Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/f5475b-a6f9-4cc7-b70f-fd644657ca2b/1/pxQoeshSCW6Ih4VFbUDY2Aopc_o.roa
File: pxQoeshSCW6Ih4VFbUDY2Aopc_o.roa (raw, json)
Hash identifier: CcyLRycXyEwgz+o/21dglGJhxbaAIb7v1JwpWdS7ABU=
Subject key identifier: A7:14:28:7A:C8:52:09:6E:88:87:85:45:6D:40:D8:D8:0A:29:73:FA
Certificate issuer: /CN=df8089aa9e1d5c12abad43a701511da1c65f9fa6
Certificate serial: 9CB807
Authority key identifier: DF:80:89:AA:9E:1D:5C:12:AB:AD:43:A7:01:51:1D:A1:C6:5F:9F:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/34CJqp4dXBKrrUOnAVEdocZfn6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/f5475b-a6f9-4cc7-b70f-fd644657ca2b/1/pxQoeshSCW6Ih4VFbUDY2Aopc_o.roa
Signing time: Sat 01 Jan 2022 03:52:12 +0000
ROA not before: Sat 01 Jan 2022 03:52:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 91.247.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10270727 (0x9cb807)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df8089aa9e1d5c12abad43a701511da1c65f9fa6
Validity
Not Before: Jan 1 03:52:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a714287ac852096e888785456d40d8d80a2973fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:36:bb:ac:8f:56:6b:83:7c:e8:9a:83:da:b1:
73:58:19:54:31:20:52:de:96:73:ef:1a:7f:30:61:
d8:17:b8:88:c0:43:cc:26:68:71:dc:1f:e7:9f:06:
80:cc:6f:41:1a:63:50:a3:21:3d:4d:f6:0f:00:bf:
e7:e4:0a:03:a6:c8:2a:c7:9e:70:22:60:40:a0:e5:
06:1a:d5:21:67:66:42:4e:42:26:f4:d7:6f:25:85:
04:7d:3c:8d:d5:b2:32:15:79:09:60:1e:2f:23:2a:
bb:9f:17:d7:34:71:8a:ab:d5:6d:68:06:45:54:d9:
80:01:ef:6b:91:2b:1b:24:38:47:72:f9:56:ac:3e:
19:42:a7:cf:f3:9a:1b:29:00:f7:c3:80:11:7d:f4:
7e:eb:ba:fb:10:b2:46:44:29:64:35:e8:c9:22:c1:
cc:f3:cc:48:63:f9:cf:63:96:0c:44:8c:63:25:68:
5e:ed:80:6c:48:8c:05:74:3d:02:6b:48:01:68:16:
0b:e8:0a:c1:60:94:a3:0e:16:94:85:f8:2b:cf:96:
f9:2c:f8:4a:de:3e:83:1c:c6:13:45:2e:55:02:dc:
5a:fd:f2:f8:d0:2a:fd:66:d1:4c:ab:b6:78:8b:de:
61:0a:4d:ae:15:e0:eb:f3:24:79:ba:f0:56:18:bf:
42:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:14:28:7A:C8:52:09:6E:88:87:85:45:6D:40:D8:D8:0A:29:73:FA
X509v3 Authority Key Identifier:
keyid:DF:80:89:AA:9E:1D:5C:12:AB:AD:43:A7:01:51:1D:A1:C6:5F:9F:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/34CJqp4dXBKrrUOnAVEdocZfn6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/f5475b-a6f9-4cc7-b70f-fd644657ca2b/1/pxQoeshSCW6Ih4VFbUDY2Aopc_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/f5475b-a6f9-4cc7-b70f-fd644657ca2b/1/34CJqp4dXBKrrUOnAVEdocZfn6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.181.0/24
Signature Algorithm: sha256WithRSAEncryption
95:87:35:cd:56:c1:73:99:fa:e8:fe:ec:25:55:d7:d5:7b:d4:
51:4a:a0:61:ad:be:4e:91:e4:56:6e:8d:c5:8f:97:2c:a3:15:
48:98:f0:3c:92:0b:18:a4:aa:ff:7a:97:c9:cc:3a:80:85:28:
20:04:a6:9c:03:69:be:e1:f9:fe:b7:5e:ab:88:76:e0:cc:14:
19:77:53:d9:43:4c:43:a1:f7:7a:0c:4a:30:e1:af:5e:7d:25:
35:b1:bb:63:e8:03:70:34:d8:0a:43:ba:ce:f7:08:ed:9a:bd:
ba:6d:b6:94:b6:98:37:c4:0f:b7:3e:2f:e4:d4:2b:74:e4:c9:
3d:b5:dd:87:38:9c:2f:fe:e5:84:f6:a0:54:fd:6a:af:23:7c:
b2:74:2e:ec:85:0e:4f:a5:7a:b1:71:72:28:2a:6f:c2:c3:f8:
1e:6c:b0:c4:bb:98:9e:bf:63:eb:7f:83:ce:47:90:04:0e:05:
4e:5e:7a:09:0a:cc:1f:4c:47:6b:0b:23:b5:e7:e9:20:42:74:
e2:c6:7e:f0:71:1b:c9:da:2b:fc:16:fe:cc:95:57:83:23:2c:
d0:03:55:c9:0c:0e:d8:bc:96:bc:9d:0e:ca:62:23:19:7f:90:
c2:ed:0c:01:19:50:d5:a7:62:c6:6f:11:85:0d:46:59:ba:76:
42:d0:fc:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:12 2023 by rpki-client on console-ams.rpki-client.org