Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/a051a8-32a8-448f-a032-926968271fb2/1/9NibYU5aT9cLjfluVyQObohuCy8.roa
File: 9NibYU5aT9cLjfluVyQObohuCy8.roa (raw, json)
Hash identifier: 6MvgRQPdlfFCbkuPtoTrVt/NYTVjAhQJJQW2KDDpIYg=
Subject key identifier: F4:D8:9B:61:4E:5A:4F:D7:0B:8D:F9:6E:57:24:0E:6E:88:6E:0B:2F
Certificate issuer: /CN=e86adb23ca8df1e472c259f5e09cfe89ae250112
Certificate serial: 0183EB8FCB56B4E4DAD7FFF5CE6EC5E5CF13
Authority key identifier: E8:6A:DB:23:CA:8D:F1:E4:72:C2:59:F5:E0:9C:FE:89:AE:25:01:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6GrbI8qN8eRywln14Jz-ia4lARI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/a051a8-32a8-448f-a032-926968271fb2/1/9NibYU5aT9cLjfluVyQObohuCy8.roa
Signing time: Tue 18 Oct 2022 14:46:52 +0000
ROA not before: Tue 18 Oct 2022 14:46:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52034
IP address blocks: 91.220.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:8f:cb:56:b4:e4:da:d7:ff:f5:ce:6e:c5:e5:cf:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e86adb23ca8df1e472c259f5e09cfe89ae250112
Validity
Not Before: Oct 18 14:46:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f4d89b614e5a4fd70b8df96e57240e6e886e0b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:56:8b:41:9e:f6:15:e1:b2:b3:96:f9:49:39:
2c:2b:97:e4:a9:37:c5:21:27:ce:01:02:0e:b7:fa:
3d:39:b9:e5:64:b3:9f:e6:d8:c7:e2:65:2c:5a:62:
74:57:66:10:ce:fa:ff:a7:01:e5:af:0e:d9:97:52:
18:74:89:08:5f:ed:f0:38:3b:2a:b2:30:f2:03:12:
05:e6:7a:b4:87:1d:28:ed:35:c6:64:6e:6f:84:44:
5d:95:38:e4:e4:22:31:61:c3:b8:74:a6:58:b8:e8:
e1:2f:2c:2a:33:24:63:9f:d6:b6:d4:98:84:46:3d:
90:fd:37:64:cd:db:f6:3b:3a:c1:b7:6c:7e:d7:eb:
81:4c:f4:52:84:51:34:42:84:3d:86:55:4f:42:8c:
d6:ad:55:2c:1d:90:1f:b9:02:2b:75:bb:2a:29:bd:
56:79:33:03:26:21:17:6e:db:d8:05:fa:df:10:3f:
8e:42:26:02:48:f3:14:a8:e6:96:c4:b2:78:7b:d4:
3d:07:78:dc:83:3b:e5:dd:0d:5c:04:94:87:78:a3:
4d:81:48:35:d2:11:90:90:d9:6b:1b:69:0f:80:d0:
17:f7:ef:ae:de:a3:00:d2:74:76:e4:af:b2:5b:8b:
97:c6:3a:4f:61:9c:8c:7c:b9:f9:17:1a:79:f9:62:
66:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D8:9B:61:4E:5A:4F:D7:0B:8D:F9:6E:57:24:0E:6E:88:6E:0B:2F
X509v3 Authority Key Identifier:
keyid:E8:6A:DB:23:CA:8D:F1:E4:72:C2:59:F5:E0:9C:FE:89:AE:25:01:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6GrbI8qN8eRywln14Jz-ia4lARI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a051a8-32a8-448f-a032-926968271fb2/1/9NibYU5aT9cLjfluVyQObohuCy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a051a8-32a8-448f-a032-926968271fb2/1/6GrbI8qN8eRywln14Jz-ia4lARI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.246.0/24
Signature Algorithm: sha256WithRSAEncryption
67:68:51:c6:d6:fd:ee:81:3d:0a:e1:ce:be:9b:b2:00:08:42:
11:20:0f:4f:6d:fc:d2:cb:3b:b0:25:2d:13:31:49:63:f5:10:
16:6b:d4:5d:de:20:6a:68:4a:ec:81:61:14:10:f1:31:62:c7:
5b:df:4c:32:22:72:32:3a:42:50:91:43:ac:43:63:9a:68:f6:
68:64:91:a5:1b:fe:6d:92:30:be:1c:96:e3:d9:a7:9f:38:2b:
ea:c3:e7:89:c4:a3:7d:99:e8:be:50:55:d2:42:ea:89:ab:7a:
52:66:0b:25:54:57:b4:7c:96:27:ff:f1:a4:77:dd:38:e4:23:
41:8d:a5:0d:d3:b4:77:22:9d:ad:b4:be:a1:9a:0f:b3:3d:9c:
d4:44:8b:57:ab:f2:8f:ea:b4:fd:f0:31:40:01:c2:0c:9e:e0:
81:64:5a:b3:1a:f4:06:79:67:a6:cf:44:66:13:6f:61:bf:6a:
69:cc:5b:83:c7:cf:fd:22:04:eb:1c:47:52:29:6d:c9:3d:28:
d5:46:27:58:d6:c5:a1:28:69:2a:01:23:f1:20:87:67:57:21:
8c:78:10:57:7d:04:df:01:30:dd:ab:d1:53:d6:5a:c7:96:59:
ed:52:de:d8:10:f1:59:4c:ab:fb:bd:34:53:95:af:6e:4e:4d:
01:57:17:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:28 2023 by rpki-client on console-ams.rpki-client.org