Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/0OTDJXUWrb0sOmDtV_iX0k4VlR4.roa
File: 0OTDJXUWrb0sOmDtV_iX0k4VlR4.roa (raw, json)
Hash identifier: RSmdb8CwrMyu8Qk2jpkXx/pKmaS72ivc/YaY73ejpgE=
Subject key identifier: D0:E4:C3:25:75:16:AD:BD:2C:3A:60:ED:57:F8:97:D2:4E:15:95:1E
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 075C0D6B
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/0OTDJXUWrb0sOmDtV_iX0k4VlR4.roa
Signing time: Sat 01 Jan 2022 03:51:29 +0000
ROA not before: Sat 01 Jan 2022 03:51:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 91.244.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123473259 (0x75c0d6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 03:51:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0e4c3257516adbd2c3a60ed57f897d24e15951e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6a:c7:4f:24:24:89:25:9c:72:35:25:e7:de:
4d:26:46:28:73:25:6a:72:74:d0:75:d1:98:05:e7:
1e:60:bb:3a:a3:3f:b8:30:3c:2f:51:2a:cb:49:70:
8c:8b:4b:85:27:f6:65:17:89:a4:96:09:27:43:f3:
c3:2f:8a:42:b2:d3:f5:2d:fb:02:1e:ae:3e:9a:d9:
87:12:7f:83:a2:65:b8:a1:0f:34:7f:e3:41:a6:0b:
ca:b4:42:8d:4a:e6:44:d1:60:c7:e1:70:6b:40:c1:
5f:6d:7f:77:e0:11:8f:16:5b:8a:bf:8d:21:7f:51:
ac:46:05:2c:ba:88:a0:5b:db:9a:20:43:b2:2f:bf:
d6:1d:54:f4:d8:2e:de:c1:32:15:15:54:8d:ce:c5:
53:93:51:f9:7d:71:3a:4a:06:db:50:11:f3:8d:37:
bf:99:9f:5c:89:84:dd:8c:28:70:2e:e6:7d:73:c2:
ad:b7:bc:cf:06:74:76:a4:be:55:59:82:2e:d1:dd:
48:d1:4d:0e:a4:fd:3a:ae:4d:af:d5:32:13:a7:4b:
19:a6:fd:f5:c5:56:4c:ac:d6:58:05:6d:8a:5d:62:
d2:44:f3:d7:2a:3d:e5:00:45:89:20:ec:fc:87:81:
09:63:75:ca:a1:ae:e8:5a:99:72:06:b4:ff:10:4c:
6f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E4:C3:25:75:16:AD:BD:2C:3A:60:ED:57:F8:97:D2:4E:15:95:1E
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/0OTDJXUWrb0sOmDtV_iX0k4VlR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.196.0/24
Signature Algorithm: sha256WithRSAEncryption
18:4a:ff:ec:f5:e9:01:17:28:35:4b:65:35:60:4f:66:87:2c:
31:30:ef:63:9c:2d:2d:4a:a7:81:8e:35:b3:8c:9f:90:0f:cc:
b2:7e:47:e2:48:8b:49:dc:d3:0a:17:84:11:cb:6e:ec:7a:32:
81:35:95:07:49:f9:83:a8:cf:ae:f1:fb:41:51:45:4d:bf:55:
50:6e:e6:29:56:12:85:2f:f5:fa:46:00:a8:f4:fa:35:c9:8b:
5a:e7:07:e8:db:48:f6:0d:92:7d:24:4d:02:00:d2:29:8b:74:
e4:0c:be:99:a4:0c:71:43:ef:ba:fa:48:4a:d3:6c:d2:41:6c:
6f:9b:04:f4:50:7e:20:5c:6a:11:5f:81:ad:71:bc:d4:d4:f4:
df:33:92:bf:d7:38:94:0b:86:f6:26:49:ab:2d:c6:a4:f1:4c:
20:6e:f0:6a:ab:92:b7:fc:3a:ea:77:67:34:19:e9:31:3c:63:
bf:e9:ac:91:5e:a3:10:32:4f:07:aa:c5:0b:0b:9b:0b:e2:ae:
41:e0:4a:f3:2a:a4:65:40:29:d8:0a:6c:4c:e6:d7:97:ae:73:
a7:c5:33:86:be:fa:0c:c7:8a:2a:7b:8e:2d:cd:90:e5:ac:b6:
20:43:9a:38:13:1b:08:69:5a:ab:ba:3f:db:01:4b:22:39:00:
3c:43:7b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:18 2023 by rpki-client on console-fra.rpki-client.org