Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/dc8781-3a1d-4420-b6d8-b20b9c594d59/1/9-Dh_O9Rx-xrf_dhQaRHym1P9Ow.roa
File: 9-Dh_O9Rx-xrf_dhQaRHym1P9Ow.roa (raw, json)
Hash identifier: 2zAFkzcQvnZJsNXr2zWhVa5l9BfSvR/rS6V1GZhX3vs=
Subject key identifier: F7:E0:E1:FC:EF:51:C7:EC:6B:7F:F7:61:41:A4:47:CA:6D:4F:F4:EC
Certificate issuer: /CN=3337a203155468ea08af7d9cbb2b87c2fc31318e
Certificate serial: A7ADD4
Authority key identifier: 33:37:A2:03:15:54:68:EA:08:AF:7D:9C:BB:2B:87:C2:FC:31:31:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzeiAxVUaOoIr32cuyuHwvwxMY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/dc8781-3a1d-4420-b6d8-b20b9c594d59/1/9-Dh_O9Rx-xrf_dhQaRHym1P9Ow.roa
Signing time: Sat 01 Jan 2022 02:55:27 +0000
ROA not before: Sat 01 Jan 2022 02:55:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 91.246.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10989012 (0xa7add4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3337a203155468ea08af7d9cbb2b87c2fc31318e
Validity
Not Before: Jan 1 02:55:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7e0e1fcef51c7ec6b7ff76141a447ca6d4ff4ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:80:cb:97:a2:76:98:df:4f:36:08:50:d7:42:
ac:d2:15:e4:03:7c:b8:d0:6f:f0:98:2f:25:a0:9d:
69:a5:d9:66:70:ae:57:ec:49:dc:e6:4a:45:10:7c:
7d:e2:50:2f:51:39:34:4c:d1:c1:a5:9d:a8:73:a9:
7d:12:13:01:8a:05:2a:59:e1:08:21:5d:85:61:c9:
d4:d0:d6:1e:c2:9c:12:ee:6c:3b:a2:ff:db:84:a8:
da:1e:44:7c:46:e6:b0:4a:6a:69:9b:40:ea:83:00:
0b:fe:34:41:16:ea:1c:c3:12:42:02:de:10:40:67:
f9:47:63:1b:e8:66:6f:68:6c:3a:35:89:36:c6:3f:
f6:9d:2d:bf:8f:42:81:53:02:4e:be:fa:a5:08:94:
79:c2:49:a1:12:33:37:a4:5c:92:6e:ba:eb:04:66:
61:80:89:06:5c:e4:24:08:a1:1f:52:c4:bc:90:35:
62:fc:15:25:09:b2:12:2e:d9:fd:16:86:03:66:1e:
9a:01:d8:d8:6c:2f:8a:30:f0:c3:f3:19:6d:bf:dc:
37:f8:91:1e:f5:df:51:33:a4:da:fb:9e:87:c7:06:
8b:4c:56:57:24:cb:fc:cd:3a:8c:4e:5a:ea:95:55:
ef:8d:a8:f0:f5:ce:96:1c:30:a8:32:1f:0a:12:30:
81:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E0:E1:FC:EF:51:C7:EC:6B:7F:F7:61:41:A4:47:CA:6D:4F:F4:EC
X509v3 Authority Key Identifier:
keyid:33:37:A2:03:15:54:68:EA:08:AF:7D:9C:BB:2B:87:C2:FC:31:31:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzeiAxVUaOoIr32cuyuHwvwxMY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/dc8781-3a1d-4420-b6d8-b20b9c594d59/1/9-Dh_O9Rx-xrf_dhQaRHym1P9Ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/dc8781-3a1d-4420-b6d8-b20b9c594d59/1/MzeiAxVUaOoIr32cuyuHwvwxMY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.48.0/24
Signature Algorithm: sha256WithRSAEncryption
29:7e:29:f9:4f:ad:9f:cc:f2:50:9d:d0:8c:66:9c:32:d6:e6:
ac:36:6f:13:a5:51:30:23:91:a3:74:4f:80:8e:cc:46:34:9a:
73:99:43:20:4a:e0:40:8b:af:49:c5:d2:3d:2a:cc:bb:c2:39:
17:e5:46:9f:ff:6f:b8:39:2a:46:bd:5d:88:d7:fb:f7:74:30:
3b:d4:66:de:0a:d4:c2:a2:89:fc:7d:84:d5:e7:0c:3b:03:f7:
25:5c:27:4f:d4:3c:e1:8c:b8:f3:93:44:dd:8e:bf:41:09:9e:
13:a8:73:9d:91:48:bf:66:9e:89:66:6e:31:fc:af:d9:78:06:
ea:75:4f:ff:03:36:2a:96:82:b6:3a:47:8b:6c:53:5b:ec:45:
c8:02:d7:6a:ac:ca:27:1d:23:be:53:da:f9:e9:59:e1:c8:4b:
f7:dd:b6:c2:50:56:e4:4b:6a:b3:9e:10:8b:2e:e7:5c:b2:ed:
9d:f6:5c:35:ff:85:9e:56:f1:af:79:e4:d3:91:eb:18:e4:f2:
4b:e7:87:43:20:44:0a:a8:e6:1a:ae:26:19:be:93:2b:a7:33:
1b:e6:34:8b:18:a7:8f:6c:e5:66:8f:a4:b3:05:2a:eb:58:b6:
71:5d:e8:9b:9a:61:54:53:25:ec:4a:a5:52:17:88:d5:d5:96:
9f:83:6b:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:11 2023 by rpki-client on console-ams.rpki-client.org