Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/duVAGnJuVy8Hbh6YslDsR6obv3A.roa
File: duVAGnJuVy8Hbh6YslDsR6obv3A.roa (raw, json)
Hash identifier: qKma6VR+5kYTd8lWKvHUkt5xHFDVs09a0G2VEVnz+y0=
Subject key identifier: 76:E5:40:1A:72:6E:57:2F:07:6E:1E:98:B2:50:EC:47:AA:1B:BF:70
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 07F791CB
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/duVAGnJuVy8Hbh6YslDsR6obv3A.roa
Signing time: Sat 01 Jan 2022 03:02:06 +0000
ROA not before: Sat 01 Jan 2022 03:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 91.186.194.0/24 maxlen: 24
91.186.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133665227 (0x7f791cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 1 03:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76e5401a726e572f076e1e98b250ec47aa1bbf70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e8:96:be:43:25:0a:24:6d:b0:b4:33:51:8e:
2a:fb:fc:7e:c2:2b:40:4b:5e:8c:6d:b3:1e:70:61:
7c:75:9b:6e:c5:6a:2f:7a:26:56:1b:ee:e8:6f:cd:
9c:a0:02:10:ab:5e:57:eb:12:fc:30:4e:0e:d0:3a:
17:39:5e:a9:97:24:fb:7d:92:93:23:ec:f3:89:b2:
d9:bd:b7:37:72:c3:bb:83:b7:5c:49:70:92:54:a8:
4b:89:f0:06:d8:48:a1:48:1d:8e:46:52:09:35:69:
9e:34:8f:5b:f1:dd:60:6e:23:a9:da:db:ff:b2:a4:
db:9e:a3:9e:e5:98:8d:14:3e:78:3f:4f:3d:ff:70:
6a:1f:e0:0d:bb:39:52:9c:e9:d1:ba:7e:3a:b0:05:
92:95:0c:dd:2a:e7:47:86:96:b0:23:6a:b5:56:ae:
54:e2:79:84:1a:29:37:71:6e:4a:2c:e9:e9:ae:18:
26:1d:a3:84:78:c4:d8:28:9a:a4:b5:2b:04:82:9e:
85:fe:9e:c7:d1:56:9e:8e:70:cd:85:20:3e:7d:8b:
75:69:a4:4c:37:15:b2:51:cb:d4:6a:ef:d4:e0:87:
60:79:a4:1e:cf:99:db:d8:84:2e:69:63:b1:80:a0:
4e:5a:2a:98:0d:a4:04:e4:11:d1:ae:1f:69:39:5a:
94:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E5:40:1A:72:6E:57:2F:07:6E:1E:98:B2:50:EC:47:AA:1B:BF:70
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/duVAGnJuVy8Hbh6YslDsR6obv3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.194.0/23
Signature Algorithm: sha256WithRSAEncryption
05:bc:63:d1:c1:2d:ea:fe:36:6d:f2:e1:7e:ed:8c:f2:3f:80:
ab:a3:65:88:fb:90:42:14:b5:b0:2a:c1:ea:6b:bf:9b:b8:c4:
a0:ac:d6:14:9f:73:3f:7f:71:ff:56:06:fd:27:e9:89:eb:4a:
b0:6d:fc:50:39:8d:93:82:ba:d5:4a:8b:38:41:4f:1e:fa:4c:
20:01:04:12:06:49:94:9d:a5:0c:da:a8:38:f7:c4:1f:65:85:
07:53:12:42:2a:39:1e:e2:8f:6f:13:5e:ca:0f:9e:38:b7:65:
b1:19:3a:8f:ab:c3:b9:38:0f:d3:27:f2:c8:3c:ff:fc:d4:16:
c6:8c:bc:fa:30:4c:52:13:1b:76:03:bd:91:34:c8:85:ea:b5:
f6:86:f4:1c:08:40:2e:45:4e:2b:ab:b0:d0:c5:75:e0:26:0c:
4a:70:41:e2:f9:26:54:f3:b9:44:de:31:fa:b1:75:f6:aa:38:
a0:a3:2b:59:d4:e0:3a:d3:ef:8f:91:2c:d6:86:81:ac:10:cc:
19:60:ca:52:f0:df:04:a9:c9:12:4a:43:df:32:8f:6b:34:b9:
8a:ce:58:a3:49:7b:34:b3:85:ee:f7:ff:ba:3e:b2:63:fb:a7:
af:b5:1f:b1:d0:fa:28:1b:90:48:d2:f7:43:64:03:c6:2c:98:
ce:41:15:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:38 2023 by rpki-client on console-ams.rpki-client.org