Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/027KsO8Cz4WTeP7wa3DbG91zuVw.roa
File: 027KsO8Cz4WTeP7wa3DbG91zuVw.roa (raw, json)
Hash identifier: /x9QDRmF0HUGxJ1jCxTzQEaJg8Ai5csIgi9AAXSCtmc=
Subject key identifier: D3:6E:CA:B0:EF:02:CF:85:93:78:FE:F0:6B:70:DB:1B:DD:73:B9:5C
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 07A7A871
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/027KsO8Cz4WTeP7wa3DbG91zuVw.roa
Signing time: Tue 25 Jan 2022 09:03:04 +0000
ROA not before: Tue 25 Jan 2022 09:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207429
IP address blocks: 91.244.198.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128428145 (0x7a7a871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 25 09:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d36ecab0ef02cf859378fef06b70db1bdd73b95c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:23:22:8c:c0:30:4e:6c:a4:2e:36:91:c7:4d:
ef:7f:fe:fd:f1:85:d6:4d:91:ca:00:07:89:a3:e1:
ca:63:84:ae:7b:b9:80:0b:6a:92:c1:6d:bf:6d:b6:
42:e5:c9:d7:e5:ee:ff:9d:e4:a3:77:b7:99:cb:8c:
04:04:52:cc:ea:d3:46:96:08:c9:db:56:e8:b4:73:
63:44:22:5a:1e:f7:11:cd:f1:8b:7d:56:a3:7a:d2:
7f:02:f5:21:bf:5d:af:2c:bb:43:71:dc:fc:8a:d1:
c4:b7:23:61:7c:f0:42:22:28:10:11:82:58:a8:da:
cf:4c:ac:09:6f:94:41:87:a4:9d:23:33:a3:62:23:
ed:22:70:51:53:fe:82:41:79:53:6b:ba:1d:7a:7b:
2b:96:47:61:fe:c0:3d:2a:75:05:a6:85:f5:ce:56:
06:34:cd:b4:b7:96:c4:99:8e:f6:69:c8:dc:32:23:
3b:24:cb:16:54:1a:5a:d8:e4:81:7b:e0:33:b5:42:
87:57:f8:56:dc:6a:7d:1f:a7:e0:1a:9a:42:a5:d5:
bf:bb:5e:b0:49:e4:25:ee:35:ed:fc:ca:57:bb:6a:
d0:80:b5:71:28:56:15:29:f2:02:05:8f:b8:a0:99:
8c:bd:04:df:0a:75:bb:df:3c:5c:e1:5b:ef:22:1e:
2d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6E:CA:B0:EF:02:CF:85:93:78:FE:F0:6B:70:DB:1B:DD:73:B9:5C
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/027KsO8Cz4WTeP7wa3DbG91zuVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.198.0/23
Signature Algorithm: sha256WithRSAEncryption
25:f8:0c:9c:df:42:89:14:7c:88:51:cb:a5:5e:6e:fe:a2:bc:
8d:6d:b8:a0:a6:76:75:b6:d8:1c:7e:1a:41:c3:24:74:36:be:
c5:43:57:d0:57:05:56:d7:be:f2:77:cb:7c:cf:4f:50:cd:d8:
09:51:cb:be:ae:0f:74:c2:d8:4b:80:02:5c:d5:ac:59:21:d0:
d4:5e:6f:8f:ac:2c:b4:da:f9:f0:22:91:bc:a6:10:24:48:f1:
86:ea:45:50:e0:c6:62:7b:c9:78:5a:60:46:1a:b1:f5:7b:a8:
02:d1:42:aa:d3:b4:d3:2f:d8:80:b3:a6:66:cb:a8:0a:ef:ce:
a5:39:93:13:5c:95:34:0e:72:cf:dc:7c:b7:f1:87:01:c8:08:
eb:49:6c:d4:3c:63:52:e9:62:46:6c:ce:48:76:67:28:7a:5e:
bb:27:2e:b2:8d:84:99:ee:b5:00:8e:4f:ee:91:49:a2:a6:2a:
dd:64:c7:7f:ea:e2:49:cc:3f:d8:ae:33:89:14:7a:e4:7e:2c:
49:8a:40:07:2f:0e:d8:3e:f5:59:42:e4:b9:17:01:4e:10:a3:
a8:9f:d0:7e:02:2d:ad:3f:fc:25:cd:b0:bc:f9:93:6b:9c:7e:
bb:a9:f1:5e:3f:e4:4a:0b:ad:07:a8:c6:d5:3d:a8:ee:33:49:
41:9b:10:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org