Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/O91Hg6i0G6kwZdZdgAmtT85xtUY.roa
File: O91Hg6i0G6kwZdZdgAmtT85xtUY.roa (raw, json)
Hash identifier: 2sW8JTMplJrwkVGxtoVjuePd1Bj/DzV0ggN4i4vAwMg=
Subject key identifier: 3B:DD:47:83:A8:B4:1B:A9:30:65:D6:5D:80:09:AD:4F:CE:71:B5:46
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 075A1BA0
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/O91Hg6i0G6kwZdZdgAmtT85xtUY.roa
Signing time: Sat 01 Jan 2022 03:51:28 +0000
ROA not before: Sat 01 Jan 2022 03:51:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 91.238.92.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123345824 (0x75a1ba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 03:51:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3bdd4783a8b41ba93065d65d8009ad4fce71b546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:45:98:60:e1:cc:e1:00:8f:df:33:54:49:df:
f4:64:5b:33:5b:29:eb:c7:b8:ba:ea:e4:0d:cd:6c:
09:b7:f6:49:24:03:c4:8e:f4:f9:53:f1:e5:b7:aa:
f4:84:74:b8:ba:a3:53:d5:8f:2f:84:0e:26:68:d1:
b7:fb:08:9b:c1:fa:52:51:47:8f:6e:c9:dc:66:b7:
52:5f:0c:b4:53:e9:62:e8:a6:84:a7:38:23:1f:ef:
01:c3:10:58:da:4c:e0:bc:74:31:82:5a:8b:8e:8b:
5c:fb:e1:36:d2:3e:b2:e5:d0:5e:b7:f3:b3:7c:0d:
6d:be:7e:e5:b8:83:cc:a9:e2:e4:6a:bb:43:5e:4f:
57:51:a4:33:42:de:36:ef:68:69:f4:a8:72:70:fe:
da:dc:e9:dc:61:a4:8e:d7:b0:c1:0b:17:c2:8d:16:
40:4a:e8:b3:fd:28:00:3b:a5:5e:f7:ac:eb:24:b9:
35:f1:38:eb:ef:d2:56:dd:59:85:7b:54:06:46:0d:
43:43:1f:d2:b4:f2:61:38:6c:2a:26:5a:21:fa:bc:
d3:32:8c:0f:95:a3:12:ec:d8:5e:e8:76:14:b6:98:
c6:63:7b:f3:18:eb:33:41:f2:59:c1:da:43:4b:d1:
92:04:ed:fb:e7:f3:d3:19:98:46:0b:88:b7:11:47:
29:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:DD:47:83:A8:B4:1B:A9:30:65:D6:5D:80:09:AD:4F:CE:71:B5:46
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/O91Hg6i0G6kwZdZdgAmtT85xtUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.92.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:2f:69:e3:74:fa:99:52:03:fb:b4:35:d5:1e:07:dd:48:f8:
99:11:26:35:33:3c:46:83:67:fc:99:b1:7e:55:5c:be:62:98:
1e:66:d4:ab:e0:99:e0:13:1a:72:3e:54:ea:aa:e5:d4:05:e5:
31:17:d4:b5:41:21:37:68:c2:94:ee:52:9f:c0:a4:cc:68:1e:
a8:99:a5:54:4b:bc:1f:18:73:0e:07:d3:da:38:c6:52:87:ed:
1a:72:90:21:5d:9f:99:2f:53:52:6e:ab:95:6d:2f:d6:ab:55:
64:d6:52:9e:b2:f1:63:6e:a2:2f:44:e5:ca:75:8e:5a:ec:d5:
b1:c0:2e:82:36:5b:c7:b0:0b:f0:3e:de:e8:14:4f:92:5c:66:
fc:05:cb:ab:c1:50:17:34:c8:3b:0b:2a:df:29:84:98:b6:33:
8f:8c:2e:c5:37:e2:9a:63:3e:f3:41:ad:e1:48:d6:8e:45:cf:
d8:68:84:7f:2e:5a:6c:d6:fc:0e:09:b0:0b:5a:bf:62:cb:3a:
80:e5:83:0d:4f:96:70:9a:a3:14:ec:df:98:9f:66:da:88:1f:
1b:df:57:59:e9:4f:78:79:3d:94:b1:30:da:f9:05:cf:b2:67:
01:ce:89:97:ca:8a:f9:7e:37:60:7f:3a:68:6e:47:f7:42:b9:
8b:3a:2f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org