Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/gg2uFUXjSRUaZxODbLORFtVxq_Q.roa
File: gg2uFUXjSRUaZxODbLORFtVxq_Q.roa (raw, json)
Hash identifier: ARkbFjNfVLm+lYfIytGoUTxP5XTGr0jyqWZGNANOMcM=
Subject key identifier: 82:0D:AE:15:45:E3:49:15:1A:67:13:83:6C:B3:91:16:D5:71:AB:F4
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0359E73A
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/gg2uFUXjSRUaZxODbLORFtVxq_Q.roa
Signing time: Sat 01 Jan 2022 07:01:44 +0000
ROA not before: Sat 01 Jan 2022 07:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211830
IP address blocks: 91.235.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56223546 (0x359e73a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 1 07:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=820dae1545e349151a6713836cb39116d571abf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1d:6c:bd:51:26:36:aa:12:a1:95:d0:e8:72:
fc:99:df:01:3c:7b:b1:73:f2:30:0f:93:c0:6a:c0:
5f:1b:60:e2:cd:b9:75:47:63:ab:1f:9f:fe:ac:3b:
35:5b:87:bd:a7:6f:00:2a:42:3f:ea:e6:a1:2b:fd:
f0:07:a0:d7:68:c1:29:c9:2a:f8:0f:86:bf:d6:2f:
6b:06:86:0a:0c:99:25:2f:ae:d0:26:76:4d:3c:38:
30:f8:3b:5f:86:b3:55:e8:83:a3:40:53:92:9e:00:
7b:ce:89:be:be:0c:77:92:63:79:8d:0f:e4:4f:2a:
5f:f7:a9:8f:df:f8:e6:19:86:88:68:5a:59:70:c2:
03:ff:53:46:6c:5e:94:32:ca:cd:ae:1d:f4:c5:5c:
e8:28:1c:ed:cc:fe:2e:f8:57:b0:e0:82:6b:6e:c2:
53:40:8d:53:57:a4:8c:90:7d:80:54:4f:6f:b1:ff:
5d:3a:98:e3:75:41:f7:21:69:8e:9c:b2:c9:80:b1:
a3:e4:65:4c:ec:ee:d4:8d:60:02:13:9b:20:72:bc:
93:04:40:17:24:6a:5c:ae:49:3c:28:8a:f3:d4:93:
08:16:3c:10:e7:91:20:4b:3f:95:85:05:45:f6:65:
30:ce:46:f3:63:00:97:5f:18:0c:ee:66:b7:24:31:
b3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:0D:AE:15:45:E3:49:15:1A:67:13:83:6C:B3:91:16:D5:71:AB:F4
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/gg2uFUXjSRUaZxODbLORFtVxq_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.2.0/24
Signature Algorithm: sha256WithRSAEncryption
23:8f:43:8c:cc:48:ab:25:84:8a:02:f5:db:de:4c:56:60:d7:
dd:bc:67:6e:be:58:2f:fc:b2:ac:13:af:23:8e:95:8a:b1:98:
0f:e8:e2:20:bd:1a:2e:2c:75:a8:26:9b:2f:8b:78:63:b4:c3:
d5:b5:d7:b7:7c:49:cd:dc:87:29:e3:13:e3:49:91:72:c0:16:
94:1f:dc:8e:8d:3c:2b:3c:40:fc:43:36:f7:75:8b:87:fd:31:
32:e3:e4:d4:f3:d3:f2:fd:9c:0e:08:0d:e4:9e:9a:7d:8c:9b:
2d:28:58:10:9b:98:74:a4:c1:0e:d8:61:79:d3:48:89:a7:eb:
df:00:9c:b8:80:36:c2:71:1b:6a:d5:c1:8c:9d:cb:7a:71:08:
2e:aa:6e:a5:b6:36:f0:14:9c:b1:8d:56:f7:57:50:fe:c3:54:
ce:cb:12:06:37:bf:2b:76:fe:ff:48:d5:51:d6:d7:66:9d:bf:
94:48:5b:73:5f:9e:1c:d0:79:62:a8:82:34:d6:c0:30:9f:12:
2d:43:c9:1d:1a:8c:8e:91:65:2b:15:7e:f4:c6:48:4c:2f:9d:
fa:a4:a1:b2:d2:e8:06:32:c8:13:56:dc:c5:da:e9:33:f0:51:
6e:2a:47:d8:06:9d:97:28:19:09:42:11:20:48:a0:75:0d:08:
1f:98:2a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org