Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/9PgOB8_j1Vy4OcXXW7Z6ruGbx2s.roa
File: 9PgOB8_j1Vy4OcXXW7Z6ruGbx2s.roa (raw, json)
Hash identifier: SltodjEXnDjaZs09r8fvXi0VKepqsqeYBEfCO1bG7aU=
Subject key identifier: F4:F8:0E:07:CF:E3:D5:5C:B8:39:C5:D7:5B:B6:7A:AE:E1:9B:C7:6B
Certificate issuer: /CN=ec65d31440bf75d25c606f7915c236ca614464a2
Certificate serial: 090C5225
Authority key identifier: EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/9PgOB8_j1Vy4OcXXW7Z6ruGbx2s.roa
Signing time: Sat 01 Jan 2022 16:05:16 +0000
ROA not before: Sat 01 Jan 2022 16:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206953
IP address blocks: 91.150.186.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151802405 (0x90c5225)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec65d31440bf75d25c606f7915c236ca614464a2
Validity
Not Before: Jan 1 16:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4f80e07cfe3d55cb839c5d75bb67aaee19bc76b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:56:11:49:c6:4e:25:d5:b8:48:bc:39:5f:1b:
6b:2b:fd:5d:1e:78:9e:45:2f:99:ca:57:12:79:1d:
fb:d1:f4:f9:ec:8f:94:ff:92:a0:00:e8:0e:f6:ec:
bc:41:a3:7c:a6:1b:7a:dd:bb:d4:3b:d9:a6:91:61:
ba:39:67:0f:2b:b9:4c:d5:0b:16:dc:f9:ac:93:46:
3e:b8:92:0d:c5:e4:41:e3:e9:f8:3f:f9:52:e0:64:
ea:ef:b8:6a:71:60:86:61:ab:82:21:52:6f:5d:a3:
5d:28:1a:2d:0b:3b:2f:cf:5f:d8:fb:f0:fe:61:69:
f4:d3:7b:30:9f:34:28:13:eb:b8:ad:51:21:78:ee:
a1:bc:48:cf:05:e2:c5:a2:ed:2e:dc:25:7e:1d:9f:
92:0c:fa:fd:84:c5:0e:5b:13:f7:50:4a:26:ed:49:
fc:fd:35:e6:fd:78:3f:83:24:42:f3:00:a0:61:59:
d7:94:13:3f:26:06:9b:2f:5d:db:a8:fe:5b:3d:d3:
9a:ec:b4:7b:d1:60:28:72:57:5b:32:e3:1e:45:cd:
46:ed:8c:da:ab:35:68:79:5f:b6:22:3b:44:01:2e:
9c:0a:0a:98:d9:e6:0f:fa:8b:c4:12:4f:82:1d:58:
4e:42:b8:cd:7d:20:1f:dc:5a:a2:a6:05:55:4c:f1:
c4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F8:0E:07:CF:E3:D5:5C:B8:39:C5:D7:5B:B6:7A:AE:E1:9B:C7:6B
X509v3 Authority Key Identifier:
keyid:EC:65:D3:14:40:BF:75:D2:5C:60:6F:79:15:C2:36:CA:61:44:64:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GXTFEC_ddJcYG95FcI2ymFEZKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/9PgOB8_j1Vy4OcXXW7Z6ruGbx2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/2a6df5-8236-412d-ad79-e29589e8964a/1/7GXTFEC_ddJcYG95FcI2ymFEZKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.150.186.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:5e:1c:64:22:b9:fc:de:60:a8:c4:78:bb:03:e7:87:7c:de:
ef:78:63:4c:93:2f:78:6a:eb:07:7d:13:cd:1e:4e:29:65:06:
db:a2:3f:65:dc:18:c1:9f:1b:3a:91:a1:46:e5:09:2a:fe:6f:
f8:a9:fa:1b:2c:15:74:a1:02:bb:37:3d:cc:c4:2b:26:73:39:
02:54:73:83:3b:13:66:9c:b7:d9:72:57:7e:71:82:a0:4d:87:
94:87:e5:22:e2:50:f0:49:ac:31:2b:d1:e0:83:f4:88:ce:58:
aa:a2:e9:b0:81:36:b9:93:d7:82:47:54:e6:1c:fe:36:9e:34:
01:f2:99:ff:eb:e3:a9:c5:59:2a:79:f5:a0:a0:08:e1:8b:bc:
cd:a5:76:f7:02:97:62:ba:f2:93:d7:0e:b1:47:ee:75:79:27:
99:c2:7e:8c:c2:95:db:f4:bc:21:96:d3:67:da:5f:dd:ec:4b:
49:95:a1:8b:27:2d:ea:93:5c:3a:d5:a3:d7:47:77:b2:fe:74:
18:40:e4:4c:64:94:1e:15:0e:12:20:29:eb:e2:ae:7c:06:1b:
f3:80:55:78:cf:f7:71:f6:b7:72:27:20:e0:11:6b:a0:f2:89:
e4:e4:d4:73:ae:7d:bb:81:60:ca:38:39:33:b3:fa:aa:30:fe:
4a:0b:d8:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:22 2023 by rpki-client on console-ams.rpki-client.org