Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/nIMrSU9NmAp5pLV1NDweUcaF6bs.roa
File: nIMrSU9NmAp5pLV1NDweUcaF6bs.roa (raw, json)
Hash identifier: IaUelo6b+hOUClPMceGAYbfRXoFTbqoYEhp/3fKSFAA=
Subject key identifier: 9C:83:2B:49:4F:4D:98:0A:79:A4:B5:75:34:3C:1E:51:C6:85:E9:BB
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 08A0C8BD
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/nIMrSU9NmAp5pLV1NDweUcaF6bs.roa
Signing time: Mon 07 Mar 2022 10:26:22 +0000
ROA not before: Mon 07 Mar 2022 10:26:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 91.186.204.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144754877 (0x8a0c8bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Mar 7 10:26:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c832b494f4d980a79a4b575343c1e51c685e9bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:20:ca:88:01:60:19:75:da:a4:ea:e7:01:4f:
f6:55:55:58:a5:7c:f1:ff:57:58:27:d7:d5:f2:bd:
7b:08:ea:2a:4c:59:a2:da:90:d7:14:82:b7:62:89:
0c:9d:d5:a8:40:98:45:fc:9c:36:65:9a:3e:3d:f6:
41:42:e0:66:86:bb:d1:70:c9:ec:2e:61:66:a1:4a:
e9:38:01:c7:ef:2f:5e:e6:38:8c:4b:c2:ab:0a:93:
a6:b7:5c:90:5a:43:0c:36:d8:f7:a8:4e:7e:96:22:
cd:f7:29:5d:a1:d1:b8:60:26:4a:f9:3c:25:d9:51:
74:5a:6d:6b:1c:ce:0b:ed:5f:99:44:41:fa:05:11:
8c:62:94:4a:c8:21:c9:68:a6:ed:a0:b8:9e:62:6e:
1f:5a:62:6c:17:3f:c1:3d:8c:84:74:a5:31:4c:7c:
2c:cb:ed:d0:d9:a1:72:e0:12:25:f3:99:2e:7c:3b:
e7:52:1a:c4:9a:24:5f:25:5f:e9:de:d6:dc:19:56:
bb:75:b2:f6:e3:8e:cd:d8:b3:5d:8c:2b:8b:e8:d6:
c4:c2:fd:91:9e:d6:4d:96:4c:34:2e:50:9a:f7:5f:
fd:48:37:44:a7:9a:8a:51:76:d5:75:32:7e:1a:f6:
52:38:c6:78:f4:aa:76:5b:ba:85:2f:f4:57:33:bb:
a1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:83:2B:49:4F:4D:98:0A:79:A4:B5:75:34:3C:1E:51:C6:85:E9:BB
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/nIMrSU9NmAp5pLV1NDweUcaF6bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.204.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:c4:71:e6:34:c6:63:07:8b:a5:73:10:d3:ae:49:fc:ff:48:
87:cb:34:63:ea:dc:df:83:0b:27:3e:3d:6e:c8:be:25:12:34:
3a:a1:79:d2:3a:a9:bf:b8:b9:a6:ed:b4:70:4b:0c:75:04:2e:
07:6b:55:a6:bf:b5:b4:20:6e:62:aa:5c:43:93:8a:98:c8:23:
af:e5:54:f0:d4:72:90:27:43:39:9d:d1:fb:ac:64:a1:62:ce:
c9:8d:8e:07:d8:9a:ec:00:0c:26:40:27:63:25:70:92:4f:6a:
66:61:f0:bf:e2:af:94:50:1a:44:5f:87:35:8b:c2:57:ce:25:
88:a7:d7:8a:2d:19:08:51:b1:87:c5:99:a0:e4:25:e4:35:f6:
52:b0:20:05:92:f7:30:2a:44:64:b1:f1:01:89:c4:a0:a6:23:
56:fd:60:d9:7c:58:a6:16:87:c9:f3:be:0e:e3:2f:e8:76:6b:
f1:5e:7f:24:ec:b5:24:d3:38:16:4f:4f:2f:4b:86:52:61:ac:
7f:ca:5a:74:aa:09:83:e7:89:5a:ee:ae:13:b5:7b:68:80:5d:
a2:b8:26:de:b9:97:ad:16:60:09:83:0c:ea:80:9a:55:bf:55:
db:22:2e:5f:eb:ca:d4:b5:c5:21:ec:28:50:d0:d2:94:c2:30:
8f:99:40:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:44 2023 by rpki-client on console-fra.rpki-client.org