Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/2S9h-3LS46X_03uorkh2E2Nbzjs.roa
File: 2S9h-3LS46X_03uorkh2E2Nbzjs.roa (raw, json)
Hash identifier: x8wTaK5bX9ebJ8SJ1+rcSaavSFlwji1VzTVHwmjvOpU=
Subject key identifier: D9:2F:61:FB:72:D2:E3:A5:FF:D3:7B:A8:AE:48:76:13:63:5B:CE:3B
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 0185398153C3183B79C013C72BDDA9F9F7D8
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/2S9h-3LS46X_03uorkh2E2Nbzjs.roa
Signing time: Thu 22 Dec 2022 11:04:14 +0000
ROA not before: Thu 22 Dec 2022 11:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 80.246.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:81:53:c3:18:3b:79:c0:13:c7:2b:dd:a9:f9:f7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Dec 22 11:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d92f61fb72d2e3a5ffd37ba8ae487613635bce3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:64:a2:8b:5a:8a:a3:27:33:94:39:8e:43:c8:
4c:66:f6:25:56:27:91:cc:c9:5e:14:ef:73:ec:1f:
1f:40:a5:95:f8:b4:7c:bc:6f:9b:0d:9b:75:72:af:
c9:2b:44:a3:36:61:8d:3c:71:be:c1:26:ca:84:15:
84:c2:8a:f3:71:02:1d:34:6c:02:3f:e7:75:ea:a0:
69:9c:45:7a:01:81:2e:21:8a:f8:46:f9:76:63:99:
cb:9a:e9:6e:a9:95:53:bb:1e:e8:26:ba:17:8b:5e:
f2:a7:fe:5d:fd:b6:91:54:1c:6e:ab:48:1c:d6:a7:
0d:7b:f7:9d:4f:d4:8c:ba:5f:db:c5:08:85:6a:c2:
eb:0e:81:d9:73:ae:7a:ff:a1:11:33:3c:97:af:2b:
c7:29:5f:99:c9:19:51:b9:10:db:98:2b:e6:45:00:
f2:a9:fc:e9:1e:86:38:cf:45:a6:ac:2a:34:05:0a:
ec:a6:24:e7:7e:14:fa:c3:de:ee:66:3c:77:f2:da:
00:87:ee:fb:71:ff:f7:4f:a2:30:79:cf:4b:e1:1d:
05:0c:10:78:30:a2:d0:80:f5:3a:9d:db:ad:07:ae:
c6:14:61:b5:d3:34:72:31:85:f4:4f:df:f6:3f:56:
b7:48:33:91:c0:1b:1f:dd:11:95:c3:db:06:b3:d7:
ae:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:2F:61:FB:72:D2:E3:A5:FF:D3:7B:A8:AE:48:76:13:63:5B:CE:3B
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/2S9h-3LS46X_03uorkh2E2Nbzjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.229.0/24
Signature Algorithm: sha256WithRSAEncryption
56:4e:d1:f4:1f:d7:8d:77:02:d0:8c:cb:84:15:bc:7e:89:59:
b1:77:38:be:3a:c7:97:be:fa:42:ad:9d:8f:b0:67:65:4b:fe:
1b:c5:15:4d:06:eb:e5:70:dd:91:2f:16:30:e9:76:72:47:22:
61:88:e7:b0:91:aa:28:2f:22:83:76:be:bb:39:b3:60:bb:fe:
46:a1:14:0b:87:e0:51:ce:5c:6d:63:eb:e3:92:e3:13:27:e2:
d6:90:44:2a:0b:07:10:04:ec:10:f0:16:6d:0a:ea:12:86:f3:
51:e4:df:14:33:67:f1:65:e3:64:f8:7b:25:0a:dc:45:9c:6d:
b8:83:7a:fe:fe:12:1f:eb:29:27:4e:dd:d5:bb:a8:7e:c8:91:
ed:e1:a0:72:a3:18:b4:88:ff:31:a2:1d:91:97:e8:58:46:61:
c9:4d:8c:54:0a:d6:54:25:ae:2f:ae:21:b8:f5:91:dc:bb:e9:
78:63:53:5b:e0:e8:ae:af:56:3a:ab:6e:2e:b2:97:ff:dc:31:
5d:f3:94:63:56:5b:ef:d3:9b:49:33:cc:e5:6f:28:e0:9e:8f:
d6:fc:a1:fd:69:ac:c2:fd:59:2b:d8:f2:20:8e:1e:2e:74:50:
13:7f:9a:1e:10:cb:e9:31:b9:ae:29:e4:b7:38:4e:8f:dc:72:
96:c6:03:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:09 2023 by rpki-client on console-ams.rpki-client.org