Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/309c36-7c1d-4a33-9cf5-ed36477b9480/1/w0NMeOtYI7euJfKhYMbQU-OVHUk.roa
File: w0NMeOtYI7euJfKhYMbQU-OVHUk.roa (raw, json)
Hash identifier: A9aNfxv23Fw46XdOr+gJn/zJX4oNRL+kxxb7NX1xzos=
Subject key identifier: C3:43:4C:78:EB:58:23:B7:AE:25:F2:A1:60:C6:D0:53:E3:95:1D:49
Certificate issuer: /CN=a9a28417c1e1b68f69be1d3ec812037097619ccd
Certificate serial: 7CDC
Authority key identifier: A9:A2:84:17:C1:E1:B6:8F:69:BE:1D:3E:C8:12:03:70:97:61:9C:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qaKEF8Hhto9pvh0-yBIDcJdhnM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/309c36-7c1d-4a33-9cf5-ed36477b9480/1/w0NMeOtYI7euJfKhYMbQU-OVHUk.roa
Signing time: Tue 24 May 2022 07:41:13 +0000
ROA not before: Tue 24 May 2022 07:41:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9050
IP address blocks: 91.201.83.0/24 maxlen: 24
91.201.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31964 (0x7cdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a28417c1e1b68f69be1d3ec812037097619ccd
Validity
Not Before: May 24 07:41:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3434c78eb5823b7ae25f2a160c6d053e3951d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b3:d5:99:5f:4c:23:0e:4a:fd:a1:10:f3:08:
10:c0:69:cc:a9:06:58:48:92:38:ec:bf:cc:bc:ec:
15:1c:61:ce:10:c9:c5:f4:ea:56:d6:8c:83:97:00:
70:81:76:05:05:5f:51:11:8c:4f:05:0a:20:80:89:
c6:0c:f2:08:89:a4:04:53:2e:b4:58:b6:c7:20:4e:
74:ca:65:5d:d2:86:39:c4:c8:6c:32:6a:28:4d:68:
fa:4a:34:88:8c:b1:9b:0a:98:8b:62:9f:71:69:9f:
ce:97:cd:14:40:17:e9:0c:b4:a3:b1:d8:48:99:89:
a5:c1:e4:f2:6c:ed:0a:71:8a:36:72:3f:55:d8:dc:
45:22:01:4e:05:c5:73:1f:c2:55:80:22:89:53:31:
56:d9:81:54:55:98:de:4b:6f:aa:17:37:29:c1:ae:
55:6d:9d:22:d0:53:a0:01:9f:19:73:cc:d8:82:b2:
40:65:c6:f3:2b:83:55:3c:9a:21:4a:61:5d:32:3b:
aa:70:89:f3:80:c1:33:78:0f:0e:4b:22:45:71:fe:
09:18:e9:53:6f:ae:b9:eb:23:18:5b:3b:ff:ac:f0:
21:ab:da:32:9b:00:e3:8b:1e:9d:cb:10:94:39:ba:
62:82:c6:a3:d8:33:43:35:5f:69:06:14:63:30:e4:
ae:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:43:4C:78:EB:58:23:B7:AE:25:F2:A1:60:C6:D0:53:E3:95:1D:49
X509v3 Authority Key Identifier:
keyid:A9:A2:84:17:C1:E1:B6:8F:69:BE:1D:3E:C8:12:03:70:97:61:9C:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qaKEF8Hhto9pvh0-yBIDcJdhnM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/309c36-7c1d-4a33-9cf5-ed36477b9480/1/w0NMeOtYI7euJfKhYMbQU-OVHUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/309c36-7c1d-4a33-9cf5-ed36477b9480/1/qaKEF8Hhto9pvh0-yBIDcJdhnM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.82.0/23
Signature Algorithm: sha256WithRSAEncryption
57:af:30:28:1e:59:fd:35:83:2f:a6:68:9b:b8:1c:b7:63:a1:
13:68:1e:01:b9:e0:dd:0d:fe:e3:7c:d9:4f:01:9c:ac:40:c6:
c4:f9:d5:46:cd:fd:fc:68:a6:dd:d2:57:e4:82:46:16:be:0b:
0e:72:ce:b0:40:7a:f7:95:bb:85:e1:09:ec:e9:1f:61:45:5b:
e8:fa:38:2e:75:fd:6a:07:6b:10:13:3e:ae:86:fd:bc:ae:40:
d5:ae:e7:41:05:cc:c3:f1:56:8f:67:71:41:ad:02:e2:87:f0:
bb:0b:cc:4d:2c:f7:6d:03:44:c0:21:40:8d:ed:e7:00:e1:9f:
62:80:8a:76:28:9b:e7:17:20:58:2d:4e:6e:61:0d:b1:bb:53:
59:f5:2e:5d:d2:3b:63:73:13:7f:77:4b:13:a9:96:ce:d8:58:
8a:97:67:6d:f6:7b:7d:2f:77:76:40:03:4e:c6:c2:41:c9:9b:
65:3c:d3:d3:4e:38:de:91:47:04:44:7e:4d:1a:a1:aa:8a:04:
ca:d8:81:54:0e:63:30:be:f6:53:b8:c9:a0:dc:28:91:31:1f:
47:65:08:5b:e1:3a:91:9d:08:32:0d:53:0d:bc:89:0b:64:98:
d7:78:e2:aa:df:07:41:6a:64:7c:3f:a5:d8:6d:e0:2f:1c:d3:
16:2e:f1:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:04 2024 by rpki-client on console-fra.rpki-client.org