Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/YiPSof4ng3mlhZTksufvRra6BUw.roa
File: YiPSof4ng3mlhZTksufvRra6BUw.roa (raw, json)
Hash identifier: 0jLwvDTQgh9+tiKEOPaLrKx3GSh5ovTohfUvXAoIyAM=
Subject key identifier: 62:23:D2:A1:FE:27:83:79:A5:85:94:E4:B2:E7:EF:46:B6:BA:05:4C
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 07A6785C
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/YiPSof4ng3mlhZTksufvRra6BUw.roa
Signing time: Tue 25 Jan 2022 09:03:04 +0000
ROA not before: Tue 25 Jan 2022 09:03:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 91.244.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128350300 (0x7a6785c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 25 09:03:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6223d2a1fe278379a58594e4b2e7ef46b6ba054c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:60:61:e5:a5:6a:8d:02:a2:d1:05:f6:15:09:
33:a3:ba:86:7b:38:91:72:cb:d9:34:30:67:26:99:
90:6d:18:7c:bc:80:ff:89:a7:59:52:2c:be:55:af:
7a:47:ce:40:eb:d9:96:2c:91:af:26:ed:dc:43:8e:
0c:96:5b:da:44:3c:e5:01:3c:e1:42:38:92:05:cd:
85:2d:bd:2f:c7:fe:b0:0c:fe:88:4e:c7:a6:eb:58:
91:72:b0:5c:24:d6:80:02:90:f8:9c:64:5c:b3:65:
b2:ab:52:60:11:6c:93:b9:6d:2c:9c:29:17:45:ef:
31:65:96:43:4f:e4:18:79:c3:67:5f:d2:27:09:2d:
4c:ff:ae:1a:1b:c2:59:ab:6e:da:8b:fa:99:c6:a8:
55:e0:60:19:3d:72:70:11:f1:dd:5e:8b:5c:8c:4b:
32:98:e1:57:ad:91:3b:b1:eb:ba:5b:eb:71:a4:1e:
71:cc:1a:25:1b:72:6a:ed:bc:27:1d:b5:58:5c:3f:
c3:30:c6:17:57:73:fa:0d:0b:a9:b4:76:f1:45:4b:
9f:01:e1:d0:05:f5:dd:3a:cc:52:0a:9f:c9:d6:e9:
6f:dd:28:ab:41:32:9f:da:77:c1:4e:74:6e:36:e2:
33:22:7b:9e:23:a0:bc:02:e4:28:1d:f0:88:ba:4e:
8c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:23:D2:A1:FE:27:83:79:A5:85:94:E4:B2:E7:EF:46:B6:BA:05:4C
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/YiPSof4ng3mlhZTksufvRra6BUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.199.0/24
Signature Algorithm: sha256WithRSAEncryption
34:df:e6:83:df:7b:ac:66:e5:be:b9:20:62:26:3a:d8:bb:56:
6c:94:42:1f:c2:b3:8f:be:27:df:7d:34:ff:ad:39:e7:68:14:
ad:ca:8b:07:5d:21:87:b7:b6:2f:33:f1:43:2b:04:3f:30:d6:
01:5b:f1:03:ef:30:83:ac:36:fe:46:0b:27:1e:50:f5:98:fe:
2d:58:d5:3d:c7:55:43:dd:5f:c0:ba:ee:15:49:75:00:d5:67:
0b:71:5d:ed:62:7a:72:61:d4:35:f0:76:47:1d:3f:dd:98:13:
dd:7d:9e:ef:7a:d2:d9:6c:30:c1:9d:41:23:dc:97:5d:8a:5d:
04:30:94:bd:73:8a:ee:ae:0f:b0:88:42:b9:a7:34:14:79:c6:
38:b5:42:0e:93:fa:18:a3:9d:67:95:52:79:2b:bb:c1:9a:bc:
ac:c0:63:dd:fe:28:4a:1e:e1:a1:0e:c6:0d:8a:e9:ef:6b:ba:
1b:23:3c:81:ba:fa:22:6f:4c:4a:3d:7f:52:a2:19:d4:be:12:
c9:94:c0:e0:59:a0:29:1c:dc:07:00:40:f2:5a:34:07:31:7f:
99:2b:23:24:2e:69:ac:6d:dd:5a:77:1c:47:dd:80:9b:77:57:
2a:3a:8e:82:96:a7:64:f7:03:9d:6c:a8:0a:71:60:09:68:61:
a3:fe:7f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org