Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/bxZ4xI7o0voqRoN03iDlb8hmp6c.roa
File: bxZ4xI7o0voqRoN03iDlb8hmp6c.roa (raw, json)
Hash identifier: YdINO3utGsjRNXYu3XjBW6rQ4U4JpW18HrG9bhBL4YE=
Subject key identifier: 6F:16:78:C4:8E:E8:D2:FA:2A:46:83:74:DE:20:E5:6F:C8:66:A7:A7
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01828ADF3C020D0AA4C917FA32FB5E0F5644
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/bxZ4xI7o0voqRoN03iDlb8hmp6c.roa
Signing time: Thu 11 Aug 2022 03:07:41 +0000
ROA not before: Thu 11 Aug 2022 03:07:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 91.239.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8a:df:3c:02:0d:0a:a4:c9:17:fa:32:fb:5e:0f:56:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Aug 11 03:07:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6f1678c48ee8d2fa2a468374de20e56fc866a7a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e8:7b:1f:77:5d:af:78:95:4d:35:93:13:a1:
bf:ad:ab:08:ee:bd:31:93:77:b9:eb:3e:8f:43:a4:
89:d4:5c:2d:82:d7:dd:23:9d:7c:db:5e:0f:45:fe:
a4:e7:93:9b:af:5e:72:a7:e0:81:82:cb:52:6f:13:
b8:a1:8b:8b:e6:3b:35:48:de:79:83:dc:d2:6f:25:
98:7b:c6:b4:ed:f2:11:ac:7b:c7:23:fd:39:b8:4e:
59:75:c7:a2:d8:59:1d:57:99:78:5a:9d:38:97:8d:
e2:bc:09:e8:8f:fe:cf:fd:fd:6a:ae:2d:ca:bd:11:
1a:96:5a:1d:dd:c9:35:49:e1:90:55:d6:26:74:f6:
9e:08:b0:3d:90:7b:bc:f5:b5:65:fb:56:11:49:f3:
d3:6d:13:f4:96:f5:ff:2a:d4:87:e6:98:5f:63:89:
8c:08:4d:fd:22:09:9f:39:44:d0:40:49:e5:5f:88:
a6:34:f5:d6:b5:bc:7d:59:62:53:7f:0b:8a:76:23:
dd:05:a0:9f:f9:d3:dd:a5:b1:a9:3c:d2:e8:6e:01:
81:67:86:32:d5:dc:f6:52:89:b2:91:e6:ec:6a:8c:
bb:6f:77:9d:df:e7:83:81:f7:c7:cf:7e:a0:5f:4b:
bf:5b:30:73:43:02:47:78:fb:d4:87:f3:00:3e:f7:
1f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:16:78:C4:8E:E8:D2:FA:2A:46:83:74:DE:20:E5:6F:C8:66:A7:A7
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/bxZ4xI7o0voqRoN03iDlb8hmp6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.148.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:70:fc:96:48:1d:fb:e6:00:7d:95:2a:c4:83:b9:d8:4c:c1:
b4:82:28:ba:cf:44:81:d7:e1:f9:08:3a:1b:0a:4e:5d:18:20:
81:5b:c6:eb:49:0b:74:ff:4b:16:96:3c:79:57:01:cc:3f:5b:
a7:f4:46:a2:f3:22:9a:f2:57:55:a9:a8:93:5e:43:54:20:a2:
3d:d0:90:5b:5d:f4:3c:28:30:ac:19:08:98:a1:f5:aa:90:de:
94:19:cc:5f:d2:19:63:72:7a:28:95:05:c8:55:20:0c:ec:09:
5f:68:e1:37:a9:e3:b1:98:78:f1:ec:e7:f9:8b:55:b0:de:61:
81:d2:0c:29:5a:7d:63:6e:e7:37:80:14:79:55:5c:da:59:cc:
2b:be:65:f8:11:03:95:88:95:47:c7:1f:93:bd:9a:f3:bf:a0:
1a:6f:9b:13:5c:da:2a:c9:4d:e1:60:49:a7:6d:d6:56:d7:18:
1d:97:46:5f:62:2a:a6:fd:ff:0f:6b:bc:f5:a7:0e:10:b5:e8:
08:3c:d2:cd:ab:7f:67:c4:4a:2b:cc:86:e2:97:c1:ad:06:e4:
9d:57:d0:02:97:14:c0:0a:20:58:e7:09:0e:e9:88:5f:e1:bf:
a3:a0:3a:b2:2a:0c:b1:db:7c:65:75:6f:04:75:61:8f:75:f3:
4f:c2:75:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org