Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/SRh2_ZanJGLnAKn5M20g4Qyzb2M.roa
File: SRh2_ZanJGLnAKn5M20g4Qyzb2M.roa (raw, json)
Hash identifier: t4LUojJxZ8bVQLQ51ox+z0uc2OxgsaMaEUUj/79ftwM=
Subject key identifier: 49:18:76:FD:96:A7:24:62:E7:00:A9:F9:33:6D:20:E1:0C:B3:6F:63
Certificate issuer: /CN=5f92bff7a89a8590e6abbaec0282b0f24e0afeb2
Certificate serial: 050DB2B5
Authority key identifier: 5F:92:BF:F7:A8:9A:85:90:E6:AB:BA:EC:02:82:B0:F2:4E:0A:FE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X5K_96iahZDmq7rsAoKw8k4K_rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/SRh2_ZanJGLnAKn5M20g4Qyzb2M.roa
Signing time: Sat 01 Jan 2022 12:56:35 +0000
ROA not before: Sat 01 Jan 2022 12:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31800
IP address blocks: 91.236.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84783797 (0x50db2b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f92bff7a89a8590e6abbaec0282b0f24e0afeb2
Validity
Not Before: Jan 1 12:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=491876fd96a72462e700a9f9336d20e10cb36f63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:40:b4:5d:72:1a:9d:0d:1f:4e:5c:7a:aa:6c:
02:92:55:08:e1:00:da:af:0e:27:23:37:11:13:70:
02:8c:6b:3f:36:15:99:bd:46:3e:c9:c6:39:0f:cf:
69:25:5f:c9:62:46:71:39:e9:60:27:33:9c:0b:36:
ab:c0:45:b3:68:85:2d:c7:a4:4a:65:ac:65:9a:36:
6c:a1:d0:7a:34:e0:e0:9f:47:3f:bb:3d:3e:28:30:
d8:51:b8:ce:81:35:2b:74:5e:f1:c8:c5:27:42:79:
91:e4:a1:b5:f3:ef:71:05:01:1a:2c:2e:7b:04:b2:
11:ef:76:e0:d9:c6:d2:97:16:5f:b2:4e:c1:2b:81:
13:54:c5:0b:94:d2:37:3f:27:35:5a:7f:ac:2e:67:
d4:2c:77:70:10:31:00:68:31:29:45:e0:1f:ad:12:
9f:56:82:c6:ad:60:55:3f:45:88:91:1c:94:06:ed:
b0:34:36:56:59:83:93:6d:3b:fd:b8:68:0f:41:66:
e0:a3:8b:3d:21:af:c0:9a:7f:41:61:83:52:6b:b2:
7f:01:a3:5d:3f:8d:96:f4:8b:30:0a:6b:b9:34:cd:
99:28:de:10:d7:ec:f2:4b:d7:a2:fd:f7:f1:06:9d:
20:8b:7a:9a:7e:59:e5:d0:2b:06:a2:20:08:74:f4:
5f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:18:76:FD:96:A7:24:62:E7:00:A9:F9:33:6D:20:E1:0C:B3:6F:63
X509v3 Authority Key Identifier:
keyid:5F:92:BF:F7:A8:9A:85:90:E6:AB:BA:EC:02:82:B0:F2:4E:0A:FE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X5K_96iahZDmq7rsAoKw8k4K_rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/SRh2_ZanJGLnAKn5M20g4Qyzb2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/a78ef1-c3c9-43a0-9b1c-1d9d8d004111/1/X5K_96iahZDmq7rsAoKw8k4K_rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.182.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:0a:99:cf:f6:fc:de:4c:3f:65:b6:38:66:51:10:5b:83:70:
6b:04:75:15:a8:4e:e2:df:fd:7c:3f:2a:fd:91:92:9c:95:72:
69:a2:8c:bc:72:61:80:c8:1d:4b:96:b6:d3:64:34:9a:81:99:
b1:8b:d9:44:ef:cb:3f:84:e4:4f:69:e4:d4:ea:cb:b9:13:20:
26:64:40:20:de:31:02:3b:27:87:d5:55:4f:81:8b:12:d1:0b:
1c:67:ad:b8:5c:a9:27:82:1b:08:6d:36:d6:bb:2c:26:7e:eb:
17:fe:37:71:0f:0e:71:09:84:48:da:bd:b6:71:c2:2f:23:42:
d4:20:c4:6e:c9:25:7b:97:66:fa:5c:fd:8b:83:a8:e3:8f:14:
79:b5:b0:96:44:fa:2e:87:66:df:9f:43:e5:47:bd:f7:d2:8e:
5b:75:3c:2e:58:15:76:b1:1b:9b:ec:81:a4:17:71:99:b2:a5:
7f:9c:2b:dd:61:0c:cb:00:c8:54:3b:8a:09:19:8a:d2:8f:ef:
8b:aa:b8:c9:a8:e5:df:d6:99:87:33:04:33:0a:fc:8f:21:2a:
6f:79:5f:25:c2:df:b6:ce:4c:72:29:11:20:9a:fa:21:cb:cc:
3a:15:40:17:ca:57:9a:56:0b:34:1f:06:43:37:b7:f3:07:67:
bc:67:49:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:30 2023 by rpki-client on console.sobornost.net