Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/oyGc4F3Z6yo446jg6e7MdQMV2TY.roa
File: oyGc4F3Z6yo446jg6e7MdQMV2TY.roa (raw, json)
Hash identifier: 8V2OANcv2n2hiaYP6RcIYk0Z1ViCgufKAVYC8kCxasQ=
Subject key identifier: A3:21:9C:E0:5D:D9:EB:2A:38:E3:A8:E0:E9:EE:CC:75:03:15:D9:36
Certificate issuer: /CN=0e3c9ee1be3308fd6bd4a7c7ac2b9d910089b779
Certificate serial: 06B83B7A
Authority key identifier: 0E:3C:9E:E1:BE:33:08:FD:6B:D4:A7:C7:AC:2B:9D:91:00:89:B7:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Djye4b4zCP1r1KfHrCudkQCJt3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/oyGc4F3Z6yo446jg6e7MdQMV2TY.roa
Signing time: Sat 01 Jan 2022 09:02:20 +0000
ROA not before: Sat 01 Jan 2022 09:02:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199034
IP address blocks: 91.202.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112737146 (0x6b83b7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e3c9ee1be3308fd6bd4a7c7ac2b9d910089b779
Validity
Not Before: Jan 1 09:02:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3219ce05dd9eb2a38e3a8e0e9eecc750315d936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c9:9c:4c:ae:64:f2:27:f6:8c:8c:88:7e:95:
39:c9:c4:66:86:11:89:b7:3c:94:24:74:53:d1:5f:
38:43:91:29:67:27:32:dd:92:c5:c3:91:3a:f4:2a:
9d:cb:2b:86:e4:82:32:59:fb:79:a6:84:3b:65:c1:
ac:47:0c:36:8f:cc:b6:88:11:9d:c5:0f:4d:72:14:
ee:8c:64:6f:00:18:9b:68:85:65:60:f4:34:19:f0:
d4:ef:f0:06:01:63:66:f3:52:9d:12:4b:61:f2:ae:
87:ab:93:93:4d:b2:1f:12:d4:e2:33:6f:58:91:5c:
63:f1:c6:9f:9a:7f:6b:4b:ba:88:94:a7:58:df:62:
9c:61:d7:fa:de:32:37:44:86:29:5a:e1:74:c8:ea:
4a:aa:49:d6:0c:84:5f:32:92:a5:89:37:c4:99:79:
30:3d:a4:28:3b:14:f1:e1:36:68:a4:a0:08:79:d8:
db:19:35:04:59:20:88:26:ef:87:e8:71:4b:92:73:
f3:cc:89:c9:59:17:aa:14:d5:fe:b8:2f:d7:31:dd:
38:c8:d8:06:c5:1b:78:72:b3:9d:0f:27:a0:cb:cd:
3e:6e:9c:5f:45:96:45:84:6d:c0:cd:af:f3:2c:cd:
e3:26:59:e0:84:2b:d3:a8:62:40:9f:4c:86:0f:86:
8f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:21:9C:E0:5D:D9:EB:2A:38:E3:A8:E0:E9:EE:CC:75:03:15:D9:36
X509v3 Authority Key Identifier:
keyid:0E:3C:9E:E1:BE:33:08:FD:6B:D4:A7:C7:AC:2B:9D:91:00:89:B7:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Djye4b4zCP1r1KfHrCudkQCJt3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/oyGc4F3Z6yo446jg6e7MdQMV2TY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/caa2da-5ebc-45cb-b8fe-08f3e8907c42/1/Djye4b4zCP1r1KfHrCudkQCJt3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.177.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:39:c1:f1:52:eb:2a:25:91:3b:31:74:08:26:28:b8:3b:74:
89:28:fd:25:a9:16:be:84:29:c0:b2:4d:92:69:64:5a:e6:4b:
54:da:b6:d3:10:c0:88:24:cc:8d:2e:e0:92:ec:5a:06:40:67:
b0:1f:16:e9:83:98:5b:fc:05:29:44:40:2c:a1:e8:48:29:d1:
b3:01:60:01:6e:ac:b6:2f:48:0d:28:46:19:05:83:af:a5:fe:
51:55:6e:ef:0a:98:67:9f:9a:eb:20:4e:3f:e8:bb:30:6e:f0:
29:68:47:5f:7b:81:52:b7:bc:c0:fc:04:ca:c0:2e:ae:b8:e7:
f9:66:ae:62:75:3f:35:34:4d:3d:12:bc:f4:75:76:68:be:bf:
3f:9b:7a:a9:c6:99:fe:01:d9:a1:9c:d9:2f:2d:2b:b3:a3:3a:
a0:56:e8:ff:ea:23:c7:b5:a7:69:cc:0f:6d:8a:1c:ce:85:81:
c6:23:65:14:a0:ef:88:f9:c6:e8:3b:fa:a4:ad:0d:0a:a4:0b:
7b:09:f2:4f:56:ab:3b:46:c3:c3:24:59:21:15:83:7d:7f:2c:
59:ea:15:a6:d4:46:4f:ac:b5:76:ed:43:0a:2e:5e:73:f9:e4:
b2:db:c6:f2:25:c6:0e:86:57:de:10:07:d0:ba:d2:b6:68:0d:
50:87:f2:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:58 2023 by rpki-client on console-fra.rpki-client.org