Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/lMD16bMG3-OGksJYMPJ4ic33kEc.roa
File: lMD16bMG3-OGksJYMPJ4ic33kEc.roa (raw, json)
Hash identifier: PdEE1ZFcUmMZQbalgih4lFYMOQdgzd6YJUgYTl2jZA4=
Subject key identifier: 94:C0:F5:E9:B3:06:DF:E3:86:92:C2:58:30:F2:78:89:CD:F7:90:47
Certificate issuer: /CN=07d75335f77bf4240976277b1dd0e19bb23a8e1d
Certificate serial: 06B0D7B1
Authority key identifier: 07:D7:53:35:F7:7B:F4:24:09:76:27:7B:1D:D0:E1:9B:B2:3A:8E:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9dTNfd79CQJdid7HdDhm7I6jh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/lMD16bMG3-OGksJYMPJ4ic33kEc.roa
Signing time: Sat 01 Jan 2022 15:00:36 +0000
ROA not before: Sat 01 Jan 2022 15:00:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 91.103.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112252849 (0x6b0d7b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d75335f77bf4240976277b1dd0e19bb23a8e1d
Validity
Not Before: Jan 1 15:00:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94c0f5e9b306dfe38692c25830f27889cdf79047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:32:21:52:69:70:27:f4:68:d1:12:eb:86:d2:
59:b6:4e:2d:19:60:02:41:ed:a7:8f:af:70:3d:a0:
d5:ab:de:38:83:7b:e9:11:ec:65:28:49:29:c1:4e:
92:dc:b1:f0:30:ea:8d:07:97:4a:77:17:03:81:5f:
41:6c:00:de:cf:80:25:97:f6:61:80:3d:d1:78:5d:
f6:c4:75:7a:75:75:e4:78:8e:22:d3:22:3a:47:83:
4b:a0:67:dc:1c:af:f1:fc:1f:9c:f7:b6:15:9d:62:
d8:cf:0d:bd:5b:3e:90:43:4d:fa:cd:47:5c:86:4d:
d9:0a:cf:31:76:32:9b:1d:cd:85:b1:84:d1:6c:8c:
35:3c:86:26:5c:37:a2:58:13:85:6d:fb:65:6b:84:
c3:e1:50:97:18:21:cf:82:d1:cb:a4:99:d3:95:cf:
db:c0:8e:2e:e2:62:0b:09:d3:d3:56:15:37:80:e5:
a3:d1:ba:6e:e7:d3:f5:88:68:72:8d:a2:16:62:83:
83:69:72:47:cf:52:eb:5e:f3:a9:d7:ac:a2:fb:ba:
3b:cc:12:ed:cb:88:bd:e5:e8:ce:74:ad:0e:08:15:
8a:74:45:93:0e:82:52:11:2b:e1:8b:11:af:01:39:
2c:79:26:3e:ee:b8:b9:52:e6:2b:df:4b:6f:2d:92:
a5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:C0:F5:E9:B3:06:DF:E3:86:92:C2:58:30:F2:78:89:CD:F7:90:47
X509v3 Authority Key Identifier:
keyid:07:D7:53:35:F7:7B:F4:24:09:76:27:7B:1D:D0:E1:9B:B2:3A:8E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9dTNfd79CQJdid7HdDhm7I6jh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/lMD16bMG3-OGksJYMPJ4ic33kEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ce3fa7-fc88-4f48-a5ce-a45bbcb34de5/1/B9dTNfd79CQJdid7HdDhm7I6jh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.82.0/24
Signature Algorithm: sha256WithRSAEncryption
27:ad:6e:85:b3:8c:3e:c0:3d:47:92:76:69:2e:8a:1b:73:29:
77:b4:5f:0d:c0:fc:64:cf:29:d8:97:9e:06:af:97:e5:33:80:
b3:56:6e:22:ad:e9:e1:d2:20:f1:16:4a:46:87:55:67:00:49:
98:95:d6:f0:ad:99:40:fd:4c:b5:a8:0e:97:b1:75:4d:91:70:
b3:86:05:bd:b8:7a:89:fc:59:01:91:0c:2d:9c:5d:e1:ca:9d:
15:00:bf:9c:a1:a4:23:c4:39:34:f5:08:84:95:83:43:6d:19:
db:f7:8d:97:ed:59:36:c5:48:73:59:3f:62:ae:fa:c9:ce:e1:
e0:6f:8f:99:59:cb:00:0a:c4:44:1c:79:32:46:3d:13:89:0a:
41:5f:e4:d1:01:7d:d8:86:4b:8b:c0:8c:e8:78:9d:2c:42:5c:
27:dc:74:56:75:19:c8:1d:a4:35:69:d9:7f:01:d6:a5:cd:f8:
85:1d:9a:16:3e:cc:b9:97:78:ae:e1:66:26:52:7f:c8:d0:6b:
a1:d8:4d:86:47:25:c7:23:00:3d:d0:26:18:59:dc:e1:46:9f:
07:b2:e3:bf:f7:15:28:59:40:63:c1:63:f2:a7:a8:41:ba:ca:
06:7b:c9:a6:49:8e:70:be:65:07:10:c4:cf:19:7a:da:0e:1c:
d3:69:d4:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:51:56 2025 by rpki-client