Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/S-uOtQLUZj9ohVkMsin-rlIqV_0.roa
File: S-uOtQLUZj9ohVkMsin-rlIqV_0.roa (raw, json)
Hash identifier: Rvc6jvVe9iaSSEkGUA9oFwE/GAZW+H0dRiXHHonQn6A=
Subject key identifier: 4B:EB:8E:B5:02:D4:66:3F:68:85:59:0C:B2:29:FE:AE:52:2A:57:FD
Certificate issuer: /CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Certificate serial: 08A33D80
Authority key identifier: 8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/S-uOtQLUZj9ohVkMsin-rlIqV_0.roa
Signing time: Sat 01 Jan 2022 06:04:01 +0000
ROA not before: Sat 01 Jan 2022 06:04:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43789
IP address blocks: 91.200.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144915840 (0x8a33d80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Validity
Not Before: Jan 1 06:04:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4beb8eb502d4663f6885590cb229feae522a57fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3f:b0:da:cf:42:d1:d4:2c:32:75:8a:ff:c5:
1c:d7:56:b4:53:6e:eb:26:95:fd:6a:b1:64:35:b7:
ce:1b:d6:e9:87:bd:bd:c0:1e:98:ed:8f:a0:15:b2:
db:a4:0a:af:16:a9:dc:32:6e:3a:8b:0b:f5:24:a6:
0f:18:99:f1:b4:bf:4e:c0:17:fb:7a:52:9f:14:da:
10:fe:56:54:62:aa:ec:02:19:13:aa:13:11:b6:73:
30:5a:ae:0f:3b:31:23:ae:12:b2:84:ca:71:9b:e8:
3e:e3:df:a1:80:79:97:79:a6:36:96:2e:85:36:d1:
11:ec:0b:22:f8:61:2a:35:66:db:93:18:ba:86:fd:
bf:19:b0:83:b2:de:98:67:83:4a:fc:31:1a:79:9a:
cf:b1:46:c3:a9:dc:45:57:21:17:51:bf:6d:2f:3a:
36:b4:d8:00:ea:be:c4:aa:f4:66:d0:d1:c2:c4:20:
15:d9:79:29:63:91:b7:7d:1e:9d:66:41:ad:4f:d5:
58:fc:9a:5b:b2:58:8d:16:9c:45:8e:a7:30:ca:c3:
1a:53:37:e5:9e:3f:07:8a:13:11:6d:6a:bb:23:57:
81:d3:95:49:6c:5c:c0:2f:d6:45:ad:a0:8e:6d:d3:
dc:40:97:dd:d2:4f:3d:8c:f8:0c:55:25:b3:0c:61:
d0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:EB:8E:B5:02:D4:66:3F:68:85:59:0C:B2:29:FE:AE:52:2A:57:FD
X509v3 Authority Key Identifier:
keyid:8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/S-uOtQLUZj9ohVkMsin-rlIqV_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/imAkssJ6Z9_1tlTvoGv3v8EiJiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.57.0/24
Signature Algorithm: sha256WithRSAEncryption
57:9c:aa:b6:58:17:ea:5d:e5:d2:8d:59:ed:7a:92:c4:01:7d:
95:0a:22:ef:86:8e:44:3c:69:88:40:3e:09:b4:7e:3f:e2:7e:
41:97:71:70:ca:e2:b3:84:38:8e:6a:85:26:80:51:0a:60:40:
67:d9:8c:91:9f:44:65:f2:4a:b3:f5:7b:c9:e8:e4:0b:28:97:
7c:4a:6f:ad:2d:33:ff:70:f2:7a:08:04:08:44:e6:d7:f8:60:
82:0f:81:8a:33:66:66:75:77:8b:44:0b:ec:23:9c:63:8b:55:
75:ad:8e:5f:b3:24:1e:35:79:8f:5b:79:54:3f:b6:0b:95:50:
8d:72:35:1d:f4:5d:c5:5e:56:ab:2b:ed:27:1c:5d:a4:23:cd:
80:5e:7f:c3:9a:38:60:67:7f:18:c6:72:4f:d2:73:5b:7f:00:
56:e7:e4:fa:4a:fd:72:72:de:5b:fb:d1:29:51:69:1f:c9:8e:
90:6b:15:42:26:df:bd:7a:62:6b:fa:4a:53:81:7e:e3:0e:da:
96:8d:ff:8b:73:eb:36:32:f5:1b:de:70:56:2b:d3:bd:43:b9:
f3:88:31:ce:16:8d:1b:42:f5:35:2a:13:d4:16:fb:cc:44:11:
f3:50:38:05:13:4b:42:59:03:45:bc:54:9e:71:43:ad:4b:07:
88:c3:da:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:01:33 2025 by rpki-client