Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/axxLlGiUb_zIYAqztO_AL5y6XM8.roa
File: axxLlGiUb_zIYAqztO_AL5y6XM8.roa (raw, json)
Hash identifier: wkjvl9ZMhQSU0ZY/ge9tYGfOkAzpc36dxwxvdvUBu8M=
Subject key identifier: 6B:1C:4B:94:68:94:6F:FC:C8:60:0A:B3:B4:EF:C0:2F:9C:BA:5C:CF
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018533DD1A44E79E697264E177FFEB11BD8F
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/axxLlGiUb_zIYAqztO_AL5y6XM8.roa
Signing time: Wed 21 Dec 2022 08:46:46 +0000
ROA not before: Wed 21 Dec 2022 08:46:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46450
IP address blocks: 91.186.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:33:dd:1a:44:e7:9e:69:72:64:e1:77:ff:eb:11:bd:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Dec 21 08:46:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b1c4b9468946ffcc8600ab3b4efc02f9cba5ccf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5a:1a:e8:2c:6c:52:f2:c7:61:48:c0:06:84:
00:ff:fa:e8:6e:5e:15:8d:8c:4e:a0:1a:f6:c6:d1:
91:8e:94:ef:50:f8:8c:a3:64:da:34:75:ca:ca:c5:
e3:ba:02:e3:6d:b2:85:86:88:a2:12:f8:47:3f:29:
37:56:62:8f:c6:04:1c:dc:0e:52:a6:57:59:d9:e5:
18:83:8c:84:52:1b:fc:da:15:51:67:a7:78:4e:b5:
f1:86:05:a6:65:a4:4a:6a:e0:60:13:1a:95:21:37:
95:74:0c:79:45:e0:20:2b:ff:1c:e7:dc:45:2d:a2:
83:4e:18:93:c8:e4:a8:28:24:69:15:cd:6f:ca:8f:
dc:76:e1:05:ad:03:fa:7d:25:c5:82:18:5b:5b:66:
4b:c7:22:f7:b5:ab:e0:e8:a7:8d:c3:88:ae:d0:24:
96:80:6a:70:a7:5d:df:3a:1c:53:c4:2e:58:cc:e6:
a5:71:a5:47:39:21:00:00:04:3a:c4:ee:65:03:d4:
4e:8b:39:86:ea:6c:a1:e3:ef:6f:09:f1:ca:88:5d:
28:cd:71:fe:4a:12:26:82:ce:64:de:4c:a8:e2:43:
26:6e:f0:c7:e7:dc:0a:91:bd:84:77:6d:a2:93:50:
90:fd:bc:91:c9:b4:0a:fe:b1:24:9d:6a:b4:f8:f3:
64:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:1C:4B:94:68:94:6F:FC:C8:60:0A:B3:B4:EF:C0:2F:9C:BA:5C:CF
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/axxLlGiUb_zIYAqztO_AL5y6XM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.196.0/22
Signature Algorithm: sha256WithRSAEncryption
58:fa:bb:fe:14:ce:75:d9:a0:6f:4b:f1:95:55:88:12:54:61:
75:be:ae:3c:d7:dd:69:0b:19:b9:80:fb:fd:81:1e:2a:fb:a6:
00:31:86:89:35:31:b1:54:ab:2e:d0:18:2b:d5:43:ed:d1:2b:
3a:05:7b:f4:2f:81:b8:3e:e6:31:e0:fd:a0:b5:4e:ec:fb:bc:
b5:52:59:71:03:13:3f:3a:71:d8:92:65:de:e3:7d:c4:bc:77:
29:11:f0:48:61:c1:34:fd:8f:7a:e8:3d:5f:c7:1d:27:e3:b4:
f3:b2:a8:e1:ee:32:66:8e:c6:dc:e2:82:e1:44:c9:0b:b6:56:
30:05:ee:d5:c8:80:15:6e:0c:4e:39:47:ff:0a:1c:b0:7e:f5:
63:28:fc:f1:cb:1f:8c:64:63:b1:af:b1:18:0b:41:5c:8b:fc:
2e:39:81:e4:02:59:90:f9:17:f5:4f:bf:e9:91:9a:a7:6b:79:
63:30:89:46:0a:21:61:0f:c6:64:25:69:83:51:64:dd:26:a0:
39:f6:f3:a3:79:ee:7d:1e:bb:c1:88:85:ae:f7:50:0b:d8:e8:
a0:67:af:34:b4:a6:72:2d:a3:c3:0c:c7:eb:d0:8d:62:6b:c4:
7a:ff:37:ef:27:58:5a:b5:ea:f4:76:d9:f4:09:cb:9e:21:c6:
b7:ec:c2:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org