Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/gA-Shpm0rlxiCv4Ny5cAMz_mgwo.roa
File: gA-Shpm0rlxiCv4Ny5cAMz_mgwo.roa (raw, json)
Hash identifier: xI6C64NFxU1T4JUFmcSNXQzITtl+24N3WMW4a8hzQj0=
Subject key identifier: 80:0F:92:86:99:B4:AE:5C:62:0A:FE:0D:CB:97:00:33:3F:E6:83:0A
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0C9D3C7A
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/gA-Shpm0rlxiCv4Ny5cAMz_mgwo.roa
Signing time: Tue 31 May 2022 15:19:13 +0000
ROA not before: Tue 31 May 2022 15:19:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50311
IP address blocks: 91.220.131.0/24 maxlen: 24
2a04:3e00:1000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211631226 (0xc9d3c7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: May 31 15:19:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=800f928699b4ae5c620afe0dcb9700333fe6830a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9d:1f:4f:83:ea:6b:90:f6:53:56:54:27:51:
5f:56:70:15:51:c2:88:ed:a8:25:ed:64:a1:81:c4:
b2:e6:88:71:a8:a6:87:9f:ac:b4:f4:50:9f:f4:6f:
92:ae:1e:94:4b:15:c6:d1:79:26:46:0a:8b:9e:ac:
52:92:38:91:7a:92:96:ee:48:68:00:15:8e:a4:12:
d4:47:1d:b5:82:09:23:ae:7d:4d:4e:27:45:50:c0:
be:04:a8:e0:7b:fa:47:76:47:bd:33:67:a4:78:fd:
05:50:51:42:10:bf:25:c6:7a:ab:c7:09:67:3b:f9:
cc:a2:72:f4:da:0c:c9:a1:70:85:1b:bc:e1:d6:37:
60:b9:80:23:fd:b9:92:c0:0e:fd:75:96:55:49:99:
12:10:59:bd:b8:2c:75:61:1c:a1:09:f9:18:4f:11:
b6:f4:df:73:d7:a7:ac:83:39:76:6c:9e:46:c8:ea:
e4:33:b9:24:30:81:cb:41:d4:db:a7:21:89:cc:27:
5b:a8:4e:9d:71:c8:ef:43:13:73:31:69:b5:20:6b:
be:63:26:c4:5e:d3:4f:37:46:c3:e7:a6:b9:df:fe:
9a:06:b4:28:2c:cb:a2:dd:e8:c0:ff:3c:95:bf:26:
e0:d9:63:27:ae:10:66:ea:a5:cd:33:c4:e0:f7:b5:
f3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:0F:92:86:99:B4:AE:5C:62:0A:FE:0D:CB:97:00:33:3F:E6:83:0A
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/gA-Shpm0rlxiCv4Ny5cAMz_mgwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.131.0/24
IPv6:
2a04:3e00:1000::/48
Signature Algorithm: sha256WithRSAEncryption
65:38:b7:89:3f:f7:34:62:99:8b:2f:de:c5:9d:cd:71:e0:9f:
dc:79:06:d5:cc:b3:d7:7f:5d:c0:dd:67:e9:0a:38:ea:58:87:
9e:82:06:44:f0:1c:8c:bf:21:19:a3:e9:bf:1a:33:9f:b3:8d:
df:22:76:97:44:fb:5a:43:3e:c9:76:39:4a:6f:5d:82:cd:31:
fd:16:8b:6e:45:9b:76:fe:9e:a9:56:ca:9b:f5:3e:61:e7:00:
02:62:e1:e4:01:68:ac:1d:ff:a9:05:73:3f:38:e0:ba:ec:d9:
cd:46:73:28:00:7b:8d:c3:ad:3f:99:93:c1:c7:12:8c:8e:ca:
99:00:e4:a7:28:0b:2a:cc:4d:ec:01:45:7c:4e:3d:86:e5:db:
a9:7f:c5:4a:42:57:7e:40:ba:06:09:fa:33:94:6c:60:fe:9d:
21:e3:7d:03:e3:9c:8c:f7:18:7d:c4:d2:fc:7d:58:f6:dc:11:
08:b6:66:40:7c:f7:10:4e:2e:a1:5e:ba:86:6f:90:68:4a:8d:
d9:40:24:14:8a:04:27:d9:3f:4c:0b:06:df:e6:f4:dc:ef:e5:
38:17:75:b3:14:66:e2:d7:6b:a6:5e:24:ed:5d:05:ef:b2:97:
e2:cb:eb:87:3d:2f:d8:d6:e8:a9:12:ad:2a:ad:e9:9a:84:b9:
c0:66:2f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:16 2024 by rpki-client on console-ams.rpki-client.org