Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/sU38xOs-a1JPKVkHr-nutGw9Nbo.roa
File: sU38xOs-a1JPKVkHr-nutGw9Nbo.roa (raw, json)
Hash identifier: TGtnc4uWcDvXUMaZais9JB66bNr7Q1nwdom3eMxVAwA=
Subject key identifier: B1:4D:FC:C4:EB:3E:6B:52:4F:29:59:07:AF:E9:EE:B4:6C:3D:35:BA
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 01851536D73D27CCA0D51354B7FDA7A430D9
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/sU38xOs-a1JPKVkHr-nutGw9Nbo.roa
Signing time: Thu 15 Dec 2022 09:56:33 +0000
ROA not before: Thu 15 Dec 2022 09:56:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205220
IP address blocks: 91.186.220.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:15:36:d7:3d:27:cc:a0:d5:13:54:b7:fd:a7:a4:30:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Dec 15 09:56:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b14dfcc4eb3e6b524f295907afe9eeb46c3d35ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a1:c4:9a:dc:a0:d8:69:40:54:1b:43:3c:28:
1e:29:85:23:f1:52:55:6b:ea:aa:dd:20:b4:ae:5e:
c9:cd:ee:0c:53:00:13:88:04:fd:e5:07:f3:6b:5b:
f4:23:30:bb:a0:c6:6e:13:1f:82:0e:f5:df:68:0f:
67:fd:97:f0:7a:06:03:35:b4:09:38:0b:be:d3:7a:
1d:94:95:11:94:4c:67:c9:90:97:17:3e:5f:ba:82:
5b:0e:18:8a:d4:b6:87:fb:b5:86:9b:e2:e0:50:ba:
48:72:59:c6:c0:75:90:25:8e:1d:2f:8b:80:f9:67:
3e:9f:75:53:35:98:05:ba:d1:79:b6:da:13:4e:a5:
fd:00:10:20:55:96:b3:60:a3:c3:96:94:aa:8d:49:
3a:15:67:17:5e:6d:9c:6e:74:60:d7:39:79:f5:46:
45:82:89:41:9f:02:0a:bd:04:f0:95:99:dd:32:e6:
8e:90:1b:5f:b1:7c:7a:b0:ce:5b:89:70:f0:c1:09:
a3:7c:b0:2e:e3:c6:4a:15:4d:ed:bc:5c:d4:c5:80:
e9:fd:d6:00:01:39:15:26:1c:4b:48:2a:3b:39:5e:
f3:3b:9c:a5:74:68:25:26:bb:fb:a9:90:be:99:30:
0b:21:17:00:0d:cf:e5:0e:b8:38:a7:67:06:5e:28:
52:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:4D:FC:C4:EB:3E:6B:52:4F:29:59:07:AF:E9:EE:B4:6C:3D:35:BA
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/sU38xOs-a1JPKVkHr-nutGw9Nbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.220.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:7f:14:7c:34:ef:16:a4:af:d2:89:c2:8d:6d:78:e8:3d:20:
ee:5a:d8:77:70:1e:5a:f2:04:94:6e:83:fb:5f:07:7a:ec:9c:
77:8a:cb:78:e2:f9:b1:e6:fa:b3:15:50:4c:03:db:a3:ab:8d:
28:7f:96:28:47:d9:a1:0b:aa:ce:8a:a5:d4:b3:e1:01:bb:97:
13:f1:54:fa:7e:82:de:90:fd:e3:85:cd:d1:42:61:f0:f3:99:
21:57:05:45:2d:25:c8:c4:59:1b:a5:f9:76:18:e9:05:0b:d4:
9f:b6:79:26:e3:d4:55:73:89:52:f3:5a:03:fe:01:bb:6f:e9:
c5:d7:0b:c4:e1:fc:ca:5a:47:e6:b8:44:b4:11:11:6b:fb:26:
82:d0:fd:c5:de:3d:68:a5:99:fc:1d:af:f1:d9:49:9b:36:99:
29:da:63:ad:2d:c3:03:30:1b:48:62:b7:89:c1:9a:72:b1:9f:
46:ef:fd:4f:b0:ed:d9:72:b6:e7:4e:ac:89:86:62:fa:0a:b5:
0d:a1:fc:4c:cd:e6:21:6a:5e:6f:2d:a7:2f:34:31:8b:e0:a2:
98:3b:63:fa:4c:2a:1f:55:da:cf:26:8b:4d:a2:cf:f3:a2:08:
c2:21:fe:63:f1:55:63:04:e5:0d:b6:c5:a0:2e:63:64:e3:0e:
a8:f6:27:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org