Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/f1d976-726b-4cb7-9fa2-02b33582c747/1/CwQzU54K7Gp5tr4UiejlZB21N7s.roa
File: CwQzU54K7Gp5tr4UiejlZB21N7s.roa (raw, json)
Hash identifier: PFafUEEhO3JZ5cwTRw6C3tHTqjySzbLTrQ8k7mI6DS0=
Subject key identifier: 0B:04:33:53:9E:0A:EC:6A:79:B6:BE:14:89:E8:E5:64:1D:B5:37:BB
Certificate issuer: /CN=2ce71b1f4eea0159246125fc5ae9ad51a44792ce
Certificate serial: 07D95B2A
Authority key identifier: 2C:E7:1B:1F:4E:EA:01:59:24:61:25:FC:5A:E9:AD:51:A4:47:92:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LOcbH07qAVkkYSX8WumtUaRHks4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/f1d976-726b-4cb7-9fa2-02b33582c747/1/CwQzU54K7Gp5tr4UiejlZB21N7s.roa
Signing time: Mon 07 Mar 2022 23:25:38 +0000
ROA not before: Mon 07 Mar 2022 23:25:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30725
IP address blocks: 91.226.27.0/24 maxlen: 24
91.226.26.0/23 maxlen: 23
91.226.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131685162 (0x7d95b2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ce71b1f4eea0159246125fc5ae9ad51a44792ce
Validity
Not Before: Mar 7 23:25:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b0433539e0aec6a79b6be1489e8e5641db537bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:c5:7a:c0:60:c4:aa:ab:a1:3b:ae:e0:45:2a:
ca:7b:a2:27:92:d6:39:0f:f1:28:ee:03:a0:63:a9:
df:4d:de:bf:f5:0d:d9:5f:51:bb:55:05:9f:3e:de:
ad:96:b9:8e:9d:93:34:42:40:07:18:a4:64:be:4d:
30:8b:87:db:1b:e2:70:a7:86:be:6c:b1:66:77:43:
48:7d:df:a4:af:a2:43:3b:be:d9:cd:b4:da:3b:3b:
ff:10:8d:0a:5a:35:6b:20:6f:b9:8d:53:27:6f:c4:
fa:53:8a:9d:ab:4c:6d:39:9c:7e:14:c8:a5:18:b0:
ab:35:e8:38:4c:c7:c7:a0:e8:31:ce:e2:5b:6b:61:
b4:01:c3:57:c6:61:cc:77:6f:72:70:7e:d1:c6:08:
1a:47:ee:ac:e8:b1:2c:13:49:b1:64:bd:c0:29:3d:
dc:7b:22:5f:27:2f:5d:91:e3:31:b3:65:ea:6e:f8:
e3:cb:2a:9c:26:c3:4a:74:33:b4:a0:55:10:da:ca:
98:b7:4d:b6:fc:f3:63:77:ee:60:07:a9:52:9b:e4:
f0:ff:98:c1:de:9b:bd:f1:1a:06:04:6e:97:ac:3c:
d7:14:73:db:3d:b6:3d:3c:93:dc:51:e5:f3:e9:14:
7e:10:ca:ed:6c:13:fb:63:f4:7d:6a:ab:75:94:72:
c6:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:04:33:53:9E:0A:EC:6A:79:B6:BE:14:89:E8:E5:64:1D:B5:37:BB
X509v3 Authority Key Identifier:
keyid:2C:E7:1B:1F:4E:EA:01:59:24:61:25:FC:5A:E9:AD:51:A4:47:92:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LOcbH07qAVkkYSX8WumtUaRHks4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/f1d976-726b-4cb7-9fa2-02b33582c747/1/CwQzU54K7Gp5tr4UiejlZB21N7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/f1d976-726b-4cb7-9fa2-02b33582c747/1/LOcbH07qAVkkYSX8WumtUaRHks4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.26.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:f2:ac:3e:be:46:a7:5b:ac:5a:dc:2c:79:d3:e3:c6:03:58:
46:ae:bc:5a:46:0c:a7:1c:9b:ad:64:d3:bc:3e:d3:12:7b:f8:
c7:c7:bd:2c:19:d5:ac:10:5a:27:b4:75:1a:a4:32:50:be:55:
80:cf:5c:56:fc:80:1b:fc:59:43:10:a7:cf:e8:f0:90:df:65:
45:e8:ac:ed:fa:23:2e:90:20:c8:3d:46:0e:ee:9c:75:46:7e:
dc:19:ae:68:d4:53:a3:3c:85:6d:b5:b0:cc:24:7a:4e:40:8d:
5e:bd:d1:4f:7d:48:99:7b:e2:bc:fe:a1:e1:25:d7:57:a6:e1:
66:82:c6:72:59:39:b2:ed:2a:4e:be:21:f2:ec:17:1f:37:df:
f2:4f:08:23:e6:4a:da:df:47:58:5c:72:d6:ec:2c:c3:cb:c9:
e0:e1:c9:42:f9:37:27:58:ef:ad:85:91:69:d3:40:8d:9f:b5:
40:f0:64:10:4d:e7:34:8b:6e:c6:e6:59:7a:1d:5d:a3:49:1b:
58:ac:1d:6a:60:2c:f2:b4:09:d6:17:27:a8:94:05:c9:06:41:
bb:7a:47:b4:6e:33:55:65:8d:ca:95:11:27:45:6d:b6:9c:fb:
55:68:a7:cf:72:f8:19:c8:da:3a:35:46:9c:5f:74:ba:d3:71:
49:91:55:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:14 2024 by rpki-client on console-fra.rpki-client.org