Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/4d200d-eae5-44da-8ee3-09595e9cd6c2/1/7M3Kip5wr72hOcXX8fLXtJdL0Po.roa
File: 7M3Kip5wr72hOcXX8fLXtJdL0Po.roa (raw, json)
Hash identifier: EicQGJthr+2Yq/XRr6WS3eyji0Ixt6X86fgv7ReBG/8=
Subject key identifier: EC:CD:CA:8A:9E:70:AF:BD:A1:39:C5:D7:F1:F2:D7:B4:97:4B:D0:FA
Certificate issuer: /CN=e740eed28f2d994eb2b831cb8efc6470306d7461
Certificate serial: 0EB3BD
Authority key identifier: E7:40:EE:D2:8F:2D:99:4E:B2:B8:31:CB:8E:FC:64:70:30:6D:74:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/50Du0o8tmU6yuDHLjvxkcDBtdGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/4d200d-eae5-44da-8ee3-09595e9cd6c2/1/7M3Kip5wr72hOcXX8fLXtJdL0Po.roa
Signing time: Thu 20 Jan 2022 08:38:09 +0000
ROA not before: Thu 20 Jan 2022 08:38:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.46.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 963517 (0xeb3bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e740eed28f2d994eb2b831cb8efc6470306d7461
Validity
Not Before: Jan 20 08:38:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eccdca8a9e70afbda139c5d7f1f2d7b4974bd0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0a:84:7e:45:da:76:24:68:17:0a:3f:a0:2c:
f6:10:2f:d4:06:5a:9b:d0:5c:b8:47:f4:e3:61:81:
bf:93:48:e0:87:08:b1:8a:3d:28:0d:a8:88:8b:78:
30:4d:4a:47:ab:88:fe:d2:e8:bb:da:4c:8f:25:95:
ef:86:6b:ba:d7:24:00:3f:92:00:cb:51:72:0f:3b:
ee:24:0b:4e:73:27:8a:df:06:64:82:f8:89:da:3a:
20:b3:68:93:1f:a8:35:42:65:b5:f5:c2:79:a3:31:
91:f2:ee:4f:01:03:4c:a9:02:d8:a9:bd:ed:78:5b:
be:8a:a8:b4:b6:c6:9d:b6:32:d2:17:26:6c:1b:a8:
19:2f:cb:c0:79:f1:52:70:c8:e1:7b:c7:4f:90:9d:
c9:a6:bb:7e:34:99:1d:5d:d7:08:bb:88:fb:8f:fa:
f2:dd:bd:a4:86:94:af:e5:05:af:bf:c3:e1:29:8f:
2b:a3:0d:40:75:e4:34:ad:e6:e2:38:7d:b8:46:36:
a9:0b:36:c8:20:d3:30:9d:6d:16:e2:e7:e9:c9:09:
b4:fc:98:05:25:4f:33:2f:c8:47:35:fe:42:8d:7f:
56:f7:a9:13:dd:1b:be:b0:70:b9:f6:c6:fa:7e:ce:
aa:2f:68:e3:b8:6a:2e:0c:ce:1d:a5:ac:ee:bd:47:
0b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:CD:CA:8A:9E:70:AF:BD:A1:39:C5:D7:F1:F2:D7:B4:97:4B:D0:FA
X509v3 Authority Key Identifier:
keyid:E7:40:EE:D2:8F:2D:99:4E:B2:B8:31:CB:8E:FC:64:70:30:6D:74:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/50Du0o8tmU6yuDHLjvxkcDBtdGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4d200d-eae5-44da-8ee3-09595e9cd6c2/1/7M3Kip5wr72hOcXX8fLXtJdL0Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4d200d-eae5-44da-8ee3-09595e9cd6c2/1/50Du0o8tmU6yuDHLjvxkcDBtdGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.91.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:fb:fe:7e:76:ec:ff:5e:19:f5:1b:49:d7:c9:55:be:a0:b5:
90:68:68:f5:0d:32:ff:57:11:ff:70:62:8b:ac:9b:e7:ad:c2:
9a:eb:e3:fd:61:19:09:0b:b0:70:82:72:c6:8b:f7:47:cc:4d:
05:32:ff:85:ea:da:5e:f3:6f:20:6f:55:11:2e:d1:6c:de:6d:
72:ee:17:39:f6:d4:3b:e3:b5:32:67:b5:b4:91:bf:d1:0e:5c:
08:e6:e9:e8:d3:15:f3:ab:d6:07:31:f8:7c:93:84:4e:42:00:
f9:8a:a3:11:48:ce:07:b4:d5:63:59:bf:57:2f:24:0a:98:15:
b6:e5:41:54:50:00:de:a6:f4:43:0d:32:14:d1:96:ff:4d:d1:
b8:72:94:a4:38:1e:c2:a0:60:51:0c:ed:bb:8d:af:af:41:15:
61:33:77:35:93:89:f9:bf:a2:62:b2:5e:c6:55:ec:ae:98:09:
43:e3:91:8a:ae:68:7a:ab:19:25:ae:41:b3:ab:08:29:41:59:
17:20:cf:71:93:72:41:41:ce:15:98:15:ed:3e:99:a4:f8:db:
67:27:f7:a1:a8:f5:5e:97:5d:de:25:0b:90:f0:79:a9:cb:a3:
ab:dc:72:2f:5f:86:ea:a8:7e:3e:bc:f8:c0:bd:51:44:54:d4:
17:33:0e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-ams.rpki-client.org