Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/026cb1-4c0f-47d8-b700-d51ae4aa127b/1/OWYj6BMLc-pTvrGS8sRBdADB47M.roa
File: OWYj6BMLc-pTvrGS8sRBdADB47M.roa (raw, json)
Hash identifier: u0jWPlV6T3cD4B0rPCpAovL3dLYgeiCU5TUK1iBjGQM=
Subject key identifier: 39:66:23:E8:13:0B:73:EA:53:BE:B1:92:F2:C4:41:74:00:C1:E3:B3
Certificate issuer: /CN=2dece72fbbaf7bd0975edda6763b68077364e202
Certificate serial: 013DB5
Authority key identifier: 2D:EC:E7:2F:BB:AF:7B:D0:97:5E:DD:A6:76:3B:68:07:73:64:E2:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LeznL7uve9CXXt2mdjtoB3Nk4gI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/026cb1-4c0f-47d8-b700-d51ae4aa127b/1/OWYj6BMLc-pTvrGS8sRBdADB47M.roa
Signing time: Thu 21 Apr 2022 11:44:00 +0000
ROA not before: Thu 21 Apr 2022 11:44:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24858
IP address blocks: 91.232.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81333 (0x13db5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dece72fbbaf7bd0975edda6763b68077364e202
Validity
Not Before: Apr 21 11:44:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=396623e8130b73ea53beb192f2c4417400c1e3b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b7:9b:6b:76:58:69:f2:2f:df:98:1d:fd:e5:
66:88:14:2e:cd:5e:c0:74:34:ff:69:ac:ea:92:4d:
9a:45:1a:db:82:0f:99:99:66:d9:e4:6b:f3:25:15:
d7:fa:43:d5:c5:12:f0:fd:8a:ee:df:91:c3:93:e3:
65:ad:25:08:31:a2:de:4d:35:59:ca:b1:c8:5e:de:
e0:9c:f9:61:20:90:eb:98:83:4d:b1:c9:65:b4:ee:
09:85:98:61:d6:0d:5c:e7:c0:12:5e:cc:9f:97:c0:
da:75:e2:06:fb:bb:ae:bd:3c:b2:8c:e3:b9:8d:b6:
31:f5:2a:16:23:bd:02:dd:dd:d7:c5:d1:ed:d0:56:
cc:ee:b9:d8:ea:bc:5e:ec:78:98:6f:02:06:94:25:
8d:f1:11:e6:c9:b9:b7:b8:7a:69:53:5b:90:97:af:
4c:a3:16:dc:4b:65:30:15:74:88:a4:d5:72:23:ad:
e1:03:4b:52:eb:fc:f5:aa:16:fd:43:95:7a:8b:fd:
13:73:db:f8:31:ea:63:bc:aa:cb:18:80:fe:48:71:
d5:fd:f6:90:00:23:07:3e:53:dc:34:89:f8:7c:2c:
9d:a9:fd:20:94:30:89:53:35:d0:00:e0:7e:8d:00:
d3:1c:db:5f:3f:27:9e:cf:fe:9c:0c:e2:1e:4f:8e:
70:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:66:23:E8:13:0B:73:EA:53:BE:B1:92:F2:C4:41:74:00:C1:E3:B3
X509v3 Authority Key Identifier:
keyid:2D:EC:E7:2F:BB:AF:7B:D0:97:5E:DD:A6:76:3B:68:07:73:64:E2:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LeznL7uve9CXXt2mdjtoB3Nk4gI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/026cb1-4c0f-47d8-b700-d51ae4aa127b/1/OWYj6BMLc-pTvrGS8sRBdADB47M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/026cb1-4c0f-47d8-b700-d51ae4aa127b/1/LeznL7uve9CXXt2mdjtoB3Nk4gI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.98.0/24
Signature Algorithm: sha256WithRSAEncryption
01:07:cb:ed:5e:e0:a1:cf:75:de:2e:13:fd:8a:19:6f:60:a1:
65:92:9d:db:f9:be:03:e4:29:f9:e8:4b:a6:35:c0:ea:0c:a4:
97:35:9d:67:b9:8b:ea:b6:20:6d:a7:98:71:fc:83:13:35:13:
a7:71:b2:25:d0:7e:27:6d:0b:7b:c1:be:85:ca:fc:72:62:e3:
05:f1:03:73:4c:7f:87:4a:9c:96:d8:d5:b8:89:27:65:9c:9a:
14:4a:45:99:2d:85:98:60:b4:1e:79:0e:c0:5b:59:3b:85:c9:
05:97:e4:a2:24:2f:58:6e:37:4c:76:c4:a3:47:bb:cd:f3:ec:
87:54:c0:4e:98:f7:1b:f3:ce:de:05:26:ca:94:c5:a4:c4:63:
0e:2c:92:61:14:45:4b:c7:fe:90:ac:0a:78:60:25:02:05:25:
13:b9:47:5a:76:44:d9:46:51:e5:62:75:59:ef:d4:8e:69:17:
14:8a:b1:4b:1e:d8:d3:a7:c1:d1:48:3d:01:3a:41:47:e4:79:
a3:b7:e1:56:94:33:c6:0d:a0:9b:96:69:6b:91:7f:a8:b6:ea:
9f:91:92:96:1f:3c:37:4a:97:38:29:4e:75:9c:a6:66:bc:52:
ea:84:10:4d:c8:1d:6b:14:6d:10:d1:65:78:de:c1:ab:c2:0b:
e4:98:f2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:43 2024 by rpki-client on console-ams.rpki-client.org