Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/pW9ZGL2_YMCkSlOrG6lrMp0et0U.roa
File: pW9ZGL2_YMCkSlOrG6lrMp0et0U.roa (raw, json)
Hash identifier: 8HZGKH/1011y2CkA6228uKSxtWh5lLkl36L0NZZDV9I=
Subject key identifier: A5:6F:59:18:BD:BF:60:C0:A4:4A:53:AB:1B:A9:6B:32:9D:1E:B7:45
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01824DC180C0580753042A2752D84870C255
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/pW9ZGL2_YMCkSlOrG6lrMp0et0U.roa
Signing time: Sat 30 Jul 2022 06:18:23 +0000
ROA not before: Sat 30 Jul 2022 06:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47216
IP address blocks: 91.186.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4d:c1:80:c0:58:07:53:04:2a:27:52:d8:48:70:c2:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jul 30 06:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a56f5918bdbf60c0a44a53ab1ba96b329d1eb745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cf:83:de:cc:43:b9:12:ad:dd:eb:3c:63:e9:
af:ce:06:3e:53:0a:7c:23:3c:a1:b8:d3:99:7b:dc:
8a:f8:72:3b:e8:14:9e:c9:f1:1b:6d:16:26:b8:d5:
47:12:02:5f:1e:31:e6:d4:7f:b0:b7:a0:67:d4:97:
ae:dc:ed:bc:27:24:1b:46:56:9c:dc:3f:f6:bc:d2:
07:5d:0b:dd:de:f4:49:89:e4:40:e7:9f:a8:19:3d:
18:4e:32:77:f1:e9:19:96:7e:96:15:c7:33:4c:b4:
37:ee:da:14:eb:6a:b6:18:f0:a5:6e:df:c5:92:c9:
9c:89:88:98:1a:49:d8:e4:e7:66:bf:c2:9d:9c:b9:
0c:5f:92:e4:82:3f:68:65:4f:52:97:49:b3:1a:1d:
9c:ce:e1:47:f5:c8:e6:e6:11:0c:74:47:0b:12:98:
d1:db:07:0a:f8:ea:b8:e3:44:62:0a:79:fa:1d:de:
3f:9e:67:8a:4b:56:2a:34:ca:9c:73:48:21:df:ae:
16:c7:76:ff:1b:93:15:e9:54:52:79:22:a3:c5:13:
f2:83:5b:9f:7f:0c:71:4c:8d:19:89:26:bf:b9:60:
d4:a8:5a:f7:d8:5d:1b:6e:2b:2f:4f:68:44:a4:25:
5a:b6:56:84:7c:0c:c4:1d:04:85:b9:a7:7b:f3:b0:
9c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:6F:59:18:BD:BF:60:C0:A4:4A:53:AB:1B:A9:6B:32:9D:1E:B7:45
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/pW9ZGL2_YMCkSlOrG6lrMp0et0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.193.0/24
Signature Algorithm: sha256WithRSAEncryption
02:aa:40:6a:aa:30:db:e9:83:bb:7f:29:96:6a:26:b4:37:72:
01:d1:5f:70:8f:17:a4:46:56:07:58:06:d1:fb:6e:4b:2a:17:
21:76:eb:87:12:c6:bb:14:9d:62:0c:dc:93:05:04:8b:c7:4c:
43:b6:79:73:62:a0:60:c1:18:b3:e2:20:a1:c6:9e:6e:26:a7:
d9:7e:3c:b3:98:9e:0e:c1:86:66:42:41:4d:e8:ba:ff:1d:e7:
a8:a3:f0:7f:75:39:25:a8:0b:7d:86:bf:a4:40:c2:48:af:08:
0f:34:86:9e:19:a3:d3:f3:f0:01:92:ea:73:be:9f:6c:a6:b2:
cb:f0:1e:3e:53:92:39:fc:e7:85:d1:af:b1:95:a6:b2:c4:3d:
61:e2:90:5b:ea:25:ce:ec:62:a5:61:8c:2c:cc:4a:3f:82:9a:
45:db:bb:de:dd:fb:ac:5a:60:eb:53:41:27:f3:cc:66:49:da:
3a:ac:7d:a2:bd:03:38:30:1c:79:67:03:cb:a2:21:23:41:b9:
da:5a:27:6a:2b:d6:d5:3e:c0:ef:07:35:57:c3:f2:a6:aa:80:
0b:43:c2:ba:bc:5b:63:e6:9c:f1:89:ef:36:7b:e8:d6:cd:6c:
9c:37:b3:be:e1:9a:63:70:57:86:7a:d4:32:54:05:7b:8f:3d:
0f:c2:cb:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org