:f9:94:4a:
13:a7:c5:68:2e:bd:45:45:e9:de:1a:88:68:c2:cf:
7b:27:dd:09:63:30:cc:54:00:f0:71:bd:22:f2:1e:
36:dc:a2:85:69:b6:c3:03:44:30:bb:a7:ea:79:5f:
f1:5f:f3:02:a9:ba:8d:ab:fa:06:e9:b3:53:d4:fa:
26:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:67:8E:45:A9:E7:69:3A:14:A3:DA:1D:56:36:27:B0:B3:00:74:9E
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/aGeORannaToUo9odVjYnsLMAdJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.195.0/24
Signature Algorithm: sha256WithRSAEncryption
66:13:02:0f:38:e5:4f:7e:9e:74:54:b4:cd:2c:61:94:2d:1c:
20:8c:c5:2d:f2:b9:9e:f8:37:d1:c6:d3:fa:46:87:76:ca:5f:
35:8d:eb:c0:08:f4:af:ca:d3:cf:47:aa:0b:aa:07:a6:cb:f8:
36:0b:7d:33:55:4f:e8:db:50:7f:bd:05:90:2d:1a:ac:75:97:
1b:19:9b:af:b4:c1:65:91:56:dc:bc:67:95:85:cf:86:00:41:
34:50:b7:12:76:2a:95:d2:51:92:3c:af:c3:27:b8:e9:6b:c5:
8b:ae:82:4e:d8:b4:1e:44:9b:db:8b:35:a3:2e:96:f3:c5:64:
84:b5:cc:2e:0f:6b:2e:df:ef:39:b6:4a:58:5d:5e:a6:5a:d3:
81:98:3e:07:3c:cb:29:f9:4d:fb:82:91:dd:57:17:79:b8:5d:
a0:21:34:c1:59:3a:c5:75:01:b5:4f:d6:a1:88:ab:48:de:b1:
8d:8b:cc:d9:58:12:c6:a2:42:89:39:d6:83:21:7c:0e:97:61:
c0:83:2f:44:16:f3:d5:19:6d:34:ab:9c:73:a3:e0:ab:af:6c:
5a:fe:27:09:0f:7b:82:4a:c2:92:12:2c:09:e7:89:3d:7f:e1:
21:d6:26:92:37:4f:8e:bd:6c:c2:a8:a3:43:e1:19:a6:58:0c:
28:dd:4d:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org