Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/eeb0c0-94f5-441a-8dd9-97b89c47d50a/1/J4k7Th2ecMlKnZ9XCyL-bggbBTs.roa
File: J4k7Th2ecMlKnZ9XCyL-bggbBTs.roa (raw, json)
Hash identifier: STZD6hlisHuAD+G7OIHHGqPpshnlxiWrHioB00lBZmg=
Subject key identifier: 27:89:3B:4E:1D:9E:70:C9:4A:9D:9F:57:0B:22:FE:6E:08:1B:05:3B
Certificate issuer: /CN=2cf1e41ce7c2424f9df88eb98464c9b0826be9c1
Certificate serial: 010AA940
Authority key identifier: 2C:F1:E4:1C:E7:C2:42:4F:9D:F8:8E:B9:84:64:C9:B0:82:6B:E9:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LPHkHOfCQk-d-I65hGTJsIJr6cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/eeb0c0-94f5-441a-8dd9-97b89c47d50a/1/J4k7Th2ecMlKnZ9XCyL-bggbBTs.roa
Signing time: Sat 01 Jan 2022 01:50:57 +0000
ROA not before: Sat 01 Jan 2022 01:50:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43719
IP address blocks: 91.198.126.0/24 maxlen: 24
2001:67c:1b1c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17475904 (0x10aa940)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cf1e41ce7c2424f9df88eb98464c9b0826be9c1
Validity
Not Before: Jan 1 01:50:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27893b4e1d9e70c94a9d9f570b22fe6e081b053b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:76:e8:47:01:75:92:3f:8d:72:99:ce:a2:1c:
d9:67:12:a3:35:bc:50:84:a6:2d:42:f5:eb:8c:aa:
e4:4d:1d:2a:42:73:14:a8:f7:ae:e8:97:90:0f:2b:
34:16:b6:8c:b5:be:ae:e1:ae:24:09:92:a3:03:18:
63:5c:b1:f5:52:fe:3f:3a:01:34:fd:16:29:fd:c5:
4c:b9:54:a6:75:f0:ab:fa:c5:8a:20:ad:38:b1:f4:
30:68:81:a1:d6:86:b7:93:64:08:70:5f:a9:fc:4e:
e3:96:28:42:fb:3d:09:7d:f6:df:ee:7d:6e:94:7f:
af:a4:05:2a:98:c9:9a:5e:7c:59:19:37:5a:7e:a9:
45:45:8d:52:e2:e2:46:b6:66:02:e5:e1:d7:10:f4:
2d:bc:61:f0:cf:86:28:a2:de:46:ce:80:6b:ce:8d:
8e:d7:68:7f:30:b0:5f:ac:45:f4:ed:fe:79:94:98:
9a:c1:ca:79:07:54:85:1d:c4:57:a1:98:9c:04:05:
fa:58:40:9a:22:0a:72:33:7f:4e:f5:1c:27:a4:aa:
f0:71:cc:ea:63:65:26:ff:1d:49:da:45:cf:e3:73:
1f:92:a7:97:6c:9a:fe:36:38:e4:7e:31:b1:fa:02:
b3:d1:2b:24:44:11:98:01:a0:f6:4e:ee:c2:08:87:
cd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:89:3B:4E:1D:9E:70:C9:4A:9D:9F:57:0B:22:FE:6E:08:1B:05:3B
X509v3 Authority Key Identifier:
keyid:2C:F1:E4:1C:E7:C2:42:4F:9D:F8:8E:B9:84:64:C9:B0:82:6B:E9:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LPHkHOfCQk-d-I65hGTJsIJr6cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/eeb0c0-94f5-441a-8dd9-97b89c47d50a/1/J4k7Th2ecMlKnZ9XCyL-bggbBTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/eeb0c0-94f5-441a-8dd9-97b89c47d50a/1/LPHkHOfCQk-d-I65hGTJsIJr6cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.126.0/24
IPv6:
2001:67c:1b1c::/48
Signature Algorithm: sha256WithRSAEncryption
68:33:a3:0f:db:3f:95:a0:43:30:1e:19:2a:24:59:c6:8a:76:
a8:8d:bb:60:53:65:06:90:1a:00:c0:ff:c9:31:9a:f8:3b:f0:
82:fd:00:04:a3:54:d0:78:e8:a6:60:fb:6c:60:b3:e1:0f:8c:
16:30:0a:3f:a4:37:88:00:63:dc:bb:2e:38:ef:df:6b:e6:e1:
d1:70:71:bc:ad:07:10:e8:70:ae:bc:5b:c9:3d:97:5f:40:1a:
99:3b:cb:e4:e1:90:f9:8c:d2:98:ee:a8:9c:e8:45:f0:1b:0e:
88:f6:3b:9b:61:a7:d4:f1:f9:d9:d0:5a:de:18:35:71:f7:28:
e6:59:98:b4:de:96:1a:45:46:da:85:89:0e:0d:13:e5:a4:6f:
7f:ca:3e:06:8f:e6:87:49:29:68:91:76:6c:23:55:57:c4:3e:
b0:fd:a8:83:21:ae:c5:c9:f1:57:93:1f:41:3f:3b:cf:76:f8:
0a:5e:b5:92:72:d2:9c:3e:3e:34:2e:e5:54:61:79:f6:b3:c4:
32:b7:b8:a9:94:17:78:54:37:48:97:a8:89:81:d7:73:e0:87:
c3:c2:12:70:f0:9a:2b:d7:59:dd:78:ca:d4:12:13:10:50:5a:
ee:da:4f:b3:65:e0:14:fa:03:2e:55:fd:57:d7:61:aa:37:c0:
f7:90:9c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:17:53 2025 by rpki-client